Vulnerabilities > Redhat > High

DATE CVE VULNERABILITY TITLE RISK
2022-08-26 CVE-2021-3703 Unspecified vulnerability in Redhat Openshift Serverless 1.0/1.16.0
It was found that the CVE-2021-27918, CVE-2021-31525 and CVE-2021-33196 have been incorrectly mentioned as fixed in RHSA for Serverless 1.16.0 and Serverless client kn 1.16.0.
network
low complexity
redhat
7.5
7.5
2022-08-26 CVE-2021-3859 A flaw was found in Undertow that tripped the client-side invocation timeout with certain calls made over HTTP2.
network
low complexity
redhat netapp
7.5
7.5
2022-08-26 CVE-2021-3864 A flaw was found in the way the dumpable flag setting was handled when certain SUID binaries executed its descendants.
local
high complexity
linux debian redhat
7.0
7.0
2022-08-25 CVE-2021-4112 Unspecified vulnerability in Redhat products
A flaw was found in ansible-tower where the default installation is vulnerable to job isolation escape.
local
low complexity
redhat
8.8
8.8
2022-08-25 CVE-2022-0135 An out-of-bounds write issue was found in the VirGL virtual OpenGL renderer (virglrenderer).
local
low complexity
virglrenderer-project redhat debian
7.8
7.8
2022-08-24 CVE-2021-4041 Improper Encoding or Escaping of Output vulnerability in Redhat Ansible Runner
A flaw was found in ansible-runner.
local
low complexity
redhat CWE-116
7.8
7.8
2022-08-24 CVE-2021-4125 Deserialization of Untrusted Data vulnerability in Redhat Openshift
It was found that the original fix for log4j CVE-2021-44228 and CVE-2021-45046 in the OpenShift metering hive containers was incomplete, as not all JndiLookup.class files were removed.
network
high complexity
redhat CWE-502
8.1
8.1
2022-08-24 CVE-2021-4204 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An out-of-bounds (OOB) memory access flaw was found in the Linux kernel's eBPF due to an Improper Input Validation.
local
low complexity
linux debian redhat netapp CWE-119
7.1
7.1
2022-08-24 CVE-2021-4213 Memory Leak vulnerability in multiple products
A flaw was found in JSS, where it did not properly free up all memory.
network
low complexity
dogtagpki redhat debian CWE-401
7.5
7.5
2022-08-23 CVE-2022-2938 A flaw was found in the Linux kernel's implementation of Pressure Stall Information.
local
low complexity
linux redhat fedoraproject netapp
7.8
7.8