VIR Vulnerability Intelligence Relay

Search

Found 849 results in 169ms · Match type: Filtered list

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2026-9803 medium 5.3 5.3 redhat 7d ago A flaw was found in Keycloak's ClientRegistrationAuth component. A remote unauthenticated attacker can exploit this vulnerability by sending a specially crafted POST request with a malformed 'Authori…
CVE-2026-9802 medium 6.8 6.8 redhat 7d ago A flaw was found in Keycloak. When revokeRefreshToken=true is enabled and persistent session storage is in use, a server restart can reset internal timing mechanisms. This allows a remote attacker, w…
CVE-2026-9801 medium 4.9 4.9 redhat 7d ago A flaw was found in Keycloak. A remote attacker with high privileges, such as a realm administrator configuring a malicious Lightweight Directory Access Protocol (LDAP) server or an attacker compromi…
CVE-2026-9798 medium 4.3 4.3 redhat 7d ago A flaw was found in Keycloak, an open-source identity and access management solution. When a user account is temporarily locked due to repeated failed login attempts, an attacker with valid client cr…
CVE-2026-9796 medium 6.5 6.5 redhat 7d ago A flaw was found in Keycloak. An authenticated administrator with the `manage-clients` role can exploit a Time-of-check to time-of-use (TOCTOU) vulnerability in the name-based admin role checks. This…
CVE-2026-9795 high 7.3 7.3 redhat 7d ago A flaw was found in Keycloak's Fine-Grained Admin Permissions (FGAPv2) feature. An administrator with limited client management permissions can exploit this vulnerability to assign any realm role, in…
CVE-2026-9794 medium 5.3 5.3 redhat 7d ago A flaw was found in Keycloak. A remote, unauthenticated attacker can exploit this vulnerability by sending specially crafted SOAP requests to the SAML ECP (Security Assertion Markup Language Enhanced…
CVE-2026-9793 high 7.5 7.5 redhat 7d ago A flaw was found in Keycloak. When a JSON Web Encryption (JWE) encrypted request object is submitted, Keycloak may incorrectly process unsigned claims if the decrypted content is raw JSON, bypassing …
CVE-2026-9792 medium 6.5 6.5 redhat 7d ago A flaw was found in Keycloak's Client Policies, specifically within the `org.keycloak.protocol.oidc` component. When certain condition providers (client-type, client-roles, client-attributes, client-…
CVE-2026-9791 medium 4.3 4.3 redhat 7d ago A flaw was found in Keycloak. An authenticated user with existing organization membership can exploit this flaw by accessing user-facing APIs, such as the account API or by requesting an OpenID Conne…
CVE-2026-9704 high 8.8 8.8 redhat 7d ago A flaw was found in Keycloak. An authenticated user with low privileges can exploit this vulnerability by sending an oversized subject_token JSON Web Token (JWT) to the TokenEndpoint. When the token …
CVE-2026-1933 medium 6.5 6.5 FIX slesdebian debian rhel redhatsamba 7d ago A flaw was found in Samba’s handling of NTFS-style reparse points on shares configured with read only = yes. Due to missing SMB-layer access checks, authenticated users with underlying filesystem wri…
CVE-2026-2340 medium 6.5 6.5 FIX slesdebian debian rhel redhatsamba 7d ago A flaw was found in Samba’s vfs_worm module. The module is intended to provide write-once, read-many (WORM) protections by preventing modification of files after a configurable grace period. Due to i…
CVE-2026-9689 medium 4.2 4.2 redhat 8d ago A flaw was found in Keycloak, an open-source identity and access management solution. When a client application is configured to accept broad redirect Uniform Resource Identifiers (URIs), a remote at…
