Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Red Hat Enterprise Linux Number Of NVD 1680 CRITICAL 135 HIGH 590 MEDIUM 803 LOW 151
URL https://www.redhat.com/technologies/linux-platforms/enterprise-linux
Explanation Full support is 5.5 years from release.
Maintenance support (security updates only) is for 3.5 years.
After that, extended support is available for a fee.
Tag
  • Linux
  • 商用ライセンス有り
Add Information URL
No Type Name URL
1 https://access.redhat.com/ja/articles/16476
2 https://access.redhat.com/support/policy/updates/errata
3 https://access.redhat.com/articles/3078
4 https://access.redhat.com/security
5 https://access.redhat.com/errata/#/?q=&p=1&sort=portal_publication_date%20desc&rows=10&portal_advisory_type=Security%20Advisory
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
701 Red Hat Enterprise Linux 9 9.7 Nov. 11, 2025 May 17, 2022 4 127 172 17
702 Red Hat Enterprise Linux 8 8.10 May 22, 2024 May 7, 2019 May 30, 2029 43 314 444 50
703 Red Hat Enterprise Linux 7 7.9 Sept. 29, 2020 Dec. 11, 2013 Aug. 6, 2020 June 30, 2024 91 270 270 46
704 Red Hat Enterprise Linux 6 6.10 June 19, 2018 Nov. 9, 2010 May 10, 2022 Nov. 30, 2020 June 30, 2024 72 169 210 55
705 Red Hat Enterprise Linux 5 5.11 Sept. 16, 2014 March 15, 2007 March 31, 2017 Nov. 30, 2020 24 59 89 40
706 Red Hat Enterprise Linux 4 4.5 Feb. 29, 2012 March 31, 2017 5 30 29 16
707 Red Hat Enterprise Linux 3 3.0 0 33 44 17
708 Red Hat Enterprise Linux 2 2.1 Update 7 April 28, 2005 0 32 37 6
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
701 3.7
4.3 		LOW
Network 		Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1; Java SE Embedde… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2020-2583 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 14:25
2020-01-16 		Show GitHub Exploit DB Packet Storm
702 8.8
9.3 		HIGH
Network 		A remote code execution vulnerability exists in ASP.NET Core software when the software fails to handle objects in memory.An attacker who successfully exploited the vulnerability could run arbitrary … CWE-787
 Out-of-bounds Write 		CVE-2020-0603 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 13:53
2020-01-15 		Show GitHub Exploit DB Packet Storm
703 7.5
5.0 		HIGH
Network 		A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka 'ASP.NET Core Denial of Service Vulnerability'. NVD-CWE-noinfo
CVE-2020-0602 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 13:53
2020-01-15 		Show GitHub Exploit DB Packet Storm
704 7.5
5.0 		HIGH
Network 		OpenJPEG through 2.3.1 has a heap-based buffer overflow in opj_t1_clbl_decode_processor in openjp2/t1.c because of lack of opj_j2k_update_image_dimensions validation. CWE-787
 Out-of-bounds Write 		CVE-2020-6851 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 14:36
2020-01-13 		Show GitHub Exploit DB Packet Storm
705 7.8
6.8 		HIGH
Local 		The error function in Error.cc in poppler before 0.21.4 allows remote attackers to execute arbitrary commands via a PDF containing an escape sequence for a terminal emulator. NVD-CWE-Other
CVE-2012-2142 cpe:2.3:o:redhat:enterprise_linux:6.0:*
cpe:2.3:o:redhat:enterprise_linux:5.0:* 		2024-11-21 10:38
2020-01-10 		Show GitHub Exploit DB Packet Storm
706 6.1
5.6 		MEDIUM
Local 		An out-of-bounds memory write issue was found in the Linux Kernel, version 3.13 through 5.4, in the way the Linux kernel's KVM hypervisor handled the 'KVM_GET_EMULATED_CPUID' ioctl(2) request to get … - CVE-2019-19332 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:* 		2024-11-21 13:34
2020-01-10 		Show GitHub Exploit DB Packet Storm
707 8.8
6.8 		HIGH
Network 		Mozilla developers reported memory safety bugs present in Firefox 71 and Firefox ESR 68.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these… CWE-787
 Out-of-bounds Write 		CVE-2019-17024 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 13:31
2020-01-9 		Show GitHub Exploit DB Packet Storm
708 9.8
7.5 		CRITICAL
Network 		A flaw was found with the RHSA-2019:3950 erratum, where it did not fix the CVE-2019-13616 SDL vulnerability. This issue only affects Red Hat SDL packages, SDL versions through 1.2.15 and 2.x through … - CVE-2019-14906 cpe:2.3:o:redhat:enterprise_linux:7.0:* 2024-11-21 13:27
2020-01-8 		Show GitHub Exploit DB Packet Storm
709 7.3
6.9 		HIGH
Local 		In all versions of cpio before 2.13 does not properly validate input files when generating TAR archives. When cpio is used to create TAR archives from paths an attacker can write to, the resulting ar… NVD-CWE-Other
CVE-2019-14866 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:* 		2024-11-21 13:27
2020-01-8 		Show GitHub Exploit DB Packet Storm
710 6.1
4.3 		MEDIUM
Network 		Multiple cross-site scripting (XSS) vulnerabilities in Zend Framework 2.0.x before 2.0.1 allow remote attackers to inject arbitrary web script or HTML via unspecified input to (1) Debug, (2) Feed\Pub… CWE-79
Cross-site Scripting 		CVE-2012-4451 cpe:2.3:o:redhat:enterprise_linux:6.0:* 2024-11-21 10:42
2020-01-4 		Show GitHub Exploit DB Packet Storm