Vulnerabilities > Redhat

DATE CVE VULNERABILITY TITLE RISK
2021-05-28 CVE-2021-3514 Null Pointer Dereference vulnerability in Redhat 389 Directory Server
When using a sync_repl client in 389-ds-base, an authenticated attacker can cause a NULL pointer dereference using a specially crafted query, causing a crash.
network
low complexity
redhat CWE-476
4.0
2021-05-28 CVE-2020-1729 Incorrect Authorization vulnerability in Redhat Smallrye Config
A flaw was found in SmallRye's API through version 1.6.1.
local
low complexity
redhat CWE-863
2.1
2021-05-28 CVE-2020-25710 Reachable Assertion vulnerability in multiple products
A flaw was found in OpenLDAP in versions before 2.4.56.
network
low complexity
openldap redhat debian fedoraproject CWE-617
5.0
2021-05-28 CVE-2020-27826 Execution With Unnecessary Privileges vulnerability in Redhat Keycloak
A flaw was found in Keycloak before version 12.0.0 where it is possible to update the user's metadata attributes using Account REST API.
network
redhat CWE-250
4.9
2021-05-28 CVE-2021-20195 Improper Input Validation vulnerability in Redhat Keycloak
A flaw was found in keycloak in versions before 13.0.0.
network
redhat CWE-20
6.8
2021-05-28 CVE-2021-20201 Resource Exhaustion vulnerability in multiple products
A flaw was found in spice in versions before 0.14.92.
network
low complexity
spice-project redhat CWE-400
5.0
2021-05-28 CVE-2021-20236 Classic Buffer Overflow vulnerability in multiple products
A flaw was found in the ZeroMQ server in versions before 4.3.3.
network
low complexity
zeromq redhat fedoraproject CWE-120
7.5
2021-05-28 CVE-2021-20239 Untrusted Pointer Dereference vulnerability in multiple products
A flaw was found in the Linux kernel in versions before 5.4.92 in the BPF protocol.
local
low complexity
linux redhat fedoraproject CWE-822
2.1
2021-05-28 CVE-2021-20292 USE After Free vulnerability in multiple products
There is a flaw reported in the Linux kernel in versions before 5.9 in drivers/gpu/drm/nouveau/nouveau_sgdma.c in nouveau_sgdma_create_ttm in Nouveau DRM subsystem.
local
low complexity
linux fedoraproject redhat CWE-416
7.2
2021-05-27 CVE-2020-14301 Improper Cross-Boundary Removal of Sensitive Data vulnerability in Redhat Enterprise Linux and Libvirt
An information disclosure vulnerability was found in libvirt in versions before 6.3.0.
network
low complexity
redhat CWE-212
4.0