Software Detail

Software Informaton Top

Operating Systems

Software Detail

Red Hat Enterprise Linux

Number Of NVD

1680

CRITICAL

135

HIGH

590

MEDIUM

803

LOW

151

URL	https://www.redhat.com/technologies/linux-platforms/enterprise-linux
Explanation	Full support is 5.5 years from release. Maintenance support (security updates only) is for 3.5 years. After that, extended support is available for a fee.
Tag	商用ライセンス有り Linux

Add Information URL

No	Type	Name	URL
1			https://access.redhat.com/ja/articles/16476
2			https://access.redhat.com/support/policy/updates/errata
3			https://access.redhat.com/articles/3078
4			https://access.redhat.com/security
5			https://access.redhat.com/errata/#/?q=&p=1&sort=portal_publication_date%20desc&rows=10&portal_advisory_type=Security%20Advisory

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Normal Support	Security Support Service Pack Support	Extended for a fee	Critical	High	Medium	Low
381	Red Hat Enterprise Linux 9	9.7	Nov. 11, 2025	May 17, 2022				4	127	172	17
382	Red Hat Enterprise Linux 8	8.10	May 22, 2024	May 7, 2019	May 30, 2029			43	314	444	50
383	Red Hat Enterprise Linux 7	7.9	Sept. 29, 2020	Dec. 11, 2013	Aug. 6, 2020	June 30, 2024		91	270	270	46
384	Red Hat Enterprise Linux 6	6.10	June 19, 2018	Nov. 9, 2010	May 10, 2022	Nov. 30, 2020	June 30, 2024	72	169	210	55
385	Red Hat Enterprise Linux 5	5.11	Sept. 16, 2014	March 15, 2007	March 31, 2017		Nov. 30, 2020	24	59	89	40
386	Red Hat Enterprise Linux 4	4.5			Feb. 29, 2012		March 31, 2017	5	30	29	16
387	Red Hat Enterprise Linux 3	3.0						0	33	44	17
388	Red Hat Enterprise Linux 2	2.1 Update 7	April 28, 2005					0	32	37	6

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	Update date Published date	Show Affected	Exploit PoC Search
381	9.8 7.5	CRITICAL Network	A flaw was found in moodle where an SQL injection risk was identified in Badges code relating to configuring criteria.	CWE-89 SQL Injection	CVE-2022-30599	cpe:2.3:o:redhat:enterprise_linux:8.0:*	2024-11-21 16:03 2022-05-19	Show	GitHub Exploit DB Packet Storm

382	4.3 4.0	MEDIUM Network	A flaw was found in moodle where global search results could include author information on some activities where a user may not otherwise have access to it.	NVD-CWE-noinfo	CVE-2022-30598	cpe:2.3:o:redhat:enterprise_linux:8.0:*	2024-11-21 16:03 2022-05-19	Show	GitHub Exploit DB Packet Storm

383	5.3 5.0	MEDIUM Network	A flaw was found in moodle where the description user field was not hidden when being set as a hidden user field.	NVD-CWE-Other	CVE-2022-30597	cpe:2.3:o:redhat:enterprise_linux:8.0:*	2024-11-21 16:02 2022-05-19	Show	GitHub Exploit DB Packet Storm

384	5.4 3.5	MEDIUM Network	A flaw was found in moodle where ID numbers displayed when bulk allocating markers to assignments required additional sanitizing to prevent a stored XSS risk.	CWE-79 Cross-site Scripting	CVE-2022-30596	cpe:2.3:o:redhat:enterprise_linux:8.0:*	2024-11-21 16:02 2022-05-19	Show	GitHub Exploit DB Packet Storm

385	6.5 3.5	MEDIUM Network	A vulnerability was found in Ignition where ignition configs are accessible from unprivileged containers in VMs running on VMware products. This issue is only relevant in user environments where the …	CWE-863 Incorrect Authorization	CVE-2022-1706	cpe:2.3:o:redhat:enterprise_linux:9.0:*	2024-11-21 15:41 2022-05-18	Show	GitHub Exploit DB Packet Storm

386	9.1 6.4	CRITICAL Network	An out-of-bounds read vulnerability was discovered in the PCRE2 library in the get_recurse_data_length() function of the pcre2_jit_compile.c file. This issue affects recursions in JIT-compiled regula…	CWE-125 Out-of-bounds Read	CVE-2022-1587	cpe:2.3:o:redhat:enterprise_linux:9.0:*	2024-11-21 15:41 2022-05-17	Show	GitHub Exploit DB Packet Storm

387	9.1 6.4	CRITICAL Network	An out-of-bounds read vulnerability was discovered in the PCRE2 library in the compile_xclass_matchingpath() function of the pcre2_jit_compile.c file. This involves a unicode property matching issue …	CWE-125 Out-of-bounds Read	CVE-2022-1586	cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*	2025-03-6 18:15 2022-05-17	Show	GitHub Exploit DB Packet Storm

388	6.5 2.1	MEDIUM Local	A stack overflow vulnerability was found in the Intel HD Audio device (intel-hda) of QEMU. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of servic…	-	CVE-2021-3611	cpe:2.3:o:redhat:enterprise_linux:8.0:*	2024-11-21 15:21 2022-05-12	Show	GitHub Exploit DB Packet Storm

389	8.2 4.6	HIGH Local	A DMA reentrancy issue was found in the USB EHCI controller emulation of QEMU. EHCI does not verify if the Buffer Pointer overlaps with its MMIO region when it transfers the USB packets. Crafted cont…	-	CVE-2021-3750	cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*	2024-11-21 15:22 2022-05-3	Show	GitHub Exploit DB Packet Storm

390	4.3 4.0	MEDIUM Network	Users with the capability to configure badge criteria (teachers and managers by default) were able to configure course badges with profile field criteria, which should only be available for site badg…	CWE-863 Incorrect Authorization	CVE-2022-0984	cpe:2.3:o:redhat:enterprise_linux:7.0:*	2024-11-21 15:39 2022-04-30	Show	GitHub Exploit DB Packet Storm