Vulnerabilities > Redhat > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-02 | CVE-2020-14388 | Unspecified vulnerability in Redhat 3Scale API Management 2.0 A flaw was found in the Red Hat 3scale API Management Platform, where member permissions for an API's admin portal were not properly enforced. | 6.3 |
| 2021-06-02 | CVE-2020-14317 | Unspecified vulnerability in Redhat Jboss Enterprise Application Platform and Wildfly It was found that the issue for security flaw CVE-2019-3805 appeared again in a further version of JBoss Enterprise Application Platform - Continuous Delivery (EAP-CD) introducing regression. | 5.5 |
| 2021-06-02 | CVE-2020-14335 | Unspecified vulnerability in Redhat Satellite 6.0 A flaw was found in Red Hat Satellite, which allows a privileged attacker to read OMAPI secrets through the ISC DHCP of Smart-Proxy. | 5.5 |
| 2021-06-02 | CVE-2020-14336 | Unspecified vulnerability in Redhat Openshift Container Platform 3.11/4.5.16/4.6 A flaw was found in the Restricted Security Context Constraints (SCC), where it allows pods to craft custom network packets. | 6.5 |
| 2021-06-02 | CVE-2020-10742 | Out-of-bounds Write vulnerability in multiple products A flaw was found in the Linux kernel. | 6.0 |
| 2021-06-02 | CVE-2020-10743 | It was discovered that OpenShift Container Platform's (OCP) distribution of Kibana could open in an iframe, which made it possible to intercept and manipulate requests. | 4.3 |
| 2021-06-01 | CVE-2021-3425 | Unspecified vulnerability in Redhat Jboss A-Mq 7 A flaw was found in the AMQ Broker that discloses JDBC encrypted usernames and passwords when provided in the AMQ Broker application logfile when using the jdbc persistence functionality. | 4.4 |
| 2021-06-01 | CVE-2021-3424 | Unspecified vulnerability in Redhat Single Sign-On 7.4 A flaw was found in keycloak as shipped in Red Hat Single Sign-On 7.4 where IDN homograph attacks are possible. | 5.3 |
| 2021-06-01 | CVE-2021-20306 | Unspecified vulnerability in Redhat Descision Manager, Jbpm and Process Automation A flaw was found in the BPMN editor in version jBPM 7.51.0.Final. | 4.3 |
| 2021-06-01 | CVE-2021-3543 | Use After Free vulnerability in multiple products A flaw null pointer dereference in the Nitro Enclaves kernel driver was found in the way that Enclaves VMs forces closures on the enclave file descriptor. | 6.7 |