CVE-2026-48864 high 7.8 7.8 debian debian sles rhel opensuseredhat 8d ago A flaw was found in libsolv. This heap buffer overflow occurs during the decompression of attacker-controlled compressed data within `.solv` files due to insufficient input validation. An attacker ca…
CVE-2026-4480 critical 9.0 9.0 FIX slesdebian debian rhel redhatsamba 8d ago Important: samba security update
CVE-2026-9149 medium 6.5 6.5 FIX debian debian sleswindows windows opensuseredhat 14d ago A flaw was found in libsolv. This heap buffer overflow vulnerability occurs when a victim processes a specially crafted `.solv` file containing negative size values in the `repo_add_solv` function. T…
CVE-2026-9150 medium 6.5 6.5 FIX debian debian sleswindows windows opensuseredhat 14d ago A flaw was found in libsolv. This stack-based buffer overflow vulnerability occurs in libsolv's Debian metadata parser when processing specially crafted Debian repository metadata. An attacker could …
CVE-2026-9087 high 8.1 8.1 redhat 14d ago A flaw was found in Keycloak. The cross-session verification proof is keyed only by (local userId, idpAlias) and is not bound to the upstream identity that was actually verified, so a second upstream…
CVE-2026-9064 high 7.5 7.5 debian debian sles rhel redhat 15d ago A flaw was found in 389-ds-base. The get_ldapmessage_controls_ext() function in the LDAP server does not enforce an upper bound on the number of controls per LDAP message. A remote, unauthenticated a…
CVE-2026-7571 high 7.1 7.1 redhat 15d ago A flaw was found in Keycloak. A low-privilege user, with knowledge of user credentials and client ID, can bypass a security control intended to disable the implicit flow in OpenID Connect (OIDC) clie…
CVE-2026-7507 high 7.5 7.5 redhat 15d ago A session fixation vulnerability was found in Keycloak's login-actions endpoints. An unauthenticated attacker could exploit this flaw by pre-creating an authentication session and tricking a victim i…
CVE-2026-7504 high 8.1 8.1 redhat 15d ago A flaw was found in Keycloak's URL validation logic during redirect operations. By crafting a malicious request, an attacker could bypass validation to redirect users to unauthorized URLs, potentiall…
CVE-2026-7307 high 7.5 7.5 redhat 15d ago A flaw was found in Keycloak. A remote, unauthenticated attacker can send a specially crafted XML input to the Security Assertion Markup Language (SAML) endpoint. This malicious input can cause high …
CVE-2026-4630 medium 6.8 6.8 redhat 15d ago A flaw was found in Keycloak. An authenticated client could exploit an Insecure Direct Object Reference (IDOR) vulnerability in the Authorization Services Protection API endpoint. By knowing or obtai…
CVE-2026-37982 medium 6.8 6.8 redhat 15d ago A flaw was found in Keycloak. This authentication vulnerability allows a remote attacker to replay `ExecuteActionsActionToken` tokens within Keycloak's WebAuthn (Web Authentication) flow. By intercep…
CVE-2026-37981 medium 4.3 4.3 redhat 15d ago A flaw was found in Keycloak. A broken access control vulnerability in the Account Resources user lookup endpoint allows a remote authenticated user, who owns at least one User-Managed Access (UMA) r…
CVE-2026-37979 medium 6.5 6.5 redhat 15d ago A flaw was found in Keycloak. This access control vulnerability in Keycloak's OpenID Connect (OIDC) token introspection endpoint allows a confidential client to bypass audience restrictions. An attac…
CVE-2026-37978 medium 4.9 4.9 redhat 15d ago A flaw was found in Keycloak. A low-privilege administrator with the 'view-clients' role can exploit this by invoking the 'evaluate-scopes' Admin API endpoints with an arbitrary user ID (userId) para…
