| | CVE-2026-0989 |  Red Hat | low | 3.7 | 0.0%
| | A flaw was identified in the RelaxNG parser of libxml2 related to how external schema inclusions are… | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-0988 | Red Hat | low | 3.7 | 0.1%
| | A flaw was found in glib. Missing validation of offset and count parameters in the g_buffered_input_… | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-0976 | Red Hat | low | 3.7 | 0.0%
| | A flaw was found in Keycloak. This improper input validation vulnerability occurs because Keycloak a… | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-0897 | Red Hat | high | 7.6 | 0.0%
| ✓ Fix | Allocation of Resources Without Limits or Throttling in the HDF5 weight loading component in Google … | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2025-61973 |  Microsoft | high | 8.8 | 0.0%
| | A local privilege escalation vulnerability exists during the installation of Epic Games Store via th… | Jan 15, 2026 | Jan 16, 2026 |
| | CVE-2026-20047 |  Cisco | medium | 4.8 | 0.0%
| | A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) and Ci… | Jan 15, 2026 | Jan 30, 2026 |
| | CVE-2026-20075 | Cisco | medium | 4.8 | 0.0%
| | A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager … | Jan 15, 2026 | Jan 30, 2026 |
| | CVE-2026-20076 | Cisco | medium | 4.8 | 0.0%
| | A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could … | Jan 15, 2026 | Jan 30, 2026 |
| | CVE-2025-9014 |  Check Point | high | 7.5 | 0.1%
| | A Null Pointer Dereference vulnerability exists in the referer header check of the web portal of TP-… | Jan 15, 2026 | Jan 30, 2026 |
| | CVE-2026-22774 | Red Hat | high | 7.5 | 0.0%
| ✓ Fix | Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't… | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-22775 | Red Hat | high | 7.5 | 0.0%
| ✓ Fix | Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't… | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-23766 | Red Hat | medium | — | — | | No description is available for this CVE. | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-23527 | Red Hat | high | 8.9 | 0.0%
| | H3 is a minimal H(TTP) framework built for high performance and portability. Prior to 1.15.5, there … | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2025-15265 | Red Hat | medium | 6.1 | 0.0%
| | An SSR XSS exists in async hydration when attacker‑controlled keys are passed to hydratable. The key… | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-1002 | Red Hat | medium | 5.3 | 0.0%
| ✓ Fix | The Vert.x Web static handler component cache can be manipulated to deny the access to static files … | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-0915 | Red Hat | medium | 5.3 | 0.0%
| ✓ Fix | Calling getnetbyaddr or getnetbyaddr_r with a configured nsswitch.conf that specifies the library's … | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-22045 | Red Hat | medium | 5.9 | 0.0%
| | Traefik is an HTTP reverse proxy and load balancer. Prior to 2.11.35 and 3.6.7, there is a potential… | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2025-62291 | Red Hat | high | 8.1 | 0.0%
| | In the eap-mschapv2 plugin (client-side) in strongSwan before 6.0.3, a malicious EAP-MSCHAPv2 server… | Jan 16, 2026 | Jan 16, 2026 |
| | CVE-2025-24531 | Red Hat | medium | 6.7 | 0.0%
| | In OpenSC pam_pkcs11 before 0.6.13, pam_sm_authenticate() wrongly returns PAM_IGNORE in many error s… | Jan 16, 2026 | Jan 16, 2026 |
| | CVE-2026-0858 | Red Hat | medium | 6.1 | 0.0%
| | Versions of the package net.sourceforge.plantuml:plantuml before 1.2026.0 are vulnerable to Stored X… | Jan 16, 2026 | Jan 16, 2026 |
| | CVE-2025-29943 | Red Hat | low | 3.2 | 0.0%
| | Write what were condition within AMD CPUs may allow an admin-privileged attacker to modify the confi… | Jan 16, 2026 | Jan 16, 2026 |
| | CVE-2026-23490 | Red Hat | high | 7.5 | 0.0%
| ✓ Fix | pyasn1 is a generic ASN.1 library for Python. Prior to 0.6.2, a Denial-of-Service issue has been fou… | Jan 16, 2026 | Jan 16, 2026 |
| | CVE-2021-47839 | Red Hat | high | — | 0.0%
| | Marky 0.0.1 contains a persistent cross-site scripting vulnerability that allows attackers to inject… | Jan 16, 2026 | Jan 16, 2026 |
| | CVE-2026-23745 | Red Hat | high | 8.2 | 0.0%
| ✓ Fix | node-tar is a Tar for Node.js. The node-tar library (<= 7.5.2) fails to sanitize the linkpath of Lin… | Jan 16, 2026 | Jan 16, 2026 |
| | CVE-2026-20960 | Microsoft | high | 8.0 | 0.0%
