| | CVE-2026-2790 |  Red Hat | low | 3.4 | 0.0%
| ✓ Fix | Same-origin policy bypass in the Networking: JAR component. This vulnerability affects Firefox < 148… | Feb 24, 2026 | Feb 24, 2026 |
| | CVE-2026-2791 | Red Hat | low | 3.4 | 0.1%
| ✓ Fix | Mitigation bypass in the Networking: Cache component. This vulnerability affects Firefox < 148, Fire… | Feb 24, 2026 | Feb 24, 2026 |
| | CVE-2026-2792 | Red Hat | high | 7.5 | 0.1%
| ✓ Fix | Memory safety bugs present in Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Thunderbird … | Feb 24, 2026 | Feb 24, 2026 |
| | CVE-2026-2793 | Red Hat | high | 7.5 | 0.1%
| ✓ Fix | Memory safety bugs present in Firefox ESR 115.32, Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox … | Feb 24, 2026 | Feb 24, 2026 |
| | CVE-2026-2794 | Red Hat | high | 7.5 | 0.0%
| | Information disclosure due to uninitialized memory in Firefox and Firefox Focus for Android. This vu… | Feb 24, 2026 | Feb 24, 2026 |
| | CVE-2026-2795 | Red Hat | high | 7.5 | 0.0%
| | Use-after-free in the JavaScript: GC component. This vulnerability affects Firefox < 148 and Thunder… | Feb 24, 2026 | Feb 24, 2026 |
| | CVE-2026-2796 | Red Hat | high | 7.5 | 0.1%
| | JIT miscompilation in the JavaScript: WebAssembly component. This vulnerability affects Firefox < 14… | Feb 24, 2026 | Feb 24, 2026 |
| | CVE-2026-2797 | Red Hat | high | 7.5 | 0.0%
| | Use-after-free in the JavaScript: GC component. This vulnerability affects Firefox < 148 and Thunder… | Feb 24, 2026 | Feb 24, 2026 |
| | CVE-2026-2798 | Red Hat | high | 7.5 | 0.0%
| | Use-after-free in the DOM: Core & HTML component. This vulnerability affects Firefox < 148 and Thund… | Feb 24, 2026 | Feb 24, 2026 |
| | CVE-2026-2799 | Red Hat | high | 7.5 | 0.0%
| | Use-after-free in the DOM: Core & HTML component. This vulnerability affects Firefox < 148 and Thund… | Feb 24, 2026 | Feb 24, 2026 |
| | CVE-2026-2800 | Red Hat | medium | 6.1 | 0.1%
| | Spoofing issue in the WebAuthn component in Firefox for Android. This vulnerability affects Firefox … | Feb 24, 2026 | Feb 24, 2026 |
| | CVE-2026-2801 | Red Hat | medium | 6.1 | 0.1%
| | Incorrect boundary conditions in the JavaScript: WebAssembly component. This vulnerability affects F… | Feb 24, 2026 | Feb 24, 2026 |
| | CVE-2026-2802 | Red Hat | medium | 6.1 | 0.0%
| | Race condition in the JavaScript: GC component. This vulnerability affects Firefox < 148 and Thunder… | Feb 24, 2026 | Feb 24, 2026 |
| | CVE-2026-2803 | Red Hat | medium | 6.1 | 0.1%
| | Information disclosure, mitigation bypass in the Settings UI component. This vulnerability affects F… | Feb 24, 2026 | Feb 24, 2026 |
| | CVE-2026-2804 | Red Hat | medium | 6.1 | 0.0%
| | Use-after-free in the JavaScript: WebAssembly component. This vulnerability affects Firefox < 148 an… | Feb 24, 2026 | Feb 24, 2026 |
| | CVE-2026-2805 | Red Hat | medium | 6.1 | 0.1%
| | Invalid pointer in the DOM: Core & HTML component. This vulnerability affects Firefox < 148 and Thun… | Feb 24, 2026 | Feb 24, 2026 |
| | CVE-2026-2806 | Red Hat | low | 3.4 | 0.1%
| | Uninitialized memory in the Graphics: Text component. This vulnerability affects Firefox < 148 and T… | Feb 24, 2026 | Feb 24, 2026 |
| | CVE-2026-2807 | Red Hat | high | 7.5 | 0.1%
| | Memory safety bugs present in Firefox 147 and Thunderbird 147. Some of these bugs showed evidence of… | Feb 24, 2026 | Feb 24, 2026 |
| | CVE-2026-27571 | Red Hat | medium | 7.5 | 0.1%
| | NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. The … | Feb 24, 2026 | Feb 24, 2026 |
| | CVE-2025-14963 |  Trellix | high | 7.8 | 0.0%
| | A vulnerability identified in the HX Agent driver file fekern.sys allowed a threat actor with local … | Feb 24, 2026 | Feb 26, 2026 |
| | CVE-2026-27195