Red Hat - CVE CyberSecurity Database News (Page 2)

Apr 25, 2024 API Exploit WebSocket Red Hat red hat ansible automation platform 2.4 for rhel 9

CVE-2024-1657 - Insecure WebSocket in Ansible Automation Platform Lets Attackers Steal Rulebook Data

Summary: In early 2024, a critical vulnerability (CVE-2024-1657) was identified in the Ansible Automation Platform. This issue was caused by the use of an insecure

Apr 25, 2024 Exploit Red Hat Red Hat OpenShift Container Platform 4.15

CVE-2024-1139 - Cluster Monitoring Operator Credential Leak in OpenShift (OCP) – Full Analysis, Exploit Details, and Fix

CVE-2024-1139 uncovered a severe vulnerability in Red Hat OpenShift’s Cluster Monitoring Operator (CMO) where sensitive secrets, specifically image pull credentials, could accidentally leak to

Apr 25, 2024 Exploit OAuth Red Hat Red Hat build of Keycloak 22.0.10

CVE-2023-6787 - Keycloak Session Hijacking via Re-authentication Flaw

Keycloak is a popular open-source identity and access management tool used by many organizations to secure their web applications. However, in December 2023, a critical

Apr 25, 2024 Exploit Red Hat Red Hat OpenShift Container Platform 4

CVE-2023-6596 - The Rapid Reset Patch That Wasn’t Enough for OpenShift Containers

In late 2023, the world of containerized cloud solutions was rocked by the disclosure of the Rapid Reset vulnerability (CVE-2023-44487 and CVE-2023-39325). This vulnerability allowed

Apr 25, 2024 XSS API Exploit Red Hat Red Hat JBoss A-MQ 7

CVE-2023-6717 - Keycloak SAML Client Registration Flaw Exposes JavaScript XSS Attack

Date: June 2024 Author: [Your Name] Tags: Keycloak, SAML, CVE-2023-6717, XSS, Security, Exploit Overview A vulnerability, tracked as CVE-2023-6717, has been discovered in the SAML