Vulnerabilities > Redhat > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-07-09 CVE-2024-6237 Unspecified vulnerability in Redhat products
A flaw was found in the 389 Directory Server.
network
low complexity
redhat
6.5
2024-07-05 CVE-2024-6505 Out-of-bounds Read vulnerability in multiple products
A flaw was found in the virtio-net device in QEMU.
network
low complexity
qemu redhat CWE-125
6.8
2024-06-06 CVE-2024-3049 Insufficient Verification of Data Authenticity vulnerability in multiple products
A flaw was found in Booth, a cluster ticket manager.
network
high complexity
clusterlabs redhat CWE-345
5.9
2024-06-05 CVE-2024-3716 Unspecified vulnerability in Redhat Satellite 6.0
A flaw was found in foreman-installer when puppet-candlepin is invoked cpdb with the --password parameter.
local
low complexity
redhat
6.2
2024-06-05 CVE-2024-4812 Cross-site Scripting vulnerability in multiple products
A flaw was found in the Katello plugin for Foreman, where it is possible to store malicious JavaScript code in the "Description" field of a user.
network
low complexity
redhat katello-project CWE-79
4.8
2024-04-10 CVE-2024-3567 Reachable Assertion vulnerability in multiple products
A flaw was found in QEMU.
local
low complexity
qemu redhat CWE-617
5.5
2024-02-22 CVE-2023-52160 Improper Authentication vulnerability in multiple products
The implementation of PEAP in wpa_supplicant through 2.10 allows authentication bypass.
network
low complexity
w1-fi debian redhat fedoraproject CWE-287
6.5
2024-02-12 CVE-2024-1459 Path Traversal: '../filedir' vulnerability in Redhat Undertow
A path traversal vulnerability was found in Undertow.
network
low complexity
redhat CWE-24
5.3
2024-02-06 CVE-2024-0690 Improper Encoding or Escaping of Output vulnerability in multiple products
An information disclosure flaw was found in ansible-core due to a failure to respect the ANSIBLE_NO_LOG configuration in some scenarios.
local
low complexity
redhat fedoraproject CWE-116
5.5
2024-02-05 CVE-2023-7216 Link Following vulnerability in multiple products
A path traversal vulnerability was found in the CPIO utility.
local
low complexity
gnu redhat CWE-59
5.3