CVE-2026-8922 medium 5.4 5.4 redhat 16d ago A flaw was found in Keycloak. When both realm-level and client-level `notBefore` revocation policies are configured, Keycloak's OpenID Connect (OIDC) Introspection feature fails to properly honor the…
CVE-2026-8830 medium 4.3 4.3 redhat 16d ago A flaw was found in Keycloak. An authenticated user can bypass configured WebAuthn policies during credential registration by manipulating client-side JavaScript. This occurs because the server-side …
CVE-2026-0966 high 8.2 8.2 FIX rheldebian debian sles libsshredhat 16d ago Moderate: libssh security update
CVE-2026-0964 medium 6.3 6.3 FIX rheldebian debian sles libsshredhat 16d ago Moderate: libssh security update
CVE-2025-5351 medium 6.5 6.5 FIX rheldebian debian sles libsshredhat 16d ago Moderate: libssh security update
CVE-2024-12086 medium 6.8 6.8 FIX arch arch rhel sles sambaredhat 16d ago Important: rsync security update
CVE-2026-42010 high 7.1 7.1 FIX debian debian sles rhel gnuredhat 27d ago RHSA-2026:20612: gnutls security update (Important)
CVE-2026-35092 high 7.5 7.5 FIX rheldebian debian sles corosyncredhat 1mo ago A flaw was found in Corosync. An integer overflow vulnerability in Corosync's join message sanity validation allows a remote, unauthenticated attacker to send crafted User Datagram Protocol (UDP) pac…
CVE-2026-35091 high 8.2 8.2 FIX rheldebian debian sles corosyncredhat 1mo ago A flaw was found in Corosync. A remote unauthenticated attacker can exploit a wrong return value vulnerability in the Corosync membership commit token sanity check by sending a specially crafted User…
CVE-2026-31431 high 7.8 10.0 KEVEXPFIX rhelarch arch sles redhatsusearista 1mo ago Linux Kernel contains an incorrect resource transfer between spheres vulnerability that could allow for privilege escalation.
CVE-2026-3832 low 3.7 3.7 FIX debian debian rhel gnuredhat 1mo ago RHSA-2026:20612: gnutls security update (Important)
CVE-2026-33845 high 7.5 7.5 FIX debian debian sles rhel gnuredhat 1mo ago RHSA-2026:20612: gnutls security update (Important)
CVE-2026-3833 medium 6.5 6.5 FIX debian debian sles rhel gnuredhat 1mo ago RHSA-2026:20612: gnutls security update (Important)
CVE-2026-7500 medium 5.4 5.4 redhat 1mo ago Keycloak has a Forced Browsing issue
CVE-2026-7163 medium 5.5 5.5 redhat 1mo ago A vulnerability in the assisted-service REST API, an optional Assisted Installer (assisted-service) component in the Multicluster Engine (MCE), allows an authenticated user with minimal namespace-sco…
CVE-2026-4775 high 7.8 7.8 FIX rhel sles rocky libtiffredhat 1mo ago RHSA-2026:20585: compat-libtiff3 security update (Important)
CVE-2026-7309 medium 4.3 4.3 redhat 1mo ago A flaw was found in the OpenShift Container Platform build system. A user with the `edit` ClusterRole can inject arbitrary environment variables, such as `LD_PRELOAD` or `http_proxy`, into `docker-bu…
CVE-2026-6732 high 7.5 7.5 debian debian sles rhel xmlsoftredhatgoogle 1mo ago A flaw was found in libxml2. This vulnerability occurs when the library processes a specially crafted XML Schema Definition (XSD) validated document that includes an internal entity reference. An att…
CVE-2026-6859 high 8.8 8.8 redhat 1mo ago InstructLab Includes Functionality from Untrusted Control Sphere
CVE-2026-6855 high 7.1 7.1 redhat 1mo ago InstructLab vulnerable to Path Traversal
CVE-2026-6848 high 8.1 8.1 redhat 1mo ago A flaw was found in Red Hat Quay. When Red Hat Quay requests password re-verification for sensitive operations, such as token generation or robot account creation, the re-authentication prompt can be…
CVE-2026-6846 high 7.8 7.8 debian debian sles rhel gnuredhat 1mo ago A flaw was found in binutils. A heap-buffer-overflow vulnerability exists when processing a specially crafted XCOFF (Extended Common Object File Format) object file during linking. A local attacker c…
