| | CVE-2025-69227 |  Red Hat | medium | 7.5 | 0.1%
| ✓ Fix | AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Versions 3.13.2 and … | Jan 5, 2026 | Jan 5, 2026 |
| | CVE-2025-69228 | Red Hat | medium | 6.8 | 0.1%
| ✓ Fix | AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Versions 3.13.2 and … | Jan 5, 2026 | Jan 5, 2026 |
| | CVE-2025-69229 | Red Hat | medium | 5.8 | 0.1%
| | AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. In versions 3.13.2 a… | Jan 5, 2026 | Jan 5, 2026 |
| | CVE-2025-69230 | Red Hat | low | 5.4 | 0.0%
| | AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. In versions 3.13.2 a… | Jan 5, 2026 | Jan 5, 2026 |
| | CVE-2025-15444 | Red Hat | medium | 6.8 | 0.0%
| | Crypt::Sodium::XS module versions prior to 0.000042, for Perl, include a vulnerable version of libso… | Jan 6, 2026 | Jan 6, 2026 |
| | CVE-2025-13812 |  Check Point | medium | 4.3 | 0.0%
| | The GamiPress – Gamification plugin to reward points, achievements, badges & ranks in WordPress plug… | Jan 6, 2026 | Jan 8, 2026 |
| | CVE-2026-0707 | Red Hat | medium | 5.3 | 0.0%
| ✓ Fix | A flaw was found in Keycloak. The Keycloak Authorization header parser is overly permissive regardin… | Jan 7, 2026 | Jan 7, 2026 |
| | CVE-2026-25211 | Red Hat | low | 3.8 | 0.0%
| | Llama Stack (aka llama-stack) before 0.4.0rc3 does not censor the pgvector password in the initializ… | Jan 7, 2026 | Jan 7, 2026 |
| | CVE-2025-9611 |  Microsoft | medium | — | 0.3%
| | Microsoft Playwright MCP Server versions prior to 0.0.40 fails to validate the Origin header on inco… | Jan 7, 2026 | Jan 8, 2026 |
| | CVE-2025-12543 |  Apache | critical | 9.6 | 0.0%
| | A flaw was found in the Undertow HTTP server core, which is used in WildFly, JBoss EAP, and other Ja… | Jan 7, 2026 | Apr 29, 2026 |
| | CVE-2025-67364 | Check Point | high | 7.5 | 0.0%
| | fast-filesystem-mcp version 3.4.0 contains a critical path traversal vulnerability in its file opera… | Jan 7, 2026 | Jan 29, 2026 |
| | CVE-2025-67366 | Check Point | high | 7.5 | 0.1%
| | @sylphxltd/filesystem-mcp v0.5.8 is an MCP server that provides file content reading functionality. … | Jan 7, 2026 | Jan 29, 2026 |
| | CVE-2026-20026 |  Cisco | medium | 5.8 | 0.1%
| | Multiple Cisco products are affected by a vulnerability in the processing of DCE/RPC requests t… | Jan 7, 2026 | Jan 8, 2026 |
| | CVE-2026-20027 | Cisco | medium | 5.3 | 0.0%
| | Multiple Cisco products are affected by a vulnerability in the processing of DCE/RPC requests that c… | Jan 7, 2026 | Jan 8, 2026 |
| | CVE-2026-20029 | Cisco | medium | 4.9 | 0.0%
| | A vulnerability in the licensing features of Cisco Identity Services Engine (ISE) and Cisco ISE… | Jan 7, 2026 | Jan 8, 2026 |
| | CVE-2026-0668 | Red Hat | medium | 6.5 | 0.1%
| | Inefficient Regular Expression Complexity vulnerability in Wikimedia Foundation MediaWiki - VisualDa… | Jan 7, 2026 | Jan 7, 2026 |
| | CVE-2026-0669 | Red Hat | medium | 6.5 | 0.1%
| | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Wiki… | Jan 7, 2026 | Jan 7, 2026 |