| | Improper authorization in Microsoft Power Apps allows an authorized attacker to execute code over a … | Jan 16, 2026 | Feb 12, 2026 |
| | CVE-2026-21223 | Microsoft | high | 7.1 | 0.0%
| | Improper privilege management in Microsoft Edge (Chromium-based) allows an authorized attacker to by… | Jan 16, 2026 | Feb 22, 2026 |
| | CVE-2025-15533 | Red Hat | medium | 5.3 | 0.0%
| | A vulnerability was determined in raysan5 raylib up to 909f040. Affected by this vulnerability is th… | Jan 18, 2026 | Jan 18, 2026 |
| | CVE-2025-15534 | Red Hat | medium | 5.3 | 0.0%
| | A vulnerability was identified in raysan5 raylib up to 909f040. Affected by this issue is the functi… | Jan 18, 2026 | Jan 18, 2026 |
| | CVE-2025-15536 | Red Hat | medium | 5.3 | 0.0%
| | A weakness has been identified in BYVoid OpenCC up to 1.1.9. This vulnerability affects the function… | Jan 18, 2026 | Jan 18, 2026 |
| | CVE-2025-15537 | Red Hat | medium | 5.3 | 0.0%
| | A security vulnerability has been detected in Mapnik up to 4.2.0. This issue affects the function ma… | Jan 18, 2026 | Jan 18, 2026 |
| | CVE-2025-15538 | Red Hat | medium | 5.3 | 0.0%
| | A security vulnerability has been detected in Open Asset Import Library Assimp up to 6.0.2. Affected… | Jan 18, 2026 | Jan 18, 2026 |
| | CVE-2026-22797 | Red Hat | high | 9.9 | 0.1%
| ✓ Fix | An issue was discovered in OpenStack keystonemiddleware 10.5 through 10.7 before 10.7.2, 10.8 and 10… | Jan 19, 2026 | Jan 19, 2026 |
| | CVE-2026-1180 | Red Hat | medium | 5.8 | 0.0%
| | A flaw was identified in Keycloak’s OpenID Connect Dynamic Client Registration feature when clients … | Jan 19, 2026 | Jan 19, 2026 |
| | CVE-2026-1144 | Red Hat | high | 6.3 | 0.1%
| | A vulnerability was detected in quickjs-ng quickjs up to 0.11.0. Affected is an unknown function of … | Jan 19, 2026 | Jan 19, 2026 |
| | CVE-2026-1145 | Red Hat | high | 6.3 | 0.1%
| | A flaw has been found in quickjs-ng quickjs up to 0.11.0. Affected by this vulnerability is the func… | Jan 19, 2026 | Jan 19, 2026 |
| | CVE-2026-1200 | Red Hat | medium | 6.3 | 0.1%
| | A flaw was found in the rgaufman/live555 fork of live555. A remote attacker could exploit a segmenta… | Jan 19, 2026 | Jan 19, 2026 |
| | CVE-2026-1190 | Red Hat | low | 3.1 | 0.0%
| ✓ Fix | A flaw was found in Keycloak's SAML brokering functionality. When Keycloak is configured as a client… | Jan 19, 2026 | Jan 19, 2026 |
| | CVE-2026-0603 | Red Hat | high | 8.3 | 0.0%
| | A flaw was found in Hibernate. A remote attacker with low privileges could exploit a second-order SQ… | Jan 19, 2026 | Jan 19, 2026 |
| | CVE-2025-68616 | Red Hat | high | 7.5 | 0.1%
| | WeasyPrint helps web developers to create PDF documents. Prior to version 68.0, a server-side reques… | Jan 19, 2026 | Jan 19, 2026 |
| | CVE-2026-23530 | Red Hat | high | 7.6 | 0.1%
| ✓ Fix | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0,`freerdp_bi… | Jan 19, 2026 | Jan 19, 2026 |
| | CVE-2026-23531 | Red Hat | high | 7.6 | 0.1%
| ✓ Fix | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, in ClearCo… | Jan 19, 2026 | Jan 19, 2026 |
| | CVE-2026-23532 | Red Hat | high | 7.6 | 0.1%
| ✓ Fix | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, a client-s… | Jan 19, 2026 | Jan 19, 2026 |
| | CVE-2026-23533 | Red Hat | high | 7.6 | 0.1%
| ✓ Fix | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, a client-s… | Jan 19, 2026 | Jan 19, 2026 |
| | CVE-2026-23534 | Red Hat | high | 7.6 | 0.1%
| ✓ Fix | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, a client-s… | Jan 19, 2026 | Jan 19, 2026 |
| | CVE-2026-23732 | Red Hat | medium | 6.5 | 0.1%
| | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, FastGlyph … | Jan 19, 2026 | Jan 19, 2026 |
| | CVE-2026-23883 | Red Hat | high | 7.6 | 0.2%
| ✓ Fix | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, `xf_Pointe… | Jan 19, 2026 | Jan 19, 2026 |
| | CVE-2026-23884 | Red Hat | high | 7.6 | 0.2%
| ✓ Fix | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, offscreen … | Jan 19, 2026 | Jan 19, 2026 |
| | CVE-2026-23833 | Red Hat | low | 7.5 | 0.1%
| | ESPHome is a system to control microcontrollers remotely through Home Automation systems. In version… | Jan 19, 2026 | Jan 19, 2026 |
| | CVE-2026-21949 | Red Hat | medium | 6.5 | 0.0%
| | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported… | Jan 20, 2026 | Jan 20, 2026 |
| | CVE-2026-21964 | Red Hat | medium | 4.9 | 0.0%
| ✓ Fix | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Thread Pooling). Supp… | Jan 20, 2026 | Jan 20, 2026 |