Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Red Hat — Vulnerabilities & Security Advisories 691

Browse all 691 CVE security advisories affecting Red Hat. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Red Hat operates primarily as a provider of open-source enterprise software solutions, most notably its Linux operating system and container platforms. With 688 recorded Common Vulnerabilities and Exposures, the organization’s historical attack surface frequently involves remote code execution, cross-site scripting, and privilege escalation flaws within its middleware and management tools. These vulnerabilities often stem from complex codebases and third-party dependencies integrated into its distribution. Security characteristics are defined by a rigorous patching lifecycle and the Red Hat Security Response Team, which issues timely advisories for critical issues. While major public breaches directly attributed to Red Hat core infrastructure are rare, individual component flaws have occasionally allowed attackers to gain unauthorized access or execute arbitrary commands. The company maintains a strong reputation for transparency, providing detailed technical guidance to help administrators mitigate risks associated with its widely deployed enterprise technologies.

Top products by Red Hat: Red Hat Enterprise Linux 10 Red Hat Enterprise Linux 8 Red Hat Enterprise Linux 6 Ansible keycloak Red Hat Enterprise Linux 9 Red Hat build of Keycloak 26.4 Red Hat Hardened Images Red Hat Enterprise Linux 7 glusterfs Red Hat Build of Keycloak kernel Red Hat build of Keycloak 26.2 newlib mirror registry for Red Hat OpenShift Red Hat Ansible Automation Platform 2.5 for RHEL 8 undertow OpenShift Red Hat Single Sign-On 7 samba Red Hat Advanced Cluster Security 4.2 Red Hat Quay 3 wildfly cloudforms ipa Red Hat Ansible Automation Platform 2.4 for RHEL 8 cfme Red Hat build of Apache Camel for Spring Boot 4 Red Hat Ansible Automation Platform 2 Ansible Tower
CVE IDTitleCVSSSeverityPublished
CVE-2025-14778 Keycloak: incorrect ownership checks in /uma-policy/ — Red Hat build of Keycloak 26.2CWE-266 5.4 Medium2026-02-09
CVE-2026-1529 Org.keycloak.services.resources.organizations: keycloak: unauthorized organization registration via improper invitation token validation — Red Hat build of Keycloak 26.2CWE-347 8.1 High2026-02-09
CVE-2026-1486 Org.keycloak.protocol.oidc.grants: disabled identity providers are still accepted for jwt authorization grant — Red Hat build of Keycloak 26.4CWE-358 8.8 High2026-02-09
CVE-2025-14831 Gnutls: gnutls: denial of service via excessive resource consumption during certificate verification — Red Hat Enterprise Linux 10CWE-407 5.3 Medium2026-02-09
CVE-2026-1709 Keylime: keylime: authentication bypass allows unauthorized administrative operations due to missing client-side tls authentication — Red Hat Enterprise Linux 10CWE-322 9.4 Critical2026-02-06
CVE-2026-0598 Ansible-lightspeed: broken object level authorization leading to cross-user ai conversation context injection in ansible lightspeed api — Red Hat Ansible Automation Platform 2.6CWE-283 4.2 Medium2026-02-06
CVE-2026-1801 Libsoup: libsoup: http request smuggling via malformed chunk headers — Red Hat Enterprise Linux 10CWE-444 5.3 Medium2026-02-03
CVE-2026-1760 Libsoup: soupserver: denial of service via http request smuggling — Red Hat Enterprise Linux 10CWE-444 5.3 Medium2026-02-02
CVE-2026-1761 Libsoup: stack-based buffer overflow in libsoup multipart response parsingmultipart http response — Red Hat Enterprise Linux 10CWE-121 8.6 High2026-02-02