| | CVE-2025-69262 | Red Hat | medium | 7.5 | 0.1%
| | pnpm is a package manager. Versions 6.25.0 through 10.26.2 have a Command Injection vulnerability wh… | Jan 7, 2026 | Jan 7, 2026 |
| | CVE-2026-22184 | Red Hat | high | 8.6 | 0.0%
| | zlib versions up to and including 1.3.1.2 include a global buffer overflow in the untgz utility loca… | Jan 7, 2026 | Jan 7, 2026 |
| | CVE-2026-22185 | Red Hat | medium | 6.8 | 0.0%
| | OpenLDAP Lightning Memory-Mapped Database (LMDB) versions up to and including 0.9.14, prior to commi… | Jan 7, 2026 | Jan 7, 2026 |
| | CVE-2025-13151 | Red Hat | low | 5.9 | 0.1%
| | Stack-based buffer overflow in libtasn1 version: v4.20.0. The function fails to validate the size of… | Jan 7, 2026 | Jan 7, 2026 |
| | CVE-2025-69263 | Red Hat | high | 7.5 | 0.0%
| | pnpm is a package manager. Versions 10.26.2 and below store HTTP tarball dependencies (and git-hoste… | Jan 7, 2026 | Jan 7, 2026 |
| | CVE-2025-69264 | Red Hat | high | 8.8 | 0.1%
| | pnpm is a package manager. Versions 10.0.0 through 10.25 allow git-hosted dependencies to execute ar… | Jan 7, 2026 | Jan 7, 2026 |
| | CVE-2026-21441 | Red Hat | high | 7.5 | 0.0%
| ✓ Fix | urllib3 is an HTTP client library for Python. urllib3's streaming API is designed for the efficient … | Jan 7, 2026 | Jan 7, 2026 |
| | CVE-2025-62224 | Microsoft | medium | 5.5 | 0.1%
| | User interface (ui) misrepresentation of critical information in Microsoft Edge for Android allows a… | Jan 7, 2026 | Feb 2, 2026 |
| | CVE-2026-21869 | Red Hat | high | 8.1 | 0.3%
| | llama.cpp is an inference of several LLM models in C/C++. In commits 55d4206c8 and prior, the n_disc… | Jan 7, 2026 | Jan 7, 2026 |
| | CVE-2025-65518 | Red Hat | high | 7.5 | 0.0%
| | Plesk Obsidian versions 8.0.1 through 18.0.73 are vulnerable to a Denial of Service (DoS) condition.… | Jan 8, 2026 | Jan 8, 2026 |
| | CVE-2025-50334 | Red Hat | high | 7.5 | 0.1%
| | An issue in Technitium DNS Server v.13.5 allows a remote attacker to cause a denial of service via t… | Jan 8, 2026 | Jan 8, 2026 |
| | CVE-2026-0719 | Red Hat | high | 8.6 | 0.1%
| ✓ Fix | A flaw was identified in the NTLM authentication handling of the libsoup HTTP library, used by GNOME… | Jan 8, 2026 | Jan 8, 2026 |
| | CVE-2026-0716 | Red Hat | medium | 4.8 | 0.1%
| | A flaw was found in libsoup’s WebSocket frame processing when handling incoming messages. If a non-d… | Jan 8, 2026 | Jan 8, 2026 |
| | CVE-2025-66560 | Red Hat | medium | 5.9 | 0.0%
| ✓ Fix | Quarkus is a Cloud Native, (Linux) Container First framework for writing Java applications. Prior to… | Jan 8, 2026 | Jan 8, 2026 |
| | CVE-2026-21883 | Red Hat | medium | 5.4 | 0.0%
| | Bokeh is an interactive visualization library written in Python. In versions 3.8.1 and below, if a s… | Jan 8, 2026 | Jan 8, 2026 |
| | CVE-2025-14017 | Red Hat | medium | 4.8 | 0.0%
| | When doing multi-threaded LDAPS transfers (LDAP over TLS) with libcurl,
changing TLS options in one … | Jan 8, 2026 | Jan 8, 2026 |
| | CVE-2025-14459 | Red Hat | high | 8.5 | 0.0%
