Vulnerabilities > Redhat > Low

DATE CVE VULNERABILITY TITLE RISK
2022-10-17 CVE-2017-7517 Improper Input Validation vulnerability in Redhat Openshift 3.0
An input validation vulnerability exists in Openshift Enterprise due to a 1:1 mapping of tenants in Hawkular Metrics and projects/namespaces in OpenShift.
network
low complexity
redhat CWE-20
3.5
2022-09-01 CVE-2022-2256 Cross-site Scripting vulnerability in Redhat Single Sign-On 7.0
A Stored Cross-site scripting (XSS) vulnerability was found in keycloak as shipped in Red Hat Single Sign-On 7.
network
low complexity
redhat CWE-79
3.8
2022-08-24 CVE-2021-4217 NULL Pointer Dereference vulnerability in multiple products
A flaw was found in unzip.
local
low complexity
unzip-project fedoraproject redhat CWE-476
3.3
2022-07-01 CVE-2014-3650 Cross-site Scripting vulnerability in Redhat Jboss Aerogear 1.0.0
Multiple persistent cross-site scripting (XSS) flaws were found in the way Aerogear handled certain user-supplied content.
network
redhat CWE-79
3.5
2022-06-30 CVE-2014-0068 Incorrect Permission Assignment for Critical Resource vulnerability in Redhat Openshift-Origin-Node-Util
It was reported that watchman in openshift node-utils creates /var/run/watchman.pid and /var/log/watchman.ouput with world writable permission.
local
low complexity
redhat CWE-732
2.1
2022-06-28 CVE-2022-0987 A flaw was found in PackageKit in the way some of the methods exposed by the Transaction interface examines files.
local
low complexity
packagekit-project redhat
2.1
2022-05-18 CVE-2022-30596 Cross-site Scripting vulnerability in multiple products
A flaw was found in moodle where ID numbers displayed when bulk allocating markers to assignments required additional sanitizing to prevent a stored XSS risk.
3.5
2022-04-29 CVE-2022-1353 A vulnerability was found in the pfkey_register function in net/key/af_key.c in the Linux kernel.
local
low complexity
linux debian redhat
3.6
2022-04-18 CVE-2021-3681 Insufficiently Protected Credentials vulnerability in Redhat Ansible Automation Platform and Ansible Galaxy
A flaw was found in Ansible Galaxy Collections.
local
low complexity
redhat CWE-522
2.1
2022-04-13 CVE-2022-1280 Use After Free vulnerability in multiple products
A use-after-free vulnerability was found in drm_lease_held in drivers/gpu/drm/drm_lease.c in the Linux kernel due to a race problem.
3.3