Vulnerabilities > Redhat

DATE CVE VULNERABILITY TITLE RISK
2021-10-08 CVE-2021-32029 A flaw was found in postgresql.
network
low complexity
postgresql redhat
4.0
2021-10-04 CVE-2021-32672 Out-of-bounds Read vulnerability in multiple products
Redis is an open source, in-memory database that persists on disk.
network
low complexity
redislabs redhat CWE-125
4.0
2021-09-29 CVE-2021-3653 Missing Authorization vulnerability in multiple products
A flaw was found in the KVM's AMD code for supporting SVM nested virtualization.
local
low complexity
linux redhat CWE-862
6.1
2021-09-22 CVE-2021-3583 Command Injection vulnerability in Redhat Ansible Automation Platform and Ansible Engine
A flaw was found in Ansible, where a user's controller is vulnerable to template injection.
local
low complexity
redhat CWE-77
3.6
2021-09-21 CVE-2021-31917 Improper Authentication vulnerability in multiple products
A flaw was found in Red Hat DataGrid 8.x (8.0.0, 8.0.1, 8.1.0 and 8.1.1) and Infinispan (10.0.0 through 12.0.0).
network
low complexity
infinispan redhat CWE-287
7.5
2021-09-07 CVE-2021-39251 NULL Pointer Dereference vulnerability in multiple products
A crafted NTFS image can cause a NULL pointer dereference in ntfs_extent_inode_open in NTFS-3G < 2021.8.22.
6.9
2021-09-07 CVE-2021-33285 Out-of-bounds Read vulnerability in multiple products
In NTFS-3G versions < 2021.8.22, when a specially crafted NTFS attribute is supplied to the function ntfs_get_attribute_value, a heap buffer overflow can occur allowing for memory disclosure or denial of service.
6.9
2021-08-31 CVE-2021-3634 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
A flaw has been found in libssh in versions prior to 0.9.6.
network
low complexity
libssh redhat debian CWE-119
4.0
2021-08-27 CVE-2021-40153 Path Traversal vulnerability in multiple products
squashfs_opendir in unsquash-1.c in Squashfs-Tools 4.5 stores the filename in the directory entry; this is then used by unsquashfs to create the new file during the unsquash.
5.8
2021-08-25 CVE-2021-3605 Out-of-bounds Read vulnerability in multiple products
There's a flaw in OpenEXR's rleUncompress functionality in versions prior to 3.0.5.
4.3