| | CVE-2026-20730 |  F5 | low | 3.3 | 0.0%
| | A vulnerability exists in BIG-IP Edge Client and browser VPN clients on Windows that may allow attac… | Feb 4, 2026 | Feb 13, 2026 |
| | CVE-2026-20732 | F5 | low | 3.1 | 0.1%
| | A vulnerability exists in an undisclosed BIG-IP Configuration utility page that may allow an attacke… | Feb 4, 2026 | Feb 13, 2026 |
| | CVE-2026-22548 | F5 | medium | 5.9 | 0.1%
| | When a BIG-IP Advanced WAF or ASM security policy is configured on a virtual server, undisclosed req… | Feb 4, 2026 | Feb 13, 2026 |
| | CVE-2026-22549 | F5 | medium | 4.9 | 0.1%
| | A vulnerability exists in F5 BIG-IP Container Ingress Services that may allow excessive permissions … | Feb 4, 2026 | Feb 13, 2026 |
| | CVE-2026-20056 |  Cisco | medium | 4.0 | 0.0%
| | A vulnerability in the Dynamic Vectoring and Streaming (DVS) Engine implementation of Cisco AsyncOS … | Feb 4, 2026 | Feb 5, 2026 |
| | CVE-2026-20098 | Cisco | high | 8.8 | 0.6%
| | A vulnerability in the Certificate Management feature of Cisco Meeting Management could allow an aut… | Feb 4, 2026 | Mar 10, 2026 |
| | CVE-2026-20111 | Cisco | medium | 4.8 | 0.0%
| | A vulnerability in the web-based management interface of Cisco Prime Infrastructure could allow an a… | Feb 4, 2026 | Mar 10, 2026 |
| | CVE-2026-20119 | Cisco | high | 7.5 | 0.1%
| | A vulnerability in the text rendering subsystem of Cisco TelePresence Collaboration Endpoint (CE) So… | Feb 4, 2026 | Feb 5, 2026 |
| | CVE-2026-20123 | Cisco | medium | 4.3 | 0.0%
| | A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager … | Feb 4, 2026 | Mar 10, 2026 |
| | CVE-2025-68699 |  Check Point | medium | 6.5 | 0.1%
| | NanoMQ MQTT Broker (NanoMQ) is an all-around Edge Messaging Platform. In version 0.24.6, NanoMQ has … | Feb 4, 2026 | Feb 20, 2026 |
| | CVE-2026-0948 |  Microsoft | medium | 6.5 | 0.1%
| | Authentication Bypass Using an Alternate Path or Channel vulnerability in Drupal Microsoft Entra ID … | Feb 4, 2026 | Feb 11, 2026 |
| | CVE-2026-25518 |  Red Hat | medium | 5.9 | 0.0%
| | cert-manager adds certificates and certificate issuers as resource types in Kubernetes clusters, and… | Feb 4, 2026 | Feb 4, 2026 |
| | CVE-2026-25521 | Red Hat | critical | 9.3 | 0.0%
| | Locutus brings stdlibs of other programming languages to JavaScript for educational purposes. In ver… | Feb 4, 2026 | Feb 4, 2026 |
| | CVE-2026-25536 | Red Hat | high | 7.1 | 0.0%
| ✓ Fix | MCP TypeScript SDK is the official TypeScript SDK for Model Context Protocol servers and clients. Fr… | Feb 4, 2026 | Feb 4, 2026 |
| | CVE-2026-25537 | Red Hat | medium | 7.5 | 0.1%
| | jsonwebtoken is a JWT lib in rust. Prior to version 10.3.0, there is a Type Confusion vulnerability … | Feb 4, 2026 | Feb 4, 2026 |
| | CVE-2026-25547 | Red Hat | medium | 6.5 | 0.0%
| | @isaacs/brace-expansion is a hybrid CJS/ESM TypeScript fork of brace-expansion. Prior to version 5.0… | Feb 4, 2026 | Feb 4, 2026 |
| | CVE-2025-22873 | Red Hat | medium | 5.3 | 0.0%