CVE-2026-6845 medium 5.0 5.0 debian debian sles rhel gnuredhat 1mo ago A flaw was found in binutils, specifically within the `readelf` utility. This vulnerability allows a local attacker to cause a Denial of Service (DoS) by tricking a user into processing a specially c…
CVE-2026-6844 medium 5.5 5.5 debian debian sles rhel gnuredhat 1mo ago A flaw was found in the `readelf` utility of the binutils package. A local attacker could exploit two Denial of Service (DoS) vulnerabilities by providing a specially crafted Executable and Linkable …
CVE-2026-6843 medium 5.5 5.5 FIX debian debian rhel gnuredhat 1mo ago A flaw was found in nano. A local user could exploit a format string vulnerability in the `statusline()` function. By creating a directory with a name containing `printf` specifiers, the application …
CVE-2026-5121 high 7.5 7.5 FIX rheldebian debian sles libarchiveredhat 2mo ago Important: libarchive security update
CVE-2026-37980 medium 4.8 4.8 redhat 2mo ago A flaw was found in Keycloak, specifically in the organization selection login page. A remote attacker with `manage-realm` or `manage-organizations` administrative privileges can exploit a Stored Cro…
CVE-2026-1584 high 7.5 7.5 FIX debian debian sles gnuredhat 2mo ago A flaw was found in gnutls. A remote, unauthenticated attacker can exploit this vulnerability by sending a specially crafted ClientHello message with an invalid Pre-Shared Key (PSK) binder value duri…
CVE-2026-4878 medium 6.7 6.7 FIX rheldebian debian sles libcap_projectredhat 2mo ago A flaw was found in libcap. A local unprivileged user can exploit a Time-of-check-to-time-of-use (TOCTOU) race condition in the `cap_set_file()` function. This allows an attacker with write access to…
CVE-2026-32590 high 7.1 7.1 redhat 2mo ago A flaw was found in Red Hat Quay's handling of resumable container image layer uploads. The upload process stores intermediate data in the database using a format that, if tampered with, could allow …
CVE-2026-32589 high 7.4 7.4 redhat 2mo ago A flaw was found in Red Hat Quay's container image upload process. An authenticated user with push access to any repository on the registry can interfere with image uploads in progress by other users…
CVE-2026-2377 medium 6.5 6.5 redhat 2mo ago A flaw was found in mirror-registry. Authenticated users can exploit the log export feature by providing a specially crafted web address (URL). This allows the application's backend to make arbitrary…
CVE-2026-32591 medium 5.5 5.5 redhat 2mo ago A flaw was found in Red Hat Quay's Proxy Cache configuration feature. When an organization administrator configures an upstream registry for proxy caching, Quay makes a network connection to the spec…
CVE-2025-58713 medium 6.4 6.4 redhat 2mo ago A container privilege escalation flaw was found in certain Red Hat Process Automation Manager images. This issue stems from the /etc/passwd file being created with group-writable permissions during b…
CVE-2025-57854 medium 6.4 6.4 redhat 2mo ago A container privilege escalation flaw was found in certain OpenShift Update Service (OSUS) images. This issue stems from the /etc/passwd file being created with group-writable permissions during buil…
CVE-2025-57853 medium 6.4 6.4 redhat 2mo ago A container privilege escalation flaw was found in certain Web Terminal images. This issue stems from the /etc/passwd file being created with group-writable permissions during build time. In certain …
CVE-2025-57851 medium 6.7 6.7 redhat 2mo ago A container privilege escalation flaw was found in certain Multicluster Engine for Kubernetes images. This issue stems from the /etc/passwd file being created with group-writable permissions during b…
