Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

RED HAT — Vulnerabilities & Security Advisories 815

Browse all 815 CVE security advisories affecting RED HAT. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Red Hat operates primarily as a provider of open-source enterprise software solutions, most notably its Linux operating system and container platforms. With 688 recorded Common Vulnerabilities and Exposures, the organization’s historical attack surface frequently involves remote code execution, cross-site scripting, and privilege escalation flaws within its middleware and management tools. These vulnerabilities often stem from complex codebases and third-party dependencies integrated into its distribution. Security characteristics are defined by a rigorous patching lifecycle and the Red Hat Security Response Team, which issues timely advisories for critical issues. While major public breaches directly attributed to Red Hat core infrastructure are rare, individual component flaws have occasionally allowed attackers to gain unauthorized access or execute arbitrary commands. The company maintains a strong reputation for transparency, providing detailed technical guidance to help administrators mitigate risks associated with its widely deployed enterprise technologies.

Top products by RED HAT: Red Hat Enterprise Linux 10 Red Hat Enterprise Linux 8 Red Hat Enterprise Linux 6 Ansible Red Hat build of Keycloak 26.4 keycloak Red Hat Enterprise Linux 9 Red Hat Hardened Images Red Hat build of Keycloak 26.6 Red Hat Build of Keycloak Red Hat Directory Server 11 Red Hat build of Keycloak 26.2 Red Hat Enterprise Linux 7 glusterfs kernel Red Hat Quay 3 newlib Red Hat Ansible Automation Platform 2 Red Hat Single Sign-On 7 undertow OpenShift Red Hat OpenShift Container Platform 4 Red Hat Ansible Automation Platform 2.5 for RHEL 8 samba cloudforms ipa Red Hat Advanced Cluster Security 4.2 Red Hat Ansible Automation Platform 2.4 for RHEL 8 cfme wildfly
CVE IDTitleCVSSSeverityPublished
CVE-2026-50256 Xorg-x11-server: xorg-x11-server-xwayland: xorg-x11-server: stack buffer overflow in font alias resolution due to libxfont2 name length mismatch — Red Hat Enterprise Linux 8CWE-121 7.8 High2026-06-05
CVE-2026-50257 Xorg-x11-server: xorg-x11-server-xwayland: xorg-x11-server: use-after-free in misyncdestroyfence() — Red Hat Enterprise Linux 8CWE-416 7.8 High2026-06-05
CVE-2026-11332 Ansible-core: argument injection in ansible-galaxy role install leads to arbitrary code execution — Red Hat Ansible Automation Platform 2CWE-88 7.8 High2026-06-05
CVE-2026-9088 Keycloak: keycloak: information disclosure due to user profile permission bypass — Red Hat build of Keycloak 26.6CWE-1220 2.7 Low2026-06-05
CVE-2026-10843 Cloud-credential-operator: cco mint-mode credentialsrequest manifests grant account-wide iam access beyond cluster scope on aws — Red Hat OpenShift Container Platform 4CWE-250 7.2 High2026-06-04
CVE-2026-10840 Openshift-pipelines-operator-rh: openshift-pipelines-operator: tekton-scheduler-rolebinding grants system:authenticated write access to kueue and cert-manager resources — Builds for Red Hat OpenShiftCWE-732 7.1 High2026-06-04
CVE-2026-10805 Networkmanager: networkmanager: local privilege escalation via malformed mud urls in dhclient backend — Multicluster Engine for KubernetesCWE-78 6.7 Medium2026-06-04
CVE-2026-1784 Ose-cluster-ingress-operator: remote code execution through haproxy configuration injection — Red Hat OpenShift Container Platform 4.16CWE-15 8.8 High2026-06-02
CVE-2026-5419 Guntls: gnutls: information disclosure via timing side-channel in pkcs#7 padding removal — Red Hat Enterprise Linux 10CWE-208 3.7 Low2026-06-01
