Vulnerabilities > Redhat

DATE CVE VULNERABILITY TITLE RISK
2022-08-26 CVE-2022-34303 A flaw was found in Eurosoft bootloaders before 2022-06-01.
local
low complexity
eurosoft-uk redhat microsoft
6.7
6.7
2022-08-26 CVE-2021-35939 It was found that the fix for CVE-2017-7500 and CVE-2017-7501 was incomplete: the check was only implemented for the parent directory of the file to be created.
local
low complexity
rpm redhat
6.7
6.7
2022-08-26 CVE-2021-3414 Improper Preservation of Permissions vulnerability in Redhat Satellite 6.7
A flaw was found in satellite.
network
low complexity
redhat CWE-281
8.1
8.1
2022-08-26 CVE-2021-3563 Incorrect Authorization vulnerability in multiple products
A flaw was found in openstack-keystone.
network
high complexity
openstack debian redhat CWE-863
7.4
7.4
2022-08-26 CVE-2021-3632 Improper Authentication vulnerability in Redhat Keycloak and Single Sign-On
A flaw was found in Keycloak.
network
high complexity
redhat CWE-287
7.5
7.5
2022-08-26 CVE-2021-3644 Unspecified vulnerability in Redhat Descision Manager and Wildfly
A flaw was found in wildfly-core in all versions.
network
high complexity
redhat
3.3
3.3
2022-08-26 CVE-2021-3669 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
A flaw was found in the Linux kernel.
local
low complexity
linux ibm debian fedoraproject redhat CWE-770
5.5
5.5
2022-08-26 CVE-2021-3688 Unspecified vulnerability in Redhat Jboss Core Services Httpd 2.4.23/2.4.29/2.4.37
A flaw was found in Red Hat JBoss Core Services HTTP Server in all versions, where it does not properly normalize the path component of a request URL contains dot-dot-semicolon(s).
network
high complexity
redhat
4.8
4.8
2022-08-26 CVE-2021-3703 Unspecified vulnerability in Redhat Openshift Serverless 1.0/1.16.0
It was found that the CVE-2021-27918, CVE-2021-31525 and CVE-2021-33196 have been incorrectly mentioned as fixed in RHSA for Serverless 1.16.0 and Serverless client kn 1.16.0.
network
low complexity
redhat
7.5
7.5
2022-08-26 CVE-2021-3754 Unspecified vulnerability in Redhat Keycloak and Single Sign-On
A flaw was found in keycloak where an attacker is able to register himself with the username same as the email ID of any existing user.
network
low complexity
redhat
5.3
5.3