Red Hat Vulnérabilités

Chronologie

Taper

Not Defined	325
Operating System	212
Application Server Software	181
Virtualization Software	112
Cloud Software	71

Produit

Red Hat Enterprise Linux	111
Red Hat Linux	80
Red Hat JBoss Enterprise Application Platform	62
Red Hat Ansible	36
Red Hat Ansible Tower	29

Contre-mesures

Official Fix	622
Temporary Fix	0
Workaround	5
Unavailable	1
Not Defined	318

Exploitabilité

High	18
Functional	0
Proof-of-Concept	79
Unproven	36
Not Defined	813

Vecteur d'accès

Not Defined	0
Physical	1
Local	270
Adjacent	108
Network	567

Authentification

Not Defined	0
High	12
Low	318
None	616

Interaction de l'utilisateur

Not Defined	0
Required	122
None	824

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	4
≤4	127
≤5	133
≤6	234
≤7	183
≤8	139
≤9	77
≤10	49

CVSSv3 Temp

≤1	0
≤2	0
≤3	6
≤4	137
≤5	149
≤6	262
≤7	179
≤8	121
≤9	65
≤10	27

VulDB

≤1	0
≤2	1
≤3	13
≤4	166
≤5	129
≤6	245
≤7	139
≤8	142
≤9	63
≤10	48

NVD

≤1	0
≤2	0
≤3	3
≤4	9
≤5	12
≤6	65
≤7	63
≤8	75
≤9	43
≤10	32

CNA

≤1	0
≤2	0
≤3	1
≤4	5
≤5	3
≤6	5
≤7	10
≤8	8
≤9	4
≤10	2

Fournisseur

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	1

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploiter 0 jour

<1k	2
<2k	2
<5k	118
<10k	329
<25k	435
<50k	60
<100k	0
≥100k	0

Exploiter aujourd'hui

<1k	634
<2k	38
<5k	111
<10k	123
<25k	40
<50k	0
<100k	0
≥100k	0

Exploiter le volume du marché

🔴 CTI Activités

Affected Products (212): 3scale (1), 3scale API Management (1), 3scale API Management Platform (4), 389 Directory Server (3), 389-ds-base (1), A-MQ Streams (1), AMQ (2), AMQ Broker (3), Advanced Cluster Management for Kubernetes (4), Advanced Cluster Security for Kubernetes (1), Aeolus Conductor (1), Ansible (36), Ansible Automation Platform (3), Ansible Base (1), Ansible Community (1), Ansible Engine (16), Ansible Playbooks (1), Ansible Tower (29), Ansible Vault (1), Application Platforms (1), Automatic Bug Reporting Tool (3), Business Central (1), CMAN (1), Cairo (1), Ceph (1), Ceph Storage (5), Ceph Storage RGW (1), Ceph Storage RadosGW (2), Certificate Server (2), Certificate System (8), Certification (1), CloudForms (19), CloudForms 2 Management Engine (1), CloudForms 3.0 Management Engine (8), CloudForms 3.1 Management Engine (2), CloudForms Cloud Engine (2), CloudForms Management Engine (5), Cloudforms (1), Cloudforms 3.0 Management Engine (4), Cluster Suite (2), Conga (3), Cygwin (1), DataGrid (1), Decision Manager (2), Desktop (1), Directory Server (12), Discovery Server (1), DocBook Stylesheets (1), Docker (1), Dogtag Certificate System (3), Enterprise Application Platform (2), Enterprise Linux (111), Enterprise Linux Desktop (9), Enterprise Linux HPC Node (5), Enterprise Linux Kernel (1), Enterprise Linux OpenStack (1), Enterprise Linux OpenStack Platform (1), Enterprise Linux Server (5), Enterprise Linux Server Aus (1), Enterprise Linux Server Supplementary (1), Enterprise Linux Workstation (6), Enterprise MRG (13), Enterprise Mrg (4), Enterprise Virtualization (18), Enterprise Virtualization Hypervisor (2), Enterprise Virtualization