| ✓ Fix | A flaw was found in KubeVirt Containerized Data Importer (CDI). This vulnerability allows a user to … | Jan 8, 2026 | Jan 8, 2026 |
| | CVE-2026-21895 | Red Hat | low | 5.5 | 0.0%
| | The `rsa` crate is an RSA implementation written in rust. Prior to version 0.9.10, when creating a R… | Jan 8, 2026 | Jan 8, 2026 |
| | CVE-2026-22028 | Red Hat | medium | 6.1 | 0.1%
| | Preact, a lightweight web development framework, JSON serialization protection to prevent Virtual DO… | Jan 8, 2026 | Jan 8, 2026 |
| | CVE-2025-67603 | Red Hat | medium | 7.3 | 0.0%
| | A Improper Authorization vulnerability in Foomuuri llows arbitrary users to influence the firewall c… | Jan 8, 2026 | Jan 8, 2026 |
| | CVE-2025-67858 | Red Hat | high | 7.8 | 0.0%
| | A Improper Neutralization of Argument Delimiters vulnerability in Foomuuri can lead to integrity los… | Jan 8, 2026 | Jan 8, 2026 |
| | CVE-2025-68151 | Red Hat | medium | 5.3 | 0.1%
| | CoreDNS is a DNS server that chains plugins. Prior to version 1.14.0, multiple CoreDNS server implem… | Jan 8, 2026 | Jan 8, 2026 |
| | CVE-2025-55125 |  Veeam | high | 7.8 | 0.1%
| | This vulnerability allows a Backup or Tape Operator to perform remote code execution (RCE) as root b… | Jan 8, 2026 | Jan 12, 2026 |
| | CVE-2025-59468 | Veeam | critical | 9.0 | 0.1%
| | This vulnerability allows a Backup Administrator to perform remote code execution (RCE) as the postg… | Jan 8, 2026 | Jan 14, 2026 |
| | CVE-2025-59469 | Veeam | critical | 9.0 | 0.0%
| | This vulnerability allows a Backup or Tape Operator to write files as root. | Jan 8, 2026 | Jan 14, 2026 |
| | CVE-2025-59470 | Veeam | critical | 9.0 | 0.2%
| | This vulnerability allows a Backup Operator to perform remote code execution (RCE) as the postgres u… | Jan 8, 2026 | Jan 14, 2026 |
| | CVE-2025-68158 | Red Hat | medium | 5.7 | 0.0%
| | Authlib is a Python library which builds OAuth and OpenID Connect servers. In version 1.6.5 and prio… | Jan 8, 2026 | Jan 8, 2026 |
| | CVE-2025-14505 | Red Hat | medium | 5.6 | 0.0%
| | The ECDSA implementation of the Elliptic package generates incorrect signatures if an interim value … | Jan 8, 2026 | Jan 8, 2026 |
| | CVE-2026-0665 | Red Hat | medium | 6.5 | 0.0%
| | An off-by-one error was found in QEMU's KVM Xen guest support. A malicious guest could use this flaw… | Jan 9, 2026 | Jan 9, 2026 |
| | CVE-2025-14525 | Red Hat | medium | 6.4 | 0.0%
| | A flaw was found in kubevirt. A user within a virtual machine (VM), if the guest agent is active, ca… | Jan 9, 2026 | Jan 9, 2026 |
| | CVE-2025-70974 | Red Hat | critical | 10.0 | 0.0%
| | Fastjson before 1.2.48 mishandles autoType because, when an @type key is in a JSON document, and the… | Jan 9, 2026 | Jan 9, 2026 |
| | CVE-2025-13761 | Red Hat | high | 8.0 | 0.0%
| | GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.6 before 18.6.3, and 1… | Jan 9, 2026 | Jan 9, 2026 |
| | CVE-2025-13772 | Red Hat | high | 7.1 | 0.0%
| | GitLab has remediated an issue in GitLab EE affecting all versions from 18.4 before 18.5.5, 18.6 bef… | Jan 9, 2026 | Jan 9, 2026 |