Vulnerabilities > Redhat
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-23 | CVE-2021-3701 | Incorrect Default Permissions vulnerability in Redhat Ansible Runner 2.0.0 A flaw was found in ansible-runner where the default temporary files configuration in ansible-2.0.0 are written to world R/W locations. | 6.6 |
| 2022-08-23 | CVE-2021-3702 | Race Condition vulnerability in Redhat Ansible Runner 2.0.0 A race condition flaw was found in ansible-runner, where an attacker could watch for rapid creation and deletion of a temporary directory, substitute their directory at that name, and then have access to ansible-runner's private_data_dir the next time ansible-runner made use of the private_data_dir. | 6.3 |
| 2022-08-23 | CVE-2021-3714 | A flaw was found in the Linux kernels memory deduplication mechanism. | 5.9 |
| 2022-08-23 | CVE-2021-3763 | Incorrect Authorization vulnerability in Redhat AMQ Broker 7.8.0/7.8.1/7.8.2 A flaw was found in the Red Hat AMQ Broker management console in version 7.8 where an existing user is able to access some limited information even when the role the user is assigned to should not be allow access to the management console. | 4.3 |
| 2022-08-23 | CVE-2021-3827 | Improper Authentication vulnerability in Redhat Keycloak and Single Sign-On A flaw was found in keycloak, where the default ECP binding flow allows other authentication flows to be bypassed. | 6.8 |
| 2022-08-23 | CVE-2021-3839 | Out-of-bounds Write vulnerability in multiple products A flaw was found in the vhost library in DPDK. | 7.5 |
| 2022-08-23 | CVE-2021-3905 | Memory Leak vulnerability in multiple products A memory leak was found in Open vSwitch (OVS) during userspace IP fragmentation processing. | 7.5 |
| 2022-08-22 | CVE-2020-27836 | Incorrect Permission Assignment for Critical Resource vulnerability in Redhat Openshift Container Platform 4.6 A flaw was found in cluster-ingress-operator. | 9.8 |
| 2022-08-22 | CVE-2021-3442 | Unspecified vulnerability in Redhat Openshift API Management 2.9.1 A flaw was found in the Red Hat OpenShift API Management product. | 5.4 |
| 2022-08-22 | CVE-2021-3513 | Information Exposure Through an Error Message vulnerability in Redhat Keycloak A flaw was found in keycloak where a brute force attack is possible even when the permanent lockout feature is enabled. | 7.5 |