| | It was possible to improperly access the parent directory of an os.Root by opening a filename ending… | Feb 4, 2026 | Feb 4, 2026 |
| | CVE-2025-61732 | Red Hat | high | 7.4 | 0.0%
| ✓ Fix | A discrepancy between how Go and C/C++ comments were parsed allowed for code smuggling into the resu… | Feb 5, 2026 | Feb 5, 2026 |
| | CVE-2026-1966 | Red Hat | low | 6.5 | 0.0%
| | YugabyteDB Anywhere displays LDAP bind passwords configured via gflags in cleartext within the web U… | Feb 5, 2026 | Feb 5, 2026 |
| | CVE-2020-37127 | Red Hat | medium | 5.5 | 0.0%
| | Dnsmasq-utils 2.79-1 contains a buffer overflow vulnerability in the dhcp_release utility that allow… | Feb 5, 2026 | Feb 5, 2026 |
| | CVE-2025-68121 | Red Hat | medium | 7.4 | 0.0%
| ✓ Fix | During session resumption in crypto/tls, if the underlying Config has its ClientCAs or RootCAs field… | Feb 5, 2026 | Feb 5, 2026 |
| | CVE-2025-58190 | Red Hat | medium | 4.3 | 0.0%
| ✓ Fix | The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certai… | Feb 5, 2026 | Feb 5, 2026 |
| | CVE-2025-47911 | Red Hat | medium | 5.3 | 0.0%
| | The html.Parse function in golang.org/x/net/html has quadratic parsing complexity when processing ce… | Feb 5, 2026 | Feb 5, 2026 |
| | CVE-2026-21532 | Microsoft | high | 8.2 | 0.1%
| | Azure Function Information Disclosure Vulnerability | Feb 5, 2026 | Mar 13, 2026 |
| | CVE-2026-24300 | Microsoft | critical | 9.8 | 0.1%
| | Azure Front Door Elevation of Privilege Vulnerability | Feb 5, 2026 | Mar 13, 2026 |
| | CVE-2026-0391 | Microsoft | medium | 6.5 | 0.0%
| | User interface (ui) misrepresentation of critical information in Microsoft Edge for Android allows a… | Feb 5, 2026 | Mar 13, 2026 |
| | CVE-2026-25815 |  Fortinet | low | 3.2 | 0.0%
| | Fortinet FortiOS through 7.6.6 allows attackers to decrypt LDAP credentials stored in device configu… | Feb 5, 2026 | Feb 6, 2026 |
| | CVE-2025-68458 | Red Hat | low | 3.7 | 0.0%
| | Webpack is a module bundler. From version 5.49.0 to before 5.104.1, when experiments.buildHttp is en… | Feb 5, 2026 | Feb 5, 2026 |
| | CVE-2025-68157 | Red Hat | low | 3.7 | 0.0%
| | Webpack is a module bundler. From version 5.49.0 to before 5.104.0, when experiments.buildHttp is en… | Feb 5, 2026 | Feb 5, 2026 |
| | CVE-2026-24302 | Microsoft | high | 8.6 | 0.1%
| | Improper access control in Azure Arc allows an unauthorized attacker to elevate privileges over a ne… | Feb 5, 2026 | Apr 10, 2026 |
| | CVE-2026-0598 | Red Hat | medium | 4.2 | 0.0%
| | A security flaw was identified in the Ansible Lightspeed API conversation endpoints that handle AI c… | Feb 6, 2026 | Feb 6, 2026 |
| | CVE-2026-2100 | Red Hat | medium | 5.3 | — | | No description is available for this CVE. | Feb 6, 2026 | Feb 6, 2026 |
| | CVE-2026-21643 | Fortinet | critical | 9.8 | 38.2%
| ⚠ KEV | An improper neutralization of special elements used in an sql command ('sql injection') vulnerabilit… | Feb 6, 2026 | Apr 14, 2026 |
| | CVE-2026-25556 | Red Hat | medium | 5.3 | 0.1%