CVE-2025-57847 medium 6.4 6.4 redhat 2mo ago A container privilege escalation flaw was found in certain Ansible Automation Platform images. This issue arises from the /etc/passwd file being created with group-writable permissions during the bui…
CVE-2025-14821 high 7.0 7.0 FIX debian debian libsshredhat 2mo ago A flaw was found in libssh. This vulnerability allows local man-in-the-middle attacks, security downgrades of SSH (Secure Shell) connections, and manipulation of trusted host information, posing a si…
CVE-2026-5745 medium 5.5 5.5 debian debian sles rhel libarchiveredhat 2mo ago A flaw was found in libarchive. A NULL pointer dereference vulnerability exists in the ACL parsing logic, specifically within the archive_acl_from_text_nl() function. When processing a malformed ACL …
CVE-2026-4740 high 8.2 8.2 redhat 2mo ago A flaw was found in Open Cluster Management (OCM), the technology underlying Red Hat Advanced Cluster Management (ACM). Improper validation of Kubernetes client certificate renewal allows a managed c…
CVE-2026-3184 medium 5.3 5.3 slesdebian debian kernelredhat 2mo ago A flaw was found in util-linux. Improper hostname canonicalization in the `login(1)` utility, when invoked with the `-h` option, can modify the supplied remote hostname before setting `PAM_RHOST`. A …
CVE-2026-2625 medium 5.5 5.5 FIX rheldebian debian redhatsequoia-pgp 2mo ago A flaw was found in rust-rpm-sequoia. An attacker can exploit this vulnerability by providing a specially crafted Red Hat Package Manager (RPM) file. During the RPM signature verification process, th…
CVE-2026-5165 high 7.8 7.8 rhel redhat 2mo ago A flaw was found in virtio-win, specifically within the VirtIO Block (BLK) device. When the device undergoes a reset, it fails to properly manage memory, resulting in a use-after-free vulnerability. …
CVE-2026-5164 medium 5.5 5.5 rhel redhat 2mo ago A flaw was found in virtio-win. The `RhelDoUnMap()` function does not properly validate the number of descriptors provided by a user during an unmap request. A local user could exploit this input val…
CVE-2025-12805 high 8.1 8.1 redhat 2mo ago A flaw was found in Red Hat OpenShift AI (RHOAI) llama-stack-operator. This vulnerability allows unauthorized access to Llama Stack services deployed in other namespaces via direct network requests, …
CVE-2026-2100 medium 5.3 5.3 FIX rhel slesdebian debian p11-kit_projectredhat 2mo ago A flaw was found in p11-kit. A remote attacker could exploit this vulnerability by calling the C_DeriveKey function on a remote token with specific IBM kyber or IBM btc derive mechanism parameters se…
CVE-2026-4426 medium 6.5 6.5 FIX debian debian sles rhel libarchiveredhat 3mo ago A flaw was found in libarchive. An Undefined Behavior vulnerability exists in the zisofs decompression logic, caused by improper validation of a field (`pz_log2_bs`) read from ISO9660 Rock Ridge exte…
CVE-2026-4424 high 7.5 7.5 FIX rheldebian debian sles libarchiveredhat 3mo ago Important: libarchive security update
CVE-2026-2575 medium 5.3 5.3 redhat 3mo ago A flaw was found in Keycloak. An unauthenticated remote attacker can trigger an application level Denial of Service (DoS) by sending a highly compressed SAMLRequest through the SAML Redirect Binding.…
CVE-2026-2376 medium 5.4 5.4 rhel redhat 3mo ago A flaw was found in mirror-registry where an authenticated user can trick the system into accessing unintended internal or restricted systems by providing malicious web addresses. When the applicat…
CVE-2026-3911 low 2.7 2.7 redhat 3mo ago Keycloak: Information disclosure of disabled user attributes via administrative endpoint