Manager (19), Evince (4), Fedora (6), Fedora Core (6), Fedora Directory Server (1), Feedhenry Enterprise Mobile Application Platform (1), FreeIPA (6), Glint (1), GlusterFS (7), Gluster Storage (6), Gluster Storage Server (1), IcedTea (3), IcedTea-Web (5), IcedTea6 (2), Infinispan (1), InterChange (1), JBoss (15), JBoss A-MQ (6), JBoss Application Server (4), JBoss BPMS (4), JBoss BPM Suite (8), JBoss BRMS (4), JBoss Core Services httpd (2), JBoss Data Grid (2), JBoss Data Virtualization (3), JBoss EAP (11), JBoss Enterprise (10), JBoss Enterprise Application Platform (62), JBoss Enterprise BRMS Platform (3), JBoss Enterprise Portal Platform (11), JBoss Enterprise SOA Platform (2), JBoss Fuse (4), JBoss Operations Network (13), JBoss Portal (5), JBoss Remoting (2), JBossWeb (1), JBoss Web Framework Kit (4), JBoss Web Server (1), JBoss WildFly Application Server (1), Jboss (1), Jboss Enterprise Soa Platform (1), Jboss Enterprise Web (1), Jboss Fuse Esb Enterprise (1), Jbpm-designer (1), KIE Server (1), KON (2), Kernel (1), KeyCloak (4), Kie Workbench (1), Linux (83), Linux Advanced Workstation (1), Linux Enterprise (1), Luci (1), ManageIQ EVM (1), ManageIQ Enterprise Virtualization Manager (1), Mobile Application Platform (1), NetworkManager (1), Network Satelite Server (1), Network Satellite (11), Network Satellite Server (6), Nfs Utils (1), OpenShift (14), OpenShift API Management (1), OpenShift Assisted Installer (1), OpenShift Container Platform (1), OpenShift Container Platform 3 (1), OpenShift Enterprise (14), OpenShift Origin (5), OpenStack (12), OpenStack Platform (2), OpenStack Platform Director (2), Openshift (2), Openshift Container Storage (1), Openshift node-utils (1), Openstack (4), Openstack Enterprise (1), Openstack Folsom (2), PXE Server (1), PackStack (1), PolicyKit (1), Process Automation (2), Process Automation Manager (1), Quay (5), QuickStart Cloud Installer (4), RESTEasy (3), RHN (1), RPM (1), RPM Package Manager (8), Red Hat Certificate System (2), Remoting for SOA Platform (1), RichFaces (1), SDL (1), Satellite (24), Single Sign-On (3), Single Sign On (1), Spacewalk (9), Storage Console (1), Storage Server (2), Stronghold (2), Subscription Asset Manager (2), TUX HTTP Server (1), Uberfire (1), Update Infrastructure (1), Virtual Desktop Service Manager (1), WildFly (9), Wildfly Elytron (1), XML Language Server (1), XML Language Support (1), adminutil (1), cman (1), containers-image (1), dtach (1), enterprise linux (1), gfs2-utils (1), hawtjni (1), jboss-client (1), jboss-remoting (1), katello-headpin (1), kdelibs (1), kexec-tools (3), libvirt (17), livecd-tools (1), mcstrans (1), open-iscsi (1), openshift (5), openshift-clients (1), openstack (1), openstack-neutron (1), openstack-octavia (1), policycoreutils (2), ppp (1), redhat-certification (5), redhat-sso-7 (1), rhevm-dwh (1), rhevm-reports (3), rhncfg (1), rpcbind (1), sos (2), spacewalk-java (2), spice-activex (1), spice-gtk (1), spice-xpi (4), sysreport (1), system-config-firewall (1), system-config-printer (1), up2date (1), yum-rhn-plugin (1)

