Redhat Enterprise Linux For Arm 64 — known CVE vulnerabilities
Every CVE whose affected-product data names Redhat Enterprise Linux For Arm 64, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (46)
CVE-2026-1709 — CVSS 9.4 (critical): A flaw was found in Keylime. The Keylime registrar, since version 7.12.0, does not enforce client-side Transport Layer Security (TLS)…
CVE-2023-46846 — CVSS 9.3 (critical): SQUID is vulnerable to HTTP request smuggling, caused by chunked decoder lenience, allows a remote attacker to perform Request/Response…
CVE-2023-5869 — CVSS 8.8 (high): A flaw was found in PostgreSQL that allows authenticated database users to execute arbitrary code through missing overflow checks during…
CVE-2023-46847 — CVSS 8.6 (high): Squid is vulnerable to a Denial of Service, where a remote attacker can perform buffer overflow attack by writing up to 2 MB of arbitrary…
CVE-2024-6387 — CVSS 8.1 (high): A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead sshd to handle…
CVE-2024-1488 — CVSS 8.0 (high): A vulnerability was found in Unbound due to incorrect default permissions, allowing any process outside the unbound group to modify the…
CVE-2024-0193 — CVSS 7.8 (high): A use-after-free flaw was found in the netfilter subsystem of the Linux kernel. If the catchall element is garbage-collected when the…
CVE-2023-3899 — CVSS 7.8 (high): A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus…
CVE-2023-3972 — CVSS 7.8 (high): A vulnerability was found in insights-client. This security issue occurs because of insecure file operations or unsafe handling of…
CVE-2024-9675 — CVSS 7.8 (high): A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the cache are within our cache…
CVE-2023-5633 — CVSS 7.8 (high): The reference count changes made as part of the CVE-2023-33951 and CVE-2023-33952 fixes exposed a use-after-free flaw in the way memory…
CVE-2025-13601 — CVSS 7.7 (high): A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the g_escape_uri_string()…
CVE-2025-1756 — CVSS 7.5 (high): mongosh may be susceptible to local privilege escalation under certain conditions potentially enabling unauthorized actions on a user's…
CVE-2024-12085 — CVSS 7.5 (high): A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate the…
CVE-2025-1755 — CVSS 7.5 (high): MongoDB Compass may be susceptible to local privilege escalation under certain conditions potentially enabling unauthorized actions on a…
CVE-2023-5157 — CVSS 7.5 (high): A vulnerability was found in MariaDB. An OpenVAS port scan on ports 3306 and 4567 allows a malicious remote client to cause a denial of…
CVE-2024-7006 — CVSS 7.5 (high): A null pointer dereference flaw was found in Libtiff via `tif_dirinfo.c`. This issue may allow an attacker to trigger memory allocation…
CVE-2025-6021 — CVSS 7.5 (high): A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-based buffer…
CVE-2025-3155 — CVSS 7.4 (high): A flaw was found in Yelp. The Gnome user help application allows the help document to execute arbitrary scripts. This vulnerability allows…
CVE-2023-3758 — CVSS 7.1 (high): A race condition flaw was found in sssd where the GPO policy is not consistently applied for authenticated users. This may lead to improper…
CVE-2025-2784 — CVSS 7.0 (high): A flaw was found in libsoup. The package is vulnerable to a heap buffer over-read when sniffing content via the skip_insight_whitespace()…
CVE-2022-24806 — CVSS 6.5 (medium): net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a user with read-write…
CVE-2022-24807 — CVSS 6.5 (medium): net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a malformed OID in a SET…
CVE-2024-12088 — CVSS 6.5 (medium): A flaw was found in rsync. When using the `--safe-links` option, the rsync client fails to properly verify if a symbolic link destination…
CVE-2022-24805 — CVSS 6.5 (medium): net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a buffer overflow in the…
CVE-2023-4527 — CVSS 6.5 (medium): A flaw was found in glibc. When the getaddrinfo function is called with the AF_UNSPEC address family and the system is configured with…
CVE-2024-9676 — CVSS 6.5 (medium): A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the containers/storage library can cause…
CVE-2022-24809 — CVSS 6.5 (medium): net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a user with read-only…
CVE-2022-24808 — CVSS 6.5 (medium): net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a user with read-write…
CVE-2019-6470 — CVSS 6.5 (medium): There had existed in one of the ISC BIND libraries a bug in a function that was used by dhcpd when operating in DHCPv6 mode. There was also…
CVE-2024-12087 — CVSS 6.5 (medium): A path traversal vulnerability exists in rsync. It stems from behavior enabled by the `--inc-recursive` option, a default-enabled option…
CVE-2024-3049 — CVSS 5.9 (medium): A flaw was found in Booth, a cluster ticket manager. If a specially-crafted hash is passed to gcry_md_get_algo_dlen(), it may allow an…
CVE-2023-4806 — CVSS 5.9 (medium): A flaw has been identified in glibc. In an extremely rare situation, the getaddrinfo function may access memory that has been freed…
CVE-2023-5992 — CVSS 5.6 (medium): A vulnerability was found in OpenSC where PKCS#1 encryption padding removal is not implemented as side-channel resistant. This issue may…
CVE-2023-4042 — CVSS 5.5 (medium): A flaw was found in ghostscript. The fix for CVE-2020-16305 in ghostscript was not included in RHSA-2021:1852-06 advisory as it was claimed…
CVE-2023-7250 — CVSS 5.3 (medium): A flaw was found in iperf, a utility for testing network performance using TCP, UDP, and SCTP. A malicious or malfunctioning client can…
CVE-2023-6681 — CVSS 5.3 (medium): A vulnerability was found in JWCrypto. This flaw allows an attacker to cause a denial of service (DoS) attack and possible password…
CVE-2023-4641 — CVSS 4.7 (medium): A flaw was found in shadow-utils. When asking for a new password, shadow-utils asks the password twice. If the password fails on the second…
CVE-2023-4732 — CVSS 4.7 (medium): A flaw was found in pfn_swap_entry_to_page in memory management subsystem in the Linux Kernel. In this flaw, an attacker with a local user…
CVE-2023-5868 — CVSS 4.3 (medium): A memory disclosure vulnerability was found in PostgreSQL that allows remote users to access sensitive information by exploiting certain…
CVE-2023-5870 — CVSS 2.2 (low): A flaw was found in PostgreSQL involving the pg_cancel_backend role that signals background workers, including the logical replication…