Red hat openshift container platform 4
This hub aggregates every CVE we track for Red hat openshift container platform 4, a product in the cloud saas space. Use it to gauge the current risk picture and drill into individual advisories.
203
CVEs tracked
3
Critical
59
High
0
In CISA KEV
Severity distribution
MEDIUM118HIGH59LOW23CRITICAL3
Monthly trend
3
1
5
6
3
7
15
12
2
6
8
12
4
4
4
6
3
6
7
13
20
18
24
0
2024-082026-07
Latest CVEs
The 15 most recently published vulnerabilities affecting Red hat openshift container platform 4.
- CVE-2026-12610Sssd: use-after-free crash in sssd' 'sssd_pam' process6.4
- CVE-2026-14164Libarchive: double-free vulnerability in rar5 decompression logic via dangling filtered_buf pointer in init_unpack()7.5
- CVE-2026-13757P11-kit: stack exhaustion via unbounded recursion in rpc attribute parsing6.2
- CVE-2026-13595Util-linux: util-linux: heap use-after-free in libblkid nested partition probing6.8
- CVE-2026-12969Dnsmasq: dnsmasq: out-of-bounds read in find_soa() due to missing extrabytes validation5.3
- CVE-2026-55654Openssh: heap out-of-bounds read in red hat enterprise linux versions of openssh gssapi indicator cleanup due to missing null sentinel termination3.7
- CVE-2026-55655Openssh: local mitm of x11 forwarding via abstract unix socket pre-binding in red hat enterprise linux openssh client versions5.0
- CVE-2026-55653Openssh: double free in red hat enterprise linux versions of openssh dh-gex client path during fips known-group validation leads to client-side denial of service4.3
- CVE-2026-12725Dnsmasq: dnsmasq: heap buffer overflow in log_query() when logging unsupported ds/dnskey replies5.9
- CVE-2026-54100Windows-machine-config-operator: windows-machine-config-operator: ssh host key not verified enables credential theft8.3
- CVE-2026-54099Windows-machine-config-operator: windows-machine-config-operator: wicd csr extra-organization allows privilege escalation to system:masters8.8
- CVE-2026-3195Qemu-kvm: virtio-snd: heap buffer overflow in virtio_snd_pcm_in_cb (incomplete fix for cve-2024-7730)7.4
- CVE-2026-3196Qemu-kvm: virtio-snd: integer overflow leading to unbounded memory allocation5.5
- CVE-2026-12505Cifs-utils: local privilege escalation via forged cifs.spnego key description in cifs.upcall7.8
- CVE-2026-10649Pacemaker: pacemaker: denial of service via integer overflow in remote message decompression8.6
Product normalization is registry-driven with AI assist and human review. How it works