Vulnerabilities > Redhat

DATE CVE VULNERABILITY TITLE RISK
2023-07-07 CVE-2022-4361 Cross-site Scripting vulnerability in Redhat products
Keycloak, an open-source identity and access management solution, has a cross-site scripting (XSS) vulnerability in the SAML or OIDC providers.
network
low complexity
redhat CWE-79
6.1
6.1
2023-07-05 CVE-2023-3089 Weak Password Requirements vulnerability in Redhat products
A compliance problem was found in the Red Hat OpenShift Container Platform.
network
low complexity
redhat CWE-521
7.5
7.5
2023-07-04 CVE-2023-2974 Unspecified vulnerability in Redhat Build of Quarkus
A vulnerability was found in quarkus-core.
network
low complexity
redhat
8.1
8.1
2023-06-30 CVE-2023-1206 Resource Exhaustion vulnerability in multiple products
A hash collision flaw was found in the IPv6 connection lookup table in the Linux kernel’s IPv6 functionality when a user makes a new kind of SYN flood attack. 		5.7
5.7
2023-06-28 CVE-2023-3138 Out-of-bounds Write vulnerability in multiple products
A vulnerability was found in libX11.
network
low complexity
x-org redhat CWE-787
7.5
7.5
2023-06-23 CVE-2023-3212 NULL Pointer Dereference vulnerability in multiple products
A NULL pointer dereference issue was found in the gfs2 file system in the Linux kernel. 		4.4
4.4
2023-06-23 CVE-2023-32373 Use After Free vulnerability in multiple products
A use-after-free issue was addressed with improved memory management.
network
low complexity
apple redhat webkitgtk CWE-416
8.8
8.8
2023-06-12 CVE-2023-3161 Incorrect Calculation vulnerability in multiple products
A flaw was found in the Framebuffer Console (fbcon) in the Linux Kernel.
local
low complexity
linux fedoraproject redhat CWE-682
5.5
5.5
2023-06-09 CVE-2023-2454 schema_element defeats protective search_path changes; It was found that certain database calls in PostgreSQL could permit an authed attacker with elevated database-level privileges to execute arbitrary code.
network
low complexity
postgresql redhat fedoraproject
7.2
7.2
2023-06-09 CVE-2023-2455 Row security policies disregard user ID changes after inlining; PostgreSQL could permit incorrect policies to be applied in certain cases where role-specific policies are used and a given query is planned under one role and then executed under other roles.
network
low complexity
postgresql redhat fedoraproject
5.4
5.4