AI Threat Alert
Red Hat
AI Threat Alert tracks 7 known AI/ML vulnerabilities affecting Red Hat products — each enriched with CVSS severity, EPSS exploit probability, patch status, and CISO-grade analysis. Browse every Red Hat CVE below, sorted by severity and recency.
| Severity | CVE | Headline | Package | CVSS |
|---|---|---|---|---|
| MEDIUM | CVE-2024-11831 | serialize-javascript: XSS via regex in AI/ML dashboards | odh-kf-notebook-controller-rhel8 | 5.4 |
| HIGH | CVE-2026-4424 | libarchive: RAR heap OOB read leaks memory in vLLM stacks | rhaiis/vllm-cuda-rhel9 | 7.5 |
| HIGH | CVE-2026-5121 | libarchive: integer overflow in zisofs hits vllm containers | rhaiis/vllm-cuda-rhel9 | 7.5 |
| HIGH | CVE-2023-52356 | libtiff: heap overflow DoS in vLLM inference via TIFF input | rhaiis/vllm-cuda-rhel9 | 7.5 |
| MEDIUM | CVE-2025-14831 | GnuTLS: TLS cert parsing DoS hits vllm inference | rhaiis/vllm-cuda-rhel9 | 5.3 |
| HIGH | CVE-2026-4111 | libarchive: infinite loop DoS in RAR5 decompression | rhaiis/vllm-cuda-rhel9 | 7.5 |
| HIGH | CVE-2026-5201 | gdk-pixbuf: JPEG heap overflow crashes vLLM inference | rhaiis/vllm-cuda-rhel9 | 7.5 |
Frequently asked questions
How many known vulnerabilities affect Red Hat?
7 AI/ML CVEs affecting Red Hat products are tracked, sourced from NVD and GitHub Advisory.
What Red Hat products are affected?
The CVEs below map to the Red Hat AI/ML packages and tools tracked by AI Threat Alert; open any CVE to see the affected components and versions.
Where does the Red Hat vulnerability data come from?
Data is sourced from NVD and GitHub Advisory, then enriched with CVSS severity, EPSS exploit probability, and patch status for each CVE.
How can I monitor Red Hat for new vulnerabilities?
AI Threat Alert tracks Red Hat continuously; a Pro subscription adds breaking alerts when new CVEs affecting Red Hat are published.
How do I assess Red Hat's security exposure?
Each CVE below carries CVSS severity and exploitation signals, so you can review the highest-severity Red Hat issues first and judge the exposure for your stack.