CVE-2026-43958 Rrdtool: rrdtool: stack buffer overflow allows local code execution or denial of service — Red Hat Enterprise Linux 10CWE-121 7.8 High2026-06-01
CVE-2026-10118 Poppler: integer overflow in poppler splashoutputdev::tilingpatternfill leads to heap buffer overflow via unchecked dimension multiplication — Red Hat Enterprise Linux 10CWE-190 7.8 High2026-06-01
CVE-2026-10533 Openshift: openshift: non-admin user can bypass resourcequota and flood etcd with events causing cluster-wide api degradation — Red Hat OpenShift Container Platform 4CWE-770 5.0 Medium2026-06-01
CVE-2026-10517 Clair: clair: unauthenticated ssrf via manifest layer uri enables internal network reconnaissance — Red Hat Quay 3CWE-918 5.8 Medium2026-06-01
CVE-2026-10101 Assisted-service: assisted-service: infraenv status leaks referenced pull-secret contents to namespace view users — Multicluster Engine for KubernetesCWE-201 6.3 Medium2026-05-29
CVE-2026-42965 Openshift/router: openshift/router: cloud metadata ssrf via fqdn-typed endpointslice bypasses destination validation — Red Hat OpenShift Container Platform 4CWE-918 7.7 High2026-05-29
CVE-2026-46579 Openshift/router: openshift/router: mtls client certificate spoofing via unstripped x-ssl-client headers on http frontend — Red Hat OpenShift Container Platform 4CWE-287 7.4 High2026-05-29
CVE-2026-10078 Quay/config-tool: quay/config-tool: gitlab oauth client_secret exposed in url querystring — Red Hat Quay 3CWE-598 2.7 Low2026-05-29
CVE-2026-10052 Quay/config-tool: quay/config-tool: ssrf via unfiltered ldap and smtp config validation endpoints — Red Hat Quay 3CWE-918 4.1 Medium2026-05-29
CVE-2026-6324 Libsoup: libsoup: http request smuggling via unsigned to signed conversion error — Red Hat Enterprise Linux 10CWE-444 4.8 Medium2026-05-29
CVE-2026-10028 Glib-networking: infinite loop in glib-networking gnutls backend allows remote denial of service via circular certificate chain — Red Hat Enterprise Linux 10CWE-835 4.3 Medium2026-05-28
CVE-2026-9804 Kubevirt: kubevirt: vmexport directory symlink escape enables exporter pod file read — Red Hat OpenShift Virtualization 4CWE-59 7.7 High2026-05-28
CVE-2026-4408 Samba: remote code execution in samr — Red Hat Enterprise Linux 10CWE-78 9.0 Critical2026-05-28
CVE-2026-44604 Rpm: command injection in rpmuncompress dountar() via unescaped archive top-level directory name in popen() shell command — Pen Drive Powered by Red Hat LightspeedCWE-78 7.0 High2026-05-28
CVE-2026-9802 Keycloak: keycloak: unauthorized account access via replayed refresh tokens after cluster restart — Red Hat build of Keycloak 26.6CWE-613 6.8 Medium2026-05-28
CVE-2026-9803 Keycloak: keycloak: denial of service via malformed authorization header — Red Hat build of Keycloak 26.6CWE-125 5.3 Medium2026-05-28
CVE-2026-9801 Keycloak: keycloak: denial of service via malformed ldap password policy response — Red Hat build of Keycloak 26.6CWE-1284 4.9 Medium2026-05-28
CVE-2026-9798 Keycloak: keycloak: brute-force protection bypass in ciba flow — Red Hat Build of KeycloakCWE-305 4.3 Medium2026-05-28
CVE-2026-9796 Keycloak: keycloak: privilege escalation via time-of-check to time-of-use (toctou) vulnerability — Red Hat Build of KeycloakCWE-367 6.5 Medium2026-05-28
CVE-2026-9795 Keycloak: keycloak: privilege escalation via improper scope mapping enforcement — Red Hat Build of KeycloakCWE-266 7.3 High2026-05-28
CVE-2026-9794 Keycloak: keycloak: information disclosure via saml ecp endpoint — Red Hat build of Keycloak 26.6CWE-209 5.3 Medium2026-05-28

This page lists every published CVE security advisory associated with RED HAT. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.