Redhat Enterprise Linux For Arm 64 Eus — known CVE vulnerabilities
Every CVE whose affected-product data names Redhat Enterprise Linux For Arm 64 Eus, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (37)
CVE-2026-1709 — CVSS 9.4 (critical): A flaw was found in Keylime. The Keylime registrar, since version 7.12.0, does not enforce client-side Transport Layer Security (TLS)…
CVE-2024-6387 — CVSS 8.1 (high): A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead sshd to handle…
CVE-2024-1488 — CVSS 8.0 (high): A vulnerability was found in Unbound due to incorrect default permissions, allowing any process outside the unbound group to modify the…
CVE-2023-3899 — CVSS 7.8 (high): A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus…
CVE-2023-3972 — CVSS 7.8 (high): A vulnerability was found in insights-client. This security issue occurs because of insecure file operations or unsafe handling of…
CVE-2023-5633 — CVSS 7.8 (high): The reference count changes made as part of the CVE-2023-33951 and CVE-2023-33952 fixes exposed a use-after-free flaw in the way memory…
CVE-2024-0193 — CVSS 7.8 (high): A use-after-free flaw was found in the netfilter subsystem of the Linux kernel. If the catchall element is garbage-collected when the…
CVE-2024-9675 — CVSS 7.8 (high): A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the cache are within our cache…
CVE-2025-13601 — CVSS 7.7 (high): A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the g_escape_uri_string()…
CVE-2025-1756 — CVSS 7.5 (high): mongosh may be susceptible to local privilege escalation under certain conditions potentially enabling unauthorized actions on a user's…
CVE-2023-5157 — CVSS 7.5 (high): A vulnerability was found in MariaDB. An OpenVAS port scan on ports 3306 and 4567 allows a malicious remote client to cause a denial of…
CVE-2025-6021 — CVSS 7.5 (high): A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-based buffer…
CVE-2024-12085 — CVSS 7.5 (high): A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate the…
CVE-2025-3155 — CVSS 7.4 (high): A flaw was found in Yelp. The Gnome user help application allows the help document to execute arbitrary scripts. This vulnerability allows…
CVE-2023-3758 — CVSS 7.1 (high): A race condition flaw was found in sssd where the GPO policy is not consistently applied for authenticated users. This may lead to improper…
CVE-2025-2784 — CVSS 7.0 (high): A flaw was found in libsoup. The package is vulnerable to a heap buffer over-read when sniffing content via the skip_insight_whitespace()…
CVE-2023-6536 — CVSS 6.5 (medium): A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP…
CVE-2023-4527 — CVSS 6.5 (medium): A flaw was found in glibc. When the getaddrinfo function is called with the AF_UNSPEC address family and the system is configured with…
CVE-2024-12087 — CVSS 6.5 (medium): A path traversal vulnerability exists in rsync. It stems from behavior enabled by the `--inc-recursive` option, a default-enabled option…
CVE-2024-12088 — CVSS 6.5 (medium): A flaw was found in rsync. When using the `--safe-links` option, the rsync client fails to properly verify if a symbolic link destination…
CVE-2022-24806 — CVSS 6.5 (medium): net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a user with read-write…
CVE-2022-24805 — CVSS 6.5 (medium): net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a buffer overflow in the…
CVE-2019-6470 — CVSS 6.5 (medium): There had existed in one of the ISC BIND libraries a bug in a function that was used by dhcpd when operating in DHCPv6 mode. There was also…
CVE-2024-9676 — CVSS 6.5 (medium): A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the containers/storage library can cause…
CVE-2022-24807 — CVSS 6.5 (medium): net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a malformed OID in a SET…
CVE-2022-24808 — CVSS 6.5 (medium): net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a user with read-write…
CVE-2022-24809 — CVSS 6.5 (medium): net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a user with read-only…
CVE-2023-5455 — CVSS 6.5 (medium): A Cross-site request forgery vulnerability exists in ipa/session/login_password in all supported versions of IPA. This flaw allows an…
CVE-2023-6356 — CVSS 6.5 (medium): A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP…
CVE-2023-6535 — CVSS 6.5 (medium): A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP…
CVE-2023-4806 — CVSS 5.9 (medium): A flaw has been identified in glibc. In an extremely rare situation, the getaddrinfo function may access memory that has been freed…
CVE-2023-5992 — CVSS 5.6 (medium): A vulnerability was found in OpenSC where PKCS#1 encryption padding removal is not implemented as side-channel resistant. This issue may…
CVE-2024-1062 — CVSS 5.5 (medium): A heap overflow flaw was found in 389-ds-base. This issue leads to a denial of service when writing a value larger than 256 chars in…