Vulnerabilities > Redhat > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-03-27 CVE-2022-2237 Open Redirect vulnerability in Redhat Keycloak Node.Js Adapter and Single Sign-On
A flaw was found in the Keycloak Node.js Adapter.
network
low complexity
redhat CWE-601
6.1
6.1
2023-03-27 CVE-2023-0778 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in multiple products
A Time-of-check Time-of-use (TOCTOU) flaw was found in podman.
network
high complexity
podman-project redhat CWE-367
6.8
6.8
2023-03-27 CVE-2023-1073 Out-of-bounds Write vulnerability in multiple products
A memory corruption flaw was found in the Linux kernel’s human interface device (HID) subsystem in how a user inserts a malicious USB device. 		6.6
6.6
2023-03-24 CVE-2021-3684 Information Exposure Through Log Files vulnerability in Redhat Openshift Assisted Installer
A vulnerability was found in OpenShift Assisted Installer.
local
low complexity
redhat CWE-532
5.5
5.5
2023-03-23 CVE-2022-3101 Incorrect Permission Assignment for Critical Resource vulnerability in multiple products
A flaw was found in tripleo-ansible.
local
low complexity
redhat openstack CWE-732
5.5
5.5
2023-03-23 CVE-2022-3146 Incorrect Permission Assignment for Critical Resource vulnerability in multiple products
A flaw was found in tripleo-ansible.
local
low complexity
redhat openstack CWE-732
5.5
5.5
2023-03-23 CVE-2023-0056 Resource Exhaustion vulnerability in multiple products
An uncontrolled resource consumption vulnerability was discovered in HAProxy which could crash the service.
network
low complexity
haproxy redhat fedoraproject CWE-400
6.5
6.5
2023-03-23 CVE-2023-1289 Improper Input Validation vulnerability in multiple products
A vulnerability was discovered in ImageMagick where a specially created SVG file loads itself and causes a segmentation fault.
local
low complexity
imagemagick fedoraproject redhat CWE-20
5.5
5.5
2023-03-06 CVE-2022-3277 Resource Exhaustion vulnerability in multiple products
An uncontrolled resource consumption flaw was found in openstack-neutron.
network
low complexity
redhat openstack CWE-400
6.5
6.5
2023-03-06 CVE-2022-3707 Double Free vulnerability in multiple products
A double-free memory flaw was found in the Linux kernel.
local
low complexity
linux redhat CWE-415
5.5
5.5