Where
AND
-Infinity
0

Trending

Last week
Last month
Last year

Vendor Risk Score

See how redhat compares to other vendors in security performance

View Risk Score →

Software

redhat enterprise linux desktop
185
redhat enterprise linux server
184
redhat enterprise linux workstation
175
redhat enterprise linux
128
redhat enterprise linux server aus
120
redhat enterprise linux server eus
104
redhat enterprise linux server tus
77
redhat enterprise linux eus
67
redhat linux
37
redhat jboss enterprise application platform
35
redhat openshift container platform
24
redhat fedora core
20
redhat virtualization
14
redhat satellite
10
redhat openstack
9
redhat fuse
8
redhat linux advanced workstation
8
redhat single sign-on
7
redhat undertow
7
redhat data grid
6
redhat enterprise linux for ibm z systems
6
redhat software collections
6
redhat virtualization host
6
redhat enterprise linux hpc node
5
redhat enterprise linux server from rhui
5
redhat jboss data grid
5
redhat process automation
5
redhat ansible tower
4
redhat decision manager
4
redhat enterprise linux for power little endian
4
redhat enterprise linux for real time
4
redhat gluster storage server for on-premise
4
redhat jboss bpm suite
4
redhat jboss enterprise application platform expansion pack
4
redhat jboss enterprise web server
4
redhat jboss fuse
4
redhat virtualization manager
4
redhat automation manager
3
redhat build of apache camel - hawtio
3
redhat build of apache camel for spring boot
3
redhat enterprise linux for ibm z systems eus
3
redhat enterprise linux for power big endian
3
redhat enterprise linux for power big endian eus
3
redhat enterprise linux for power little endian eus
3
redhat enterprise linux for real time for nfv
3
redhat icedtea6
3
redhat jboss brms
3
redhat jboss core services
3
redhat openshift
3
redhat openshift application runtimes
3

redhat Enterprise LinuxGnutls: gnutls: authentication bypass via nul character in username

Risk 90
Severity
9.8
First published (updated )
CVE-2026-42010

redhat OpenShift AIOdh-dashboard: odh dashboard kubernetes service account exposure

Risk 59
Severity
9.9
EPSS
0.06%
First published (updated )
CVE-2026-5483

redhat Enterprise LinuxLibarchive: libarchive: arbitrary code execution via integer overflow in iso9660 image processing

Risk 61
Severity
9.8
EPSS
0.10%
First published (updated )
CVE-2026-5121

redhat Enterprise LinuxXorg: xwayland: x.org x server: information disclosure or denial of service via out-of-bounds read in xkb modifier map handling

Risk 70
Severity
9.1
First published (updated )
CVE-2026-34002

redhat Enterprise LinuxXwayland: xorg: x.org x server: information disclosure and denial of service via out-of-bounds read in xkb geometry processing.

Risk 70
Severity
9.1
First published (updated )
CVE-2026-34000
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

redhat Enterprise LinuxGnutls: gnutls: denial of service via dtls zero-length fragment

Risk 70
Severity
9.1
First published (updated )
CVE-2026-33845

redhat JBoss Enterprise Application PlatformUndertow: undertow: request smuggling via malformed http request headers

Risk 66
Severity
9.1
First published (updated )
CVE-2026-28369

redhat JBoss Enterprise Application PlatformUndertow: undertow: request smuggling via inconsistent header parsing

Risk 66
Severity
9.1
First published (updated )
CVE-2026-28368

redhat JBoss Enterprise Application PlatformUndertow: undertow: request smuggling via `\r\r\r` as a header block terminator

Risk 66
Severity
9.1
First published (updated )
CVE-2026-28367

pip/keylimeKeylime: keylime: authentication bypass allows unauthorized administrative operations due to missing client-side tls authentication

Risk 86
Severity
9.8
First published (updated )
CVE-2026-1709
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

redhat Enterprise LinuxGlib: glib: buffer underflow in gvariant parser leads to heap corruption

Risk 86
Severity
9.8
First published (updated )
CVE-2025-14087

redhat JBoss Enterprise Application PlatformUndertow-core: undertow http server fails to reject malformed host headers leading to potential cache poisoning and ssrf

Risk 76
Severity
9.6
First published (updated )
CVE-2025-12543

Canonical Ubuntu LinuxSudo Inclusion of Functionality from Untrusted Control Sphere Vulnerability

Risk 97
Severity
9.3
Exploited
First published (updated )
CVE-2025-32463

IBM App Connect Enterprise Certified ContainerIBM App Connect Enterprise Certified Container improper communications restriction

Risk 66
Severity
9.1
First published (updated )
CVE-2022-43916

maven/org.wildfly.core:wildfly-elytron-integrationOrg.wildfly.core:wildfly-elytron-integration: wildfly elytron brute force attack via cli

Risk 80
Severity
9.8
First published (updated )
CVE-2025-23368
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Samba rsyncrsync security updates

Risk 99
Severity
9.8
Exploited
First published (updated )
CVE-2024-12084

maven/org.hornetq:hornetq-core-clientInfoleak, Path Traversal

Risk 70
Severity
9.1
First published (updated )
CVE-2024-51127

redhat SatellitePuppet-pulpcore: an authentication bypass vulnerability exists in pulpcore

Risk 63
Severity
9.8
EPSS
0.07%
First published (updated )
CVE-2024-7923

redhat Enterprise LinuxLast updated 29 January 2025

Risk 88
Severity
9.8
First published (updated )
CVE-2024-44070

redhat SatellitePuppet-foreman: an authentication bypass vulnerability exists in foreman

Risk 63
Severity
9.8
EPSS
0.07%
First published (updated )
CVE-2024-7012
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

go/github.com/devfile/registry-support/registry-libraryRegistry-support: decompress can delete files outside scope via relative paths

Risk 69
Severity
9.3
First published (updated )
CVE-2024-1485

debian/xorg-serverXorg-x11-server: heap buffer overflow in devicefocusevent and procxiquerypointer

Risk 62
Severity
9.8
EPSS
0.13%
First published (updated )
CVE-2023-6816

maven/io.quarkus:quarkus-smallrye-graphql-clientQuarkus: graphql operations over websockets bypass

Risk 48
Severity
9.1
EPSS
0.07%
First published (updated )
CVE-2023-6394

ubuntu/squidSquid: request/response smuggling in http/1.1 and icap

Risk 64
Severity
9.3
First published (updated )
CVE-2023-46846

IBM Robotic Process Automation for Cloud PakIBM Robotic Process Automation privilege escalation

Risk 88
Severity
9.8
First published (updated )
CVE-2023-43058
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

redhat/sambaSamba: smbd allows client access to unix domain sockets on the file system as root

Risk 90
Severity
9.8
First published (updated )
CVE-2023-3961

redhat Enterprise LinuxLibnbd: crash or misbehaviour when nbd server returns an unexpected block size

Risk 86
Severity
9.8
First published (updated )
CVE-2023-5215

IBM Robotic Process AutomationIBM Robotic Process Automation privilege escalation

Risk 88
Severity
9.8
First published (updated )
CVE-2023-38734

ImageMagick ImageMagickInput Validation, Command Injection, OS Command Injection

Risk 88
Severity
9.8
First published (updated )
CVE-2023-34152

ClusterLabs pcsIt was discovered that an update for PCS package in RHBA-2023:2151 erratum released as part of Red H…

Risk 88
Severity
9.8
First published (updated )
CVE-2023-2319
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203