CVE-2026-4424

all versions

A flaw was found in libarchive. This heap out-of-bounds read vulnerability exists in the RAR archive processing logic due to impro

7.5HIGH

CVE-2025-13601

all versions

A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the g_escape_uri_string(

7.7HIGH

CVE-2025-6021

all versions

A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-base

7.5HIGH

CVE-2024-9676

all versions

A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the containers/storage library can c

6.5MEDIUM

CVE-2024-8883

all versions

A misconfiguration flaw was found in Keycloak. This issue can allow an attacker to redirect users to an arbitrary URL if a 'Valid

6.1MEDIUM

CVE-2024-4629

all versions

A vulnerability was found in Keycloak. This flaw allows attackers to bypass brute force protection by exploiting the timing of log

6.5MEDIUM

CVE-2024-1132

all versions

A flaw was found in Keycloak, where it does not properly validate URLs included in a redirect. This issue could allow an attacker

8.1HIGH

CVE-2024-1725

all versions

A flaw was found in the kubevirt-csi component of OpenShift Virtualization's Hosted Control Plane (HCP). This issue could allow an

6.5MEDIUM

CVE-2024-1635

all versions

A vulnerability was found in Undertow. This vulnerability impacts a server that supports the wildfly-http-client protocol. Wheneve

7.5HIGH

CVE-2023-6291

all versions

A flaw was found in the redirect_uri validation logic in Keycloak. This issue may allow a bypass of otherwise explicitly allowed h

7.1HIGH

CVE-2023-2585

all versions

Keycloak's device authorization grant does not correctly validate the device code and client ID. An attacker client could abuse th

3.5LOW

CVE-2023-6134

all versions

A flaw was found in Keycloak that prevents certain schemes in redirects, but permits them if a wildcard is appended to the token.

4.6MEDIUM

CVE-2023-6563

all versions

An unconstrained memory consumption vulnerability was discovered in Keycloak. It can be triggered in environments which have milli

7.7HIGH

CVE-2023-5625

all versions

A regression was introduced in the Red Hat build of python-eventlet due to a change in the patch application strategy, resulting i

5.3MEDIUM

CVE-2023-3223

all versions

A flaw was found in undertow. Servlets annotated with @MultipartConfig may cause an OutOfMemoryError due to large multipart conten

7.5HIGH

CVE-2022-4318

all versions

A vulnerability was found in cri-o. This issue allows the addition of arbitrary lines into /etc/passwd by use of a specially craft

7.8HIGH

CVE-2022-4039

all versions

A flaw was found in Red Hat Single Sign-On for OpenShift container images, which are configured with an unsecured management inter

8.0HIGH

CVE-2022-3916

all versions

A flaw was found in the offline_access scope in Keycloak. This issue would affect users of shared computers more (especially if co

6.8MEDIUM

CVE-2023-1108

all versions

A flaw was found in undertow. This issue makes achieving a denial of service possible due to an unexpected handshake status update

7.5HIGH

CVE-2022-4361

all versions

Keycloak, an open-source identity and access management solution, has a cross-site scripting (XSS) vulnerability in the SAML or OI

10.0CRITICAL

CVE-2023-3089

all versions

A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered that, when FIPS mode was enabled, n

7.0HIGH

CVE-2023-0056

all versions

An uncontrolled resource consumption vulnerability was discovered in HAProxy which could crash the service. This issue could allow

6.5MEDIUM

CVE-2019-0211

all versions

In Apache HTTP Server 2.4 releases 2.4.17 to 2.4.38, with MPM event, worker or prefork, code executing in less-privileged child pr

7.8HIGH