1,386 CVEs

6 in CISA KEV

Red Hat Vulnerabilities

CVE security advisories and vulnerability history for Red Hat.

1,386

Total CVEs

Published

6

In CISA KEV

Exploited in the wild

102

Public exploits

With known exploit

6.3

Avg CVSS

2010–2026

Overview

Red Hat has 1,386 published CVE records since 2010, of which 6 are in CISA's Known Exploited Vulnerabilities catalog and 102 have a known public exploit. The average CVSS base score across scored CVEs is 6.3.

This page aggregates every publicly disclosed vulnerability (CVE) affecting Red Hat products, with severity breakdowns, the most-affected products, the most common weakness types, and the latest disclosures.

Severity and exploitation

How the CVSS severity of Red Hat's CVEs breaks down, plus how many are exploited in the wild or have public exploit code.

Critical36

High456

Medium768

Low108

18 additional CVEs have no CVSS severity score.

In CISA’s Known Exploited Vulnerabilities catalog

6

6 of Red Hat's CVEs are confirmed exploited in the wild.

Public exploits

102

102 of Red Hat's CVEs have a known public exploit available.

Most affected products

The Red Hat products with the most published CVEs.

Red Hat Enterprise Linux 9667 CVEs
Red Hat Enterprise Linux 8661 CVEs
Red Hat Enterprise Linux 7571 CVEs
Red Hat Enterprise Linux 6527 CVEs
enterprise linux421 CVEs
Red Hat Enterprise Linux 10375 CVEs
fedora192 CVEs
Red Hat OpenShift Container Platform 4186 CVEs

Common weakness types

The CWE weakness categories most often found in Red Hat CVEs. Follow any weakness for its full explanation.

CNAs that assign these CVEs

The CVE Numbering Authorities that publish Red Hat CVE records.

Disclosure activity by year

How many Red Hat CVEs were published each year.

2019

70

2020

106

2021

1

2022

4

2023

248

2024

299

2025

295

2026

266

Latest Red Hat CVEs

The most recently disclosed vulnerabilities affecting Red Hat.

Ose-cluster-ingress-operator: remote code execution through haproxy configuration injection
CWE-15
High · CVSS 8.8
EPSS 0.0%2026-06-02
Guntls: gnutls: information disclosure via timing side-channel in pkcs#7 padding removal
CWE-208
Low · CVSS 3.7
EPSS 0.0%2026-06-01
Rrdtool: rrdtool: stack buffer overflow allows local code execution or denial of service
CWE-121
High · CVSS 7.8
EPSS 0.0%2026-06-01
Poppler: integer overflow in poppler splashoutputdev::tilingpatternfill leads to heap buffer overflow via unchecked dimension multiplication
CWE-190
High · CVSS 7.8
EPSS 0.1%2026-06-01
Openshift: openshift: non-admin user can bypass resourcequota and flood etcd with events causing cluster-wide api degradation
CWE-770
Medium · CVSS 5.0
EPSS 0.0%2026-06-01
Clair: clair: unauthenticated ssrf via manifest layer uri enables internal network reconnaissance
CWE-918
Medium · CVSS 5.8
EPSS 0.0%2026-06-01
Assisted-service: assisted-service: infraenv status leaks referenced pull-secret contents to namespace view users
CWE-201
Medium · CVSS 6.3
EPSS 0.0%2026-05-29
Openshift/router: openshift/router: cloud metadata ssrf via fqdn-typed endpointslice bypasses destination validation
CWE-918
High · CVSS 7.7
EPSS 0.0%2026-05-29
Openshift/router: openshift/router: mtls client certificate spoofing via unstripped x-ssl-client headers on http frontend
CWE-287
High · CVSS 7.4
EPSS 0.0%2026-05-29
Quay/config-tool: quay/config-tool: gitlab oauth client_secret exposed in url querystring
CWE-598
Low · CVSS 2.7
EPSS 0.0%2026-05-29
Quay/config-tool: quay/config-tool: ssrf via unfiltered ldap and smtp config validation endpoints
CWE-918
Medium · CVSS 4.1
EPSS 0.0%2026-05-29
Libsoup: libsoup: http request smuggling via unsigned to signed conversion error
CWE-444
Medium · CVSS 4.8
EPSS 0.0%2026-05-29

Track new Red Hat CVEs as they are disclosed and get AI-written analysis and remediation guidance.

Monitor Red Hat CVEs

Other vendors

Browse vulnerabilities for other tracked vendors.

Jenkins project1,486 CVEs code-projects1,391 CVEs GitLab1,390 CVEs netgear1,326 CVEs Samsung Mobile1,301 CVEs gitlab-org1,296 CVEs suse1,285 CVEs gnu1,241 CVEs

Browse all vendors

Frequently asked questions

Common questions about Red Hat vulnerabilities.

How many CVEs does Red Hat have?

Red Hat has 1,386 published CVE records since 2010, including 561 in the last two years.

How many Red Hat CVEs are in CISA KEV?

Yes — 6 of Red Hat's CVEs are listed in CISA's Known Exploited Vulnerabilities catalog, confirmed exploited in the wild and carrying a CISA remediation deadline.

Which Red Hat products have the most CVEs?

The Red Hat products with the most published CVEs are Red Hat Enterprise Linux 9, Red Hat Enterprise Linux 8, Red Hat Enterprise Linux 7, Red Hat Enterprise Linux 6, enterprise linux.

What are the most common weakness types in Red Hat CVEs?

Red Hat's CVEs most often map to these CWE weakness types: CWE-476 (NULL Pointer Dereference), CWE-125 (Out-of-bounds Read), CWE-416 (Use After Free), CWE-20 (Improper Input Validation).

Are there public exploits for Red Hat vulnerabilities?

Yes — 102 of Red Hat's CVEs have a known public exploit.

How many critical Red Hat vulnerabilities are there?

Red Hat has 36 critical and 456 high-severity CVEs.

What is the average severity of Red Hat CVEs?

The average CVSS base score across Red Hat's scored CVEs is 6.3.

References

Vulnerability data is sourced from the CVE Program; severity, KEV, and exploit signals are aggregated by RadicalNotion.AI.

Track Red Hat vulnerabilities

Monitor new Red Hat vulnerabilities as they are disclosed, with AI-written analysis and remediation guidance.

Start free See pricing