| | MuPDF versions 1.23.0 through 1.27.0 contain a double-free vulnerability in fz_fill_pixmap_from_disp… | Feb 6, 2026 | Feb 6, 2026 |
| | CVE-2026-23739 | Red Hat | low | 2.0 | 0.1%
| | Asterisk is an open source private branch exchange and telephony toolkit. Prior to versions 20.7-cer… | Feb 6, 2026 | Feb 6, 2026 |
| | CVE-2026-23740 | Red Hat | high | 7.8 | 0.0%
| | Asterisk is an open source private branch exchange and telephony toolkit. Prior to versions 20.7-cer… | Feb 6, 2026 | Feb 6, 2026 |
| | CVE-2026-1709 | Red Hat | critical | 9.4 | 0.0%
| ✓ Fix | A flaw was found in Keylime. The Keylime registrar, since version 7.12.0, does not enforce client-si… | Feb 6, 2026 | Feb 6, 2026 |
| | CVE-2026-24851 | Red Hat | medium | 6.0 | 0.1%
| | OpenFGA is a high-performance and flexible authorization/permission engine built for developers and … | Feb 6, 2026 | Feb 6, 2026 |
| | CVE-2026-25727 | Red Hat | medium | 5.9 | 0.0%
| | time provides date and time handling in Rust. From 0.3.6 to before 0.3.47, when user-provided input … | Feb 6, 2026 | Feb 6, 2026 |
| | CVE-2026-25640 | Red Hat | high | 7.1 | 0.0%
| | Pydantic AI is a Python agent framework for building applications and workflows with Generative AI. … | Feb 6, 2026 | Feb 6, 2026 |
| | CVE-2026-25636 | Red Hat | high | 8.2 | 0.0%
| | calibre is an e-book manager. In 9.1.0 and earlier, a path traversal vulnerability in Calibre's EPUB… | Feb 6, 2026 | Feb 6, 2026 |
| | CVE-2026-25635 | Red Hat | high | 8.6 | 0.2%
| | calibre is an e-book manager. Prior to 9.2.0, Calibre's CHM reader contains a path traversal vulnera… | Feb 6, 2026 | Feb 6, 2026 |
| | CVE-2026-25731 | Red Hat | high | 7.8 | 0.0%
| | calibre is an e-book manager. Prior to 9.2.0, a Server-Side Template Injection (SSTI) vulnerability … | Feb 6, 2026 | Feb 6, 2026 |
| | CVE-2026-25580 | Red Hat | high | 8.6 | 0.0%
| | Pydantic AI is a Python agent framework for building applications and workflows with Generative AI. … | Feb 6, 2026 | Feb 6, 2026 |
| | CVE-2026-25592 | Microsoft | critical | 9.9 | 0.1%
| | Semantic Kernel is an SDK used to build, orchestrate, and deploy AI agents and multi-agent systems. … | Feb 6, 2026 | Feb 19, 2026 |
| | CVE-2026-25749 | Red Hat | medium | 7.3 | 0.0%
| | Vim is an open source, command line text editor. Prior to version 9.1.2132, a heap buffer overflow v… | Feb 6, 2026 | Feb 6, 2026 |
| | CVE-2026-25793 | Red Hat | high | 8.1 | 0.0%
| | Nebula is a scalable overlay networking tool. In versions from 1.7.0 to 1.10.2, when using P256 cert… | Feb 6, 2026 | Feb 6, 2026 |
| | CVE-2026-1584 | Red Hat | high | 7.5 | — | | A flaw was found in gnutls. A remote, unauthenticated attacker can exploit this vulnerability by sen… | Feb 9, 2026 | Feb 9, 2026 |
| | CVE-2026-1615 | Red Hat | high | 9.8 | 0.1%
| | Versions of the package jsonpath before 1.2.0 are vulnerable to Arbitrary Code Injection via unsafe … | Feb 9, 2026 | Feb 9, 2026 |
| | CVE-2026-2239 | Red Hat | low | 2.8 | — | | No description is available for this CVE. | Feb 9, 2026 | Feb 9, 2026 |