Threats Tagged 'cve-2026-28390'

This advisory concerns a set of vulnerabilities affecting Red Hat Hardened Images and related RPM packages, identified under CVE-2025-9230 and multiple associated CVEs. The update addresses bugs and enhancements in these RPMs, impacting various Red Hat products including those on aarch64 architecture. The vulnerabilities cover a broad range of weaknesses as indicated by numerous CWEs, such as buffer overflows, information exposure, and improper input validation. No specific CVSS score is provided, but the severity is classified as high. There are no known exploits in the wild at this time. The vendor advisory does not explicitly state patch availability or remediation details in the provided content. No affected countries are specified, indicating a global scope. Confidence in this analysis is moderate due to limited detailed vendor remediation information.

Red Hat Discovery is a tool used to inspect and report environment data such as system counts, operating systems, and configuration details within a network. The advisory references multiple CVEs including CVE-2025-62718 affecting Red Hat Discovery and related products. The vendor advisory does not indicate any available fixes or patches for these vulnerabilities as of the publication date. No known exploits are reported in the wild. The severity is assessed as high based on the advisory metadata, but detailed impact specifics are not provided. The advisory suggests installing containers via discovery-installer RPM but does not explicitly state this as a remediation for the vulnerabilities. No geographic targeting is indicated. Patch status is not confirmed; users should consult the official Red Hat advisory for updates.