Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Red Hat Enterprise Linux Number Of NVD 1680 CRITICAL 135 HIGH 590 MEDIUM 803 LOW 151
URL https://www.redhat.com/technologies/linux-platforms/enterprise-linux
Explanation Full support is 5.5 years from release.
Maintenance support (security updates only) is for 3.5 years.
After that, extended support is available for a fee.
Tag
  • Linux
  • 商用ライセンス有り
Add Information URL
No Type Name URL
1 https://access.redhat.com/ja/articles/16476
2 https://access.redhat.com/support/policy/updates/errata
3 https://access.redhat.com/articles/3078
4 https://access.redhat.com/security
5 https://access.redhat.com/errata/#/?q=&p=1&sort=portal_publication_date%20desc&rows=10&portal_advisory_type=Security%20Advisory
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
361 Red Hat Enterprise Linux 9 9.7 Nov. 11, 2025 May 17, 2022 4 127 172 17
362 Red Hat Enterprise Linux 8 8.10 May 22, 2024 May 7, 2019 May 30, 2029 43 314 444 50
363 Red Hat Enterprise Linux 7 7.9 Sept. 29, 2020 Dec. 11, 2013 Aug. 6, 2020 June 30, 2024 91 270 270 46
364 Red Hat Enterprise Linux 6 6.10 June 19, 2018 Nov. 9, 2010 May 10, 2022 Nov. 30, 2020 June 30, 2024 72 169 210 55
365 Red Hat Enterprise Linux 5 5.11 Sept. 16, 2014 March 15, 2007 March 31, 2017 Nov. 30, 2020 24 59 89 40
366 Red Hat Enterprise Linux 4 4.5 Feb. 29, 2012 March 31, 2017 5 30 29 16
367 Red Hat Enterprise Linux 3 3.0 0 33 44 17
368 Red Hat Enterprise Linux 2 2.1 Update 7 April 28, 2005 0 32 37 6
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
361 6.1
- 		MEDIUM
Network 		A stored XSS and blind SSRF vulnerability was found in Moodle, occurs due to insufficient sanitization of user-supplied data in the SCORM track details. A remote attacker can trick the victim to foll… CWE-79
Cross-site Scripting 		CVE-2022-35651 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 16:11
2022-07-26 		Show GitHub Exploit DB Packet Storm
362 5.7
- 		MEDIUM
Adjacent 		A flaw was found in pki-core, which could allow a user to get a certificate for another user identity when directory-based authentication is enabled. This flaw allows an authenticated attacker on the… NVD-CWE-Other
CVE-2022-2393 cpe:2.3:o:redhat:enterprise_linux:9.0:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux… 		2024-11-21 16:00
2022-07-15 		Show GitHub Exploit DB Packet Storm
363 6.5
4.3 		MEDIUM
Network 		A vulnerability was found in libguestfs. This issue occurs while calculating the greatest possible number of matching keys in the get_keys() function. This flaw leads to a denial of service, either b… CWE-120
Classic Buffer Overflow 		CVE-2022-2211 cpe:2.3:o:redhat:enterprise_linux:9.0:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux… 		2024-11-21 16:00
2022-07-13 		Show GitHub Exploit DB Packet Storm
364 7.0
4.4 		HIGH
Local 		A crafted JPEG image may lead the JPEG reader to underflow its data pointer, allowing user-controlled data to be written in heap. To a successful to be performed the attacker needs to perform some tr… CWE-787
 Out-of-bounds Write 		CVE-2021-3697 cpe:2.3:o:redhat:enterprise_linux:9.0:*
cpe:2.3:o:redhat:enterprise_linux:8.4:*
cpe:2.3:o:redhat:enterprise_linux… 		2024-11-21 15:22
2022-07-7 		Show GitHub Exploit DB Packet Storm
365 4.5
6.9 		MEDIUM
Local 		A heap out-of-bounds write may heppen during the handling of Huffman tables in the PNG reader. This may lead to data corruption in the heap space. Confidentiality, Integrity and Availablity impact ma… CWE-787
 Out-of-bounds Write 		CVE-2021-3696 cpe:2.3:o:redhat:enterprise_linux:9.0:*
cpe:2.3:o:redhat:enterprise_linux:8.4:*
cpe:2.3:o:redhat:enterprise_linux… 		2024-11-21 15:22
2022-07-7 		Show GitHub Exploit DB Packet Storm
366 4.5
4.4 		MEDIUM
Local 		A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write in the heap area. An attacker may take advantage of that to cause heap data corruption or eventually arbitrary code execution an… CWE-787
 Out-of-bounds Write 		CVE-2021-3695 cpe:2.3:o:redhat:enterprise_linux:9.0:*
cpe:2.3:o:redhat:enterprise_linux:8.4:*
cpe:2.3:o:redhat:enterprise_linux… 		2024-11-21 15:22
2022-07-7 		Show GitHub Exploit DB Packet Storm
367 5.5
2.1 		MEDIUM
Local 		A vulnerability was found in the Linux kernel's nft_set_desc_concat_parse() function .This flaw allows an attacker to trigger a buffer overflow via nft_set_desc_concat_parse() , causing a denial of s… - CVE-2022-2078 cpe:2.3:o:redhat:enterprise_linux:9.0:*
cpe:2.3:o:redhat:enterprise_linux:8.0:* 		2024-11-21 16:00
2022-06-30 		Show GitHub Exploit DB Packet Storm
368 5.5
2.1 		MEDIUM
Local 		A NULL pointer dereference flaw was found in the Linux kernel’s KVM module, which can lead to a denial of service in the x86_emulate_insn in arch/x86/kvm/emulate.c. This flaw occurs while executing a… CWE-476
 NULL Pointer Dereference 		CVE-2022-1852 cpe:2.3:o:redhat:enterprise_linux:9.0:*
cpe:2.3:o:redhat:enterprise_linux:8.0:* 		2024-11-21 15:41
2022-06-30 		Show GitHub Exploit DB Packet Storm
369 3.3
2.1 		LOW
Local 		A flaw was found in PackageKit in the way some of the methods exposed by the Transaction interface examines files. This issue allows a local user to measure the time the methods take to execute and k… NVD-CWE-noinfo
CVE-2022-0987 cpe:2.3:o:redhat:enterprise_linux:9.0:* 2024-11-21 15:39
2022-06-29 		Show GitHub Exploit DB Packet Storm
370 8.2
4.6 		HIGH
Local 		A set of pre-production kernel packages of Red Hat Enterprise Linux for IBM Power architecture can be booted by the grub in Secure Boot mode even though it shouldn't. These kernel builds don't have t… NVD-CWE-Other
CVE-2022-1665 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 15:41
2022-06-22 		Show GitHub Exploit DB Packet Storm