Vulnerabilities > Redhat

DATE CVE VULNERABILITY TITLE RISK
2022-08-26 CVE-2021-3856 Path Traversal vulnerability in Redhat Keycloak
ClassLoaderTheme and ClasspathThemeResourceProviderFactory allows reading any file available as a resource to the classloader.
network
low complexity
redhat CWE-22
4.3
4.3
2022-08-26 CVE-2021-3859 A flaw was found in Undertow that tripped the client-side invocation timeout with certain calls made over HTTP2.
network
low complexity
redhat netapp
7.5
7.5
2022-08-26 CVE-2021-3864 A flaw was found in the way the dumpable flag setting was handled when certain SUID binaries executed its descendants.
local
high complexity
linux debian redhat
7.0
7.0
2022-08-25 CVE-2021-35937 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in multiple products
A race condition vulnerability was found in rpm.
local
high complexity
rpm redhat fedoraproject CWE-367
6.4
6.4
2022-08-25 CVE-2021-35938 Link Following vulnerability in multiple products
A symbolic link issue was found in rpm.
local
low complexity
rpm fedoraproject redhat CWE-59
6.7
6.7
2022-08-25 CVE-2021-3914 Cross-site Scripting vulnerability in Redhat products
It was found that the smallrye health metrics UI component did not properly sanitize some user inputs.
network
low complexity
redhat CWE-79
6.1
6.1
2022-08-25 CVE-2021-3979 Improper Authentication vulnerability in multiple products
A key length flaw was found in Red Hat Ceph Storage.
network
low complexity
redhat fedoraproject CWE-287
6.5
6.5
2022-08-25 CVE-2021-4112 Unspecified vulnerability in Redhat products
A flaw was found in ansible-tower where the default installation is vulnerable to job isolation escape.
local
low complexity
redhat
8.8
8.8
2022-08-25 CVE-2022-0135 An out-of-bounds write issue was found in the VirGL virtual OpenGL renderer (virglrenderer).
local
low complexity
virglrenderer-project redhat debian
7.8
7.8
2022-08-24 CVE-2021-4040 Out-of-bounds Write vulnerability in multiple products
A flaw was found in AMQ Broker.
network
low complexity
redhat apache CWE-787
5.3
5.3