Link to Vendor Website: https://www.redhat.com/

Publié	Base	Temp	Vulnérabilité	Prod	Exp	Con	CTI	EPSS	CVE
01/06/2023	5.5	5.5	Red Hat Advanced Cluster Management for Kubernetes grc-policy-propagator elévation de privilèges	Virtualization Software	Not Defined	Not Defined	0.03	0.00043	CVE-2023-3027
18/05/2023	3.5	3.4	Red Hat A-MQ Streams OKHttp divulgation de l'information	Inconnue	Not Defined	Official Fix	0.04	0.00000	CVE-2023-0833
25/03/2023	4.5	4.4	Red Hat OpenShift Assisted Installer Discovery ISO Generation divulgation de l'information	Virtualization Software	Not Defined	Official Fix	0.03	0.00045	CVE-2021-3684
28/02/2023	4.9	4.9	Red Hat Discovery Server LDAP divulgation de l'information	Inconnue	Not Defined	Not Defined	0.00	0.00043	CVE-2023-1055
18/01/2023	3.9	3.9	Red Hat OpenShift Block Cipher chiffrement faible	Virtualization Software	Not Defined	Official Fix	0.06	0.00046	CVE-2023-0296
13/01/2023	7.0	7.0	Red Hat Advanced Cluster Management for Kubernetes API Endpoint elévation de privilèges	Virtualization Software	Not Defined	Not Defined	0.03	0.00044	CVE-2022-3841
16/12/2022	6.2	6.2	Red Hat Satellite HTTP Header elévation de privilèges	Inconnue	Not Defined	Not Defined	0.03	0.00046	CVE-2022-4130
07/12/2022	3.5	3.4	Red Hat OpenStack Dashboard cross site scripting	Cloud Software	Not Defined	Not Defined	0.04	0.00043	CVE-2022-4133
20/10/2022	4.5	4.5	Red Hat OpenShift server_priv.pem elévation de privilèges	Virtualization Software	Not Defined	Not Defined	0.03	0.00042	CVE-2013-4281
20/10/2022	6.1	6.1	Red Hat 3scale API Management divulgation de l'information	Automation Software	Not Defined	Not Defined	0.03	0.00048	CVE-2022-1414
20/10/2022	6.9	6.9	Red Hat OpenShift Add-on Script elévation de privilèges	Virtualization Software	Not Defined	Not Defined	0.00	0.00048	CVE-2013-4253
18/10/2022	7.1	7.1	Red Hat Decision Manager/Process Automation Business Central Console elévation de privilèges	Automation Software	Not Defined	Not Defined	0.04	0.00050	CVE-2019-14841
18/10/2022	5.5	5.5	Red Hat Decision Manager/Process Automation divulgation de l'information	Automation Software	Not Defined	Not Defined	0.01	0.00084	CVE-2019-14840
18/10/2022	4.5	4.5	Red Hat OpenShift Enterprise Hawkular Metric elévation de privilèges	Virtualization Software	Not Defined	Not Defined	0.03	0.00045	CVE-2017-7517
15/10/2022	5.0	5.0	Red Hat 389-ds-base Content Synchronization Plugin dénie de service	Inconnue	Not Defined	Not Defined	0.07	0.00047	CVE-2022-2850
13/09/2022	5.5	5.5	Red Hat WildFly elévation de privilèges	Application Server Software	Not Defined	Not Defined	0.04	0.00087	CVE-2022-1278
02/09/2022	4.9	4.9	Red Hat OpenShift Container Platform HAProxy Configuration File dénie de service	Virtualization Software	Not Defined	Not Defined	0.02	0.00044	CVE-2022-1677
02/09/2022	6.0	6.0	Red Hat Openshift authentification faible	Virtualization Software	Not Defined	Not Defined	0.03	0.00049	CVE-2022-1632
02/09/2022	6.0	6.0	Red Hat Advanced Cluster Management for Kubernetes Search Filter Parser sql injection	Virtualization Software	Not Defined	Not Defined	0.00	0.00044	CVE-2022-2238
02/09/2022	6.1	6.1	Red Hat Advanced Cluster Security for Kubernetes Notifier Secret divulgation de l'information	Virtualization Software	Not Defined	Official Fix	0.03	0.00064	CVE-2022-1902
01/09/2022	6.0	6.0	Red Hat OpenShift Subdomain elévation de privilèges	Virtualization Software	Not Defined	Not Defined	0.00	0.00000	CVE-2022-2220
26/08/2022	6.8	6.8	Red Hat Satellite elévation de privilèges	Inconnue	Not Defined	Not Defined	0.03	0.00050	CVE-2021-3414
26/08/2022	3.5	3.5	Red Hat JBoss Core Services httpd directory traversal	Application Server Software	Not Defined	Not Defined	0.02	0.00047	CVE-2021-3688
26/08/2022	5.5	5.5	Red Hat Ansible Tower Job Isolation elévation de privilèges	Inconnue	Not Defined	Not Defined	0.03	0.00043	CVE-2021-4112
26/08/2022	4.5	4.5	Red Hat Ceph Storage chiffrement faible	Inconnue	Not Defined	Official Fix	0.03	0.00060	CVE-2021-3979

921 plus d'entrées ne sont pas affichées

🔒 Login Required

You need to signup and login to see more of the remaining 921 results.

◂ PrécédentAperçuSuivant ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!