High

DATE	CVE	VULNERABILITY TITLE	RISK
2024-07-01	CVE-2024-6387	Race Condition vulnerability in multiple products A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). network high complexity openbsd redhat suse debian canonical amazon netapp freebsd netbsd CWE-362	8.1
2024-06-05	CVE-2024-5037	Authentication Bypass by Spoofing vulnerability in Redhat products A flaw was found in OpenShift's Telemeter. network low complexity redhat CWE-290	7.5
2024-01-26	CVE-2023-6291	Open Redirect vulnerability in Redhat products A flaw was found in the redirect_uri validation logic in Keycloak. network low complexity redhat CWE-601	7.1
2024-01-09	CVE-2023-6476	Allocation of Resources Without Limits or Throttling vulnerability in Redhat Openshift Container Platform 3.11/4.13/4.14 A flaw was found in CRI-O that involves an experimental annotation leading to a container being unconfined. network low complexity redhat CWE-770	7.5
2023-12-21	CVE-2023-2585	Unspecified vulnerability in Redhat products Keycloak's device authorization grant does not correctly validate the device code and client ID. network low complexity redhat	8.1
2023-12-14	CVE-2023-6563	Allocation of Resources Without Limits or Throttling vulnerability in Redhat products An unconstrained memory consumption vulnerability was discovered in Keycloak. network low complexity redhat CWE-770	7.7
2023-11-02	CVE-2023-5408	Unspecified vulnerability in Redhat Openshift Container Platform A privilege escalation flaw was found in the node restriction admission plugin of the kubernetes api server of OpenShift. network low complexity redhat	7.2
2023-10-10	CVE-2023-44487	Resource Exhaustion vulnerability in multiple products The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. network low complexity ietf nghttp2 netty envoyproxy eclipse caddyserver golang f5 apache apple grpc microsoft nodejs dena facebook amazon debian kazu-yamamoto istio varnish-cache-project traefik projectcontour linkerd linecorp redhat fedoraproject netapp akka konghq jenkins openresty cisco CWE-400	7.5
2023-10-05	CVE-2022-3248	Incorrect Authorization vulnerability in Redhat products A flaw was found in OpenShift API, as admission checks do not enforce "custom-host" permissions. network low complexity redhat CWE-863	7.5
2023-10-04	CVE-2023-2422	Improper Certificate Validation vulnerability in Redhat products A flaw was found in Keycloak. network low complexity redhat CWE-295	7.1