Red Hat Enterprise Linux 7 — Vulnerabilities & Security Advisories 12

All 12 CVE vulnerabilities found in Red Hat Enterprise Linux 7, with AI-generated Chinese analysis, references, and POCs.

Vendor: Red Hat

CVE ID	Title	CVSS	Severity	Published
CVE-2026-2239	Gimp: gimp: application crash (dos) via crafted psd file due to heap-buffer-overflow CWE-170	2.8	Low	2026-03-26
CVE-2023-40551	Shim: out of bounds read when parsing mz binaries CWE-125	5.1	Medium	2024-01-29
CVE-2023-40549	Shim: out-of-bounds read in verify_buffer_authenticode() malformed pe file CWE-125	6.2	Medium	2024-01-29
CVE-2023-40546	Shim: out-of-bounds read printing error messages CWE-476	6.2	Medium	2024-01-29
CVE-2023-40550	Shim: out-of-bound read in verify_buffer_sbat() CWE-125	5.5	Medium	2024-01-29
CVE-2023-40548	Shim: interger overflow leads to heap buffer overflow in verify_sbat_section on 32-bits systems CWE-787	7.4	High	2024-01-29
CVE-2023-40547	Shim: rce in http boot support may lead to secure boot bypass CWE-787	8.3	High	2024-01-25
CVE-2023-5455	Ipa: invalid csrf protection CWE-352	6.5	Medium	2024-01-10
CVE-2023-3972	Insights-client: unsafe handling of temporary files and directories CWE-379	7.8	High	2023-11-01
CVE-2023-5380	Xorg-x11-server: use-after-free bug in destroywindow CWE-416	4.7	Medium	2023-10-25
CVE-2023-42753	Kernel: netfilter: potential slab-out-of-bound access due to integer underflow CWE-787	7.0	High	2023-09-25
CVE-2023-3899	Subscription-manager: inadequate authorization of com.redhat.rhsm1 d-bus interface allows local users to modify configuration CWE-285	7.8	High	2023-08-23

All 12 known CVE vulnerabilities affecting Red Hat Enterprise Linux 7 with full Chinese analysis, references, and POCs where available.