CVE-2026-1757 Libxml2: memory leak leading to local denial of service in xmllint interactive shell — Red Hat Hardened ImagesCWE-401 6.2 Medium2026-02-02
CVE-2026-1518 Keycloak: blind server-side request forgery (ssrf) via ciba backchannel notification endpoint in keycloak — Red Hat Build of KeycloakCWE-918 2.7 Low2026-02-02
CVE-2026-1530 Fog-kubevirt: fog-kubevirt: man-in-the-middle vulnerability due to disabled certificate validation — Red Hat Satellite 6.16 for RHEL 8CWE-295 8.1 High2026-02-02
CVE-2026-1531 Foreman-kubevirt: foreman_kubevirt: man-in-the-middle due to insecure default ssl verification — Red Hat Satellite 6.16 for RHEL 8CWE-295 8.1 High2026-02-02
CVE-2025-13881 Org.keycloak.services.resources.admin: keycloak: limited administrator can retrieve sensitive user attributes via admin api — Red Hat build of Keycloak 26.4CWE-266 2.7 Low2026-02-02
CVE-2024-4027 Undertow: outofmemoryerror in httpservletrequestimpl.getparameternames() can cause remote dos attacks — OpenShift ServerlessCWE-20 7.5 High2026-01-30
CVE-2026-1616 osim: Path Traversal via query parameters in Nginx configuration — osimCWE-22 7.5 High2026-01-29
CVE-2026-1539 Libsoup: libsoup: credential leakage via http redirects — Red Hat Enterprise Linux 10CWE-201 5.8 Medium2026-01-28
CVE-2026-1536 Libsoup: libsoup: http header injection or response splitting via crlf injection in content-disposition header — Red Hat Enterprise Linux 10CWE-93 5.8 Medium2026-01-28
CVE-2026-1489 Glib: glib: memory corruption via integer overflow in unicode case conversion — Red Hat Enterprise Linux 10CWE-787 5.4 Medium2026-01-27
CVE-2026-1485 Glib: glib: local denial of service via buffer underflow in content type parsing — Red Hat Enterprise Linux 10CWE-124 2.8 Low2026-01-27
CVE-2026-1484 Glib: integer overflow leading to buffer underflow and out-of-bounds write in glib g_base64_encode() — Red Hat Enterprise Linux 10CWE-787 4.2 Medium2026-01-27
CVE-2026-1467 Libsoup: libsoup: http header injection via specially crafted urls when an http proxy is configured — Red Hat Enterprise Linux 10CWE-93 5.8 Medium2026-01-27
CVE-2025-9820 Gnutls: stack-based buffer overflow in gnutls_pkcs11_token_init() function — Red Hat Enterprise Linux 10CWE-121 4.0 Medium2026-01-26
CVE-2025-9615 Networkmanager: networkmanager file access — Red Hat Enterprise Linux 10CWE-281 8.1AIHighAI2026-01-26
CVE-2026-1190 Org.keycloak/keycloak-services: keycloak saml brokering: response delay due to unchecked notonorafter in subjectconfirmationdata — Red Hat build of Keycloak 26.4CWE-112 3.1 Low2026-01-26
CVE-2025-14525 Kubevirt: kubevirt: vm administration denial of service via guest agent — Red Hat OpenShift Virtualization 4CWE-770 6.4 Medium2026-01-26
CVE-2025-14969 Hibernate-reactive-core: hibernate reactive: denial of service due to connection leak on http client disconnect — Red Hat build of Quarkus 3.27.2CWE-772 4.3 Medium2026-01-26
CVE-2025-14459 Virt-cdi-controller: unauthorized pvc cloning via dataimportcron — RHEL-9-CNV-4.19CWE-639 8.5 High2026-01-26
CVE-2025-14083 Keycloak-server: keycloak: improper access control in admin rest api leads to information disclosure — Red Hat build of Keycloak 26.4CWE-284 2.7 Low2026-01-21
CVE-2026-0988 Glib: glib: denial of service via integer overflow in g_buffered_input_stream_peek() — Red Hat Hardened ImagesCWE-190 3.7 Low2026-01-21

This page lists every published CVE security advisory associated with Red Hat. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.