Red hat advanced cluster security

This hub aggregates every CVE we track for Red hat advanced cluster security, a product in the security products space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Red hat advanced cluster security.

• CVE-2026-35206Helm Chart extraction output directory collapse via `Chart.yaml` name dot-segment4.4Apr 9, 2026
• CVE-2026-32281Inefficient policy validation in crypto/x5097.5Apr 8, 2026
• CVE-2026-32283Unauthenticated TLS 1.3 KeyUpdate record can cause persistent connection retention and DoS in crypto/tls7.5Apr 8, 2026
• CVE-2026-32288Unbounded allocation for old GNU sparse in archive/tar5.5Apr 8, 2026
• CVE-2026-32289JsBraceDepth Context Tracking Bugs (XSS) in html/template6.1Apr 8, 2026
• CVE-2025-66418urllib3 allows an unbounded number of links in the decompression chain7.5Dec 5, 2025
• CVE-2025-59375libexpat in Expat before 2.7.2 allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing.7.5Sep 15, 2025
• CVE-2025-32386Helm Allows A Specially Crafted Chart Archive To Cause Out Of Memory Termination6.5Apr 9, 2025
• CVE-2025-32387Helm Allows A Specially Crafted JSON Schema To Cause A Stack Overflow6.5Apr 9, 2025
• CVE-2025-27144Go JOSE's Parsing Vulnerable to Denial of Service7.5Feb 24, 2025
• CVE-2025-21614go-git clients vulnerable to DoS via maliciously crafted Git server replies7.5Jan 6, 2025
• CVE-2025-21613go-git has an Argument Injection via the URL field9.8Jan 6, 2025
• CVE-2024-21538Versions of the package cross-spawn before 6.0.6, from 7.0.0 and before 7.0.5 are vulnerable to Regular Expression Denial of Service (ReDoS) due to improper input sanitization. An attacker can incr...7.5Nov 8, 2024
• CVE-2024-45801Tampering by prototype polution in DOMPurify7.3Sep 16, 2024
• CVE-2024-24790Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses in net/netip9.8Jun 5, 2024