Known Vulnerabilities for products from Redhat
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Redhat".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by Redhat can be found at device.report : Redhat
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-48864 json | A flaw was found in libsolv. This heap buffer overflow occurs during the decompression of attacker-controlled compressed data... | Not Provided | 2026-05-26 | 2026-05-28 |
| CVE-2026-42010 json | A flaw was found in gnutls. Servers configured with RSA-PSK (Rivest–Shamir–Adleman – Pre-Shared Key) wrongfully matched... | Not Provided | 2026-05-07 | 2026-06-02 |
| CVE-2026-40919 json | A flaw was found in GIMP. This vulnerability, a buffer overflow in the `file-seattle-filmworks` plugin, can be exploited when... | Not Provided | 2026-04-15 | 2026-04-28 |
| CVE-2026-40918 json | A flaw was found in GIMP. Processing a specially crafted PVR image file with large dimensions can lead to a denial of service... | Not Provided | 2026-04-15 | 2026-04-28 |
| CVE-2026-40917 json | A flaw was found in GIMP. This vulnerability, a heap buffer over-read in the `icns_slurp()` function, occurs when processing ... | Not Provided | 2026-04-15 | 2026-04-28 |
| CVE-2026-40916 json | A flaw was found in GIMP. A stack buffer overflow vulnerability in the TIM image loader's 4BPP decoding path allows a local u... | Not Provided | 2026-04-15 | 2026-04-28 |
| CVE-2026-40915 json | A flaw was found in GIMP. A remote attacker could exploit an integer overflow vulnerability in the FITS image loader by provi... | Not Provided | 2026-04-15 | 2026-04-28 |
| CVE-2026-37982 json | A flaw was found in Keycloak. This authentication vulnerability allows a remote attacker to replay `ExecuteActionsActionToken... | Not Provided | 2026-05-19 | 2026-06-03 |
| CVE-2026-37981 json | A flaw was found in Keycloak. A broken access control vulnerability in the Account Resources user lookup endpoint allows a re... | Not Provided | 2026-05-19 | 2026-06-03 |
| CVE-2026-37980 json | A flaw was found in Keycloak, specifically in the organization selection login page. A remote attacker with `manage-realm` or... | Not Provided | 2026-04-14 | 2026-06-02 |
| CVE-2026-37979 json | A flaw was found in Keycloak. This access control vulnerability in Keycloak's OpenID Connect (OIDC) token introspection endpo... | Not Provided | 2026-05-19 | 2026-06-03 |
| CVE-2026-37978 json | A flaw was found in Keycloak. A low-privilege administrator with the 'view-clients' role can exploit this by invoking the 'ev... | Not Provided | 2026-05-19 | 2026-06-03 |
| CVE-2026-37977 json | A flaw was found in Keycloak. A remote attacker can exploit a Cross-Origin Resource Sharing (CORS) header injection vulnerabi... | Not Provided | 2026-04-06 | 2026-04-24 |
| CVE-2026-35092 json | A flaw was found in Corosync. An integer overflow vulnerability in Corosync's join message sanity validation allows a remote,... | Not Provided | 2026-04-01 | 2026-05-26 |
| CVE-2026-35091 json | A flaw was found in Corosync. A remote unauthenticated attacker can exploit a wrong return value vulnerability in the Corosyn... | Not Provided | 2026-04-01 | 2026-05-26 |
| CVE-2026-34002 json | A flaw was found in the X.Org X server. This vulnerability, an out-of-bounds read, affects the XKB (X Keyboard Extension) mod... | Not Provided | 2026-05-05 | 2026-06-02 |
| CVE-2026-34000 json | A flaw was found in the X.Org X server. This out-of-bounds read vulnerability in the XKB geometry processing, specifically wi... | Not Provided | 2026-05-05 | 2026-06-02 |
| CVE-2026-33845 json | A flaw in GnuTLS DTLS handshake parsing allows malformed fragments with zero length and non-zero offset, leading to an intege... | Not Provided | 2026-04-30 | 2026-06-02 |
| CVE-2026-32591 json | A flaw was found in Red Hat Quay's Proxy Cache configuration feature. When an organization administrator configures an upstre... | Not Provided | 2026-04-08 | 2026-06-03 |
| CVE-2026-32590 json | A flaw was found in Red Hat Quay's handling of resumable container image layer uploads. The upload process stores intermediat... | Not Provided | 2026-04-08 | 2026-06-03 |
Known software with vulnerabilities from Redhat
| Type | Vendor | Product | Version |
|---|---|---|---|
| Operating System | Redhat | 389 Directory Server | - |
| Application | Redhat | 3scale | - |
| Application | Redhat | Advanced Cluster Management For Kubernetes | 2.0 |
| Application | Redhat | Aeolus Conductor | - |
| Application | Redhat | Amq | 2.0 |
| Application | Redhat | Amq Online | - |
| Application | Redhat | Analog Real-time Synthesizer | - |
| Application | Redhat | Ansible | 0.0.1 |
| Application | Redhat | Ansible Engine | 0.0.1 |
| Application | Redhat | Ansible Tower | - |
| Application | Redhat | Apicast | 2.0.0 |
| Application | Redhat | Application Server | - |
| Application | Redhat | Automatic Bug Reporting Tool | 0.0.10 |
| Application | Redhat | Automation Manager | 7.3.1 |
| Application | Redhat | Beaker | 0.10.0 |
| Application | Redhat | Bigmem Kernel | - |
| Application | Redhat | Bodhi | 0.2.0 |
| Application | Redhat | Cairo | - |
| Application | Redhat | Ceph | 0.1 |
| Application | Redhat | Ceph-iscsi-cli | - |