Vulnerabilities > Redhat > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-04-08 CVE-2021-3413 A flaw was found in Red Hat Satellite in tfm-rubygem-foreman_azure_rm in versions before 2.2.0.
network
low complexity
theforeman redhat
6.3
6.3
2021-04-01 CVE-2021-3447 A flaw was found in several ansible modules, where parameters containing credentials, such as secrets, were being logged in plain-text on managed nodes, as well as being made visible on the controller node when run in verbose mode.
local
low complexity
redhat fedoraproject
5.5
5.5
2021-04-01 CVE-2021-20291 A deadlock vulnerability was found in 'github.com/containers/storage' in versions before 1.28.1.
network
low complexity
storage-project redhat fedoraproject
6.5
6.5
2021-04-01 CVE-2021-3393 An information leak was discovered in postgresql in versions before 13.2, before 12.6 and before 11.11.
network
low complexity
postgresql redhat
4.3
4.3
2021-03-26 CVE-2021-20289 A flaw was found in RESTEasy in all versions of RESTEasy up to 4.6.0.Final.
network
low complexity
redhat netapp quarkus oracle
5.3
5.3
2021-03-26 CVE-2021-20197 There is an open race window when writing output in the following utilities in GNU binutils version 2.35 and earlier:ar, objcopy, strip, ranlib.
local
high complexity
gnu redhat netapp broadcom
6.3
6.3
2021-03-26 CVE-2020-35518 Information Exposure Through Discrepancy vulnerability in Redhat 389 Directory Server
When binding against a DN during authentication, the reply from 389-ds-base will be different whether the DN exists or not.
network
low complexity
redhat CWE-203
5.3
5.3
2021-03-26 CVE-2020-35508 A flaw possibility of race condition and incorrect initialization of the process id was found in the Linux kernel child/parent process identification handling while filtering signal handlers.
local
high complexity
linux redhat netapp
4.5
4.5
2021-03-25 CVE-2021-3446 Use of Insufficiently Random Values vulnerability in multiple products
A flaw was found in libtpms in versions before 0.8.2. 		5.5
5.5
2021-03-25 CVE-2021-3443 A NULL pointer dereference flaw was found in the way Jasper versions before 2.0.27 handled component references in the JP2 image format decoder.
local
low complexity
jasper-project redhat fedoraproject
5.5
5.5