CVE-2026-3118 medium 6.5 6.5 redhat 3mo ago A security flaw was identified in the Orchestrator Plugin of Red Hat Developer Hub (Backstage). The issue occurs due to insufficient input validation in GraphQL query handling. An authenticated user …
CVE-2025-13601 high 7.7 7.7 FIX rocky rheldebian debian redhatgnome 4mo ago A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the g_escape_uri_string() function. If the string to escape contains a very large number of u…
CVE-2025-14512 medium 6.5 6.5 FIX rheldebian debian sles gnomeredhat 6mo ago A flaw was found in glib. This vulnerability allows a heap buffer overflow and denial-of-service (DoS) via an integer overflow in GLib's GIO (GLib Input/Output) escape_byte_string() function when pro…
CVE-2025-14010 medium 5.5 5.5 FIX debian debian redhat 6mo ago Ansible Community General Collection is vulnerable to exposure of sensitive information
CVE-2025-4598 medium 4.7 4.7 FIX arch arch rhel sles systemd_projectredhat 6mo ago A vulnerability was found in systemd-coredump. This flaw allows an attacker to force a SUID process to crash and replace it with a non-SUID binary to access the original's privileged process coredump…
CVE-2025-32989 medium 5.3 5.3 FIX rheldebian debian sles gnuredhat 9mo ago Moderate: gnutls security, bug fix, and enhancement update
CVE-2025-32988 high 8.2 8.2 FIX rhel rockydebian debian gnuredhat 9mo ago RHSA-2025:17415: gnutls security, bug fix, and enhancement update (Moderate)
CVE-2025-8283 low 3.7 3.7 FIX slesdebian debian rhel redhat 10mo ago A vulnerability was found in the netavark package, a network stack for containers used with Podman. Due to dns.podman search domain being removed, netavark may return external servers if a valid A/AA…
CVE-2025-7784 medium 6.5 6.5 redhat 11mo ago Keycloak Privilege Escalation Vulnerability in Admin Console (FGAPv2 Enabled)
CVE-2025-7365 high 7.1 7.1 redhat 11mo ago Keycloak phishing attack via email verification step in first login flow
CVE-2025-7424 high 7.5 7.5 FIX debian debian sles rhel xmlsoftredhat 11mo ago A flaw was found in the libxslt library. The same memory field, psvi, is used for both stylesheet and input data, which can lead to type confusion during XML transformations. This vulnerability allow…
CVE-2025-6021 high 7.5 7.5 FIX rhelarch arch rocky xmlsoftredhat 11mo ago RHSA-2025:10698: libxml2 security update (Important)
CVE-2025-5372 high 8.8 8.8 FIX rockydebian debian sles libsshredhat 11mo ago RHSA-2025:21977: libssh security update (Moderate)
CVE-2025-6170 low 2.5 2.5 FIX arch arch slesdebian debian redhatxmlsoft 1y ago A flaw was found in the interactive shell of the xmllint command-line tool, used for parsing XML files. When a user inputs an overly long command, the program does not check the input size properly, …
CVE-2025-26465 medium 6.8 6.8 FIX rhel rocky sles openbsdnetappredhat 1y ago A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled. A machine-in-the-middle attack can be performed by a malicious machine impersonating a legit server. This issue occur…
CVE-2025-23368 high 8.1 8.1 redhat 1y ago Wildfly Elytron integration susceptible to brute force attacks via CLI
CVE-2024-6387 high 8.1 9.1 EXPFIX rhelarch arch sles openbsdredhatnetapp 2y ago A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead sshd to handle some signals in an unsafe manner. An unauthenticated, remote a…
CVE-2023-4806 medium 5.9 5.9 FIX rhel rocky sles gnuredhat 2y ago RHSA-2023:5455: glibc security update (Important)
CVE-2024-0193 medium 6.7 6.7 FIX rhel sles rocky redhat 2y ago A use-after-free flaw was found in the netfilter subsystem of the Linux kernel. If the catchall element is garbage-collected when the pipapo set is removed, the element can be deactivated twice. This…