Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Red Hat Enterprise Linux Number Of NVD 1711 CRITICAL 141 HIGH 603 MEDIUM 814 LOW 152
URL https://www.redhat.com/technologies/linux-platforms/enterprise-linux
Explanation Full support is 5.5 years from release.
Maintenance support (security updates only) is for 3.5 years.
After that, extended support is available for a fee.
Tag
  • Linux
  • 商用ライセンス有り

Add Information URL
No Type Name URL
1 https://access.redhat.com/ja/articles/16476
2 https://access.redhat.com/support/policy/updates/errata
3 https://access.redhat.com/articles/3078
4 https://access.redhat.com/security
5 https://access.redhat.com/errata/#/?q=&p=1&sort=portal_publication_date%20desc&rows=10&portal_advisory_type=Security%20Advisory

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
481 Red Hat Enterprise Linux 10.2 10.2 May 19, 2026 May 20, 2025 8 24 16 3
482 Red Hat Enterprise Linux 9 9.7 Nov. 11, 2025 May 17, 2022 10 140 183 18
483 Red Hat Enterprise Linux 8 8.10 May 22, 2024 May 7, 2019 May 30, 2029 49 327 454 51
484 Red Hat Enterprise Linux 7 7.9 Sept. 29, 2020 Dec. 11, 2013 Aug. 6, 2020 June 30, 2024 97 283 280 47
485 Red Hat Enterprise Linux 6 6.10 June 19, 2018 Nov. 9, 2010 May 10, 2022 Nov. 30, 2020 June 30, 2024 77 176 212 56
486 Red Hat Enterprise Linux 5 5.11 Sept. 16, 2014 March 15, 2007 March 31, 2017 Nov. 30, 2020 24 59 89 40
487 Red Hat Enterprise Linux 4 4.5 Feb. 29, 2012 March 31, 2017 5 30 29 16
488 Red Hat Enterprise Linux 3 3.0 0 33 44 17
489 Red Hat Enterprise Linux 2 2.1 Update 7 April 28, 2005 0 32 37 6
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
481 8.1
8.5
HIGH
Network
A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possible privilege escalation. CWE-20
 Improper Input Validation 
CVE-2020-25717 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*
2024-11-21 14:18
2022-02-19
Show GitHub Exploit DB Packet Storm
482 5.9
4.3
MEDIUM
Network
A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext password sent over the wire even if Kerberos authentication was required. CWE-287
Improper Authentication
CVE-2016-2124 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*
2024-11-21 11:47
2022-02-19
Show GitHub Exploit DB Packet Storm
483 9.8
7.5
CRITICAL
Network
A flaw in netfilter could allow a network-connected attacker to infer openvpn connection endpoint information for further use in traditional network attacks. NVD-CWE-noinfo
CVE-2021-3773 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*
cpe:2.3:o:redhat:enterprise_linux…
2024-11-21 15:22
2022-02-17
Show GitHub Exploit DB Packet Storm
484 4.7
1.9
MEDIUM
Local
A race problem was seen in the vt_k_ioctl in drivers/tty/vt/vt_ioctl.c in the Linux kernel, which may cause an out of bounds read in vt as the write access to vc_mode is not protected by lock-in vt_i… - CVE-2021-3753 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*
2024-11-21 15:22
2022-02-17
Show GitHub Exploit DB Packet Storm
485 7.1
7.9
HIGH
Adjacent
A use-after-free flaw was found in the Linux kernel’s Bluetooth subsystem in the way user calls connect to the socket and disconnect simultaneously due to a race condition. This flaw allows a user to… CWE-362
Race Condition
CVE-2021-3752 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*
2024-11-21 15:22
2022-02-17
Show GitHub Exploit DB Packet Storm
486 7.8
4.4
HIGH
Local
A flaw was found in the PKI-server, where the spkispawn command, when run in debug mode, stores admin credentials in the installation log file. This flaw allows a local attacker to retrieve the file … CWE-312
 Cleartext Storage of Sensitive Information
CVE-2021-3551 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 15:21
2022-02-17
Show GitHub Exploit DB Packet Storm
487 5.5
4.3
MEDIUM
Local
Null source pointer passed as an argument to memcpy() function within TIFFFetchStripThing() in tif_dirread.c in libtiff versions from 3.9.0 to 4.3.0 could lead to Denial of Service via crafted TIFF f… CWE-476
 NULL Pointer Dereference
CVE-2022-0561 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 15:38
2022-02-12
Show GitHub Exploit DB Packet Storm
488 5.5
4.3
MEDIUM
Local
A flaw was found in Unzip. The vulnerability occurs during the conversion of a wide string to a local string that leads to a heap of out-of-bound write. This flaw allows an attacker to input a specia… NVD-CWE-Other
CVE-2022-0530 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 15:38
2022-02-10
Show GitHub Exploit DB Packet Storm
489 5.5
4.3
MEDIUM
Local
A flaw was found in Unzip. The vulnerability occurs during the conversion of a wide string to a local string that leads to a heap of out-of-bound write. This flaw allows an attacker to input a specia… CWE-787
 Out-of-bounds Write
CVE-2022-0529 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 15:38
2022-02-10
Show GitHub Exploit DB Packet Storm
490 5.5
2.1
MEDIUM
Local
A use-after-free vulnerability was found in rtsx_usb_ms_drv_remove in drivers/memstick/host/rtsx_usb_ms.c in memstick in the Linux kernel. In this flaw, a local attacker with a user privilege may imp… CWE-416
 Use After Free
CVE-2022-0487 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 15:38
2022-02-5
Show GitHub Exploit DB Packet Storm