Red os
This hub aggregates every CVE we track for Red os, a product in the operating systems space. Use it to gauge the current risk picture and drill into individual advisories.
8,947
CVEs tracked
487
Critical
3,441
High
70
In CISA KEV
Severity distribution
MEDIUM4,659HIGH3,441CRITICAL487LOW360
Monthly trend
406
337
216
303
247
255
193
156
207
241
286
154
394
235
176
109
103
96
122
109
197
97
11
3
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Red os.
- BDU:2026-08412Уязвимость параметра cli_history инструмента командной строки для взаимодействия с сервисами Amazon Web Services AWS CLI, позволяющая нарушителю вызвать отказ в обслуживании5.9
- CVE-2024-21944Improper input validation for DIMM serial presence detect (SPD) metadata could allow an attacker with physical access, ring0 access on a system with a non-compliant DIMM, or control over the Root o...5.3
- BDU:2026-07974Уязвимость функционала форматирования модуля парсера SQL для Python Sqlparse, позволяющая нарушителю вызвать отказ в обслуживании5.3
- CVE-2026-44882Portainer: Kubernetes middleware continues after token validation failure, bypassing endpoint authorization8.1
- CVE-2026-46300net: skbuff: preserve shared-frag marker during coalescing7.8
- CVE-2026-41888Distribution: Tag deletion bypasses `storage.delete.enabled` configuration6.5
- CVE-2026-43515Apache Tomcat: Security constraints not correctly applied9.1
- CVE-2026-43514Apache Tomcat: AJP secret compared in non-constant time3.7
- CVE-2026-43512Apache Tomcat: Digest authenticator will authenticate any unknown user9.8
- CVE-2026-41293Apache Tomcat: HTTP/2 request headers not validated9.8
- CVE-2026-42498Apache Tomcat: WebSocket authentication header exposure7.3
- CVE-2026-41284Apache Tomcat: Unbounded read in WebDAV LOCK and PROPFIND handling7.5
- CVE-2026-43500rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present7.8
- CVE-2026-43284xfrm: esp: avoid in-place decrypt on shared skb frags8.8
- CVE-2026-41140Poetry: Path traversal in tar extraction on Python 3.10.0 - 3.10.12 and 3.11.0 - 3.11.45.3
Product normalization is registry-driven with AI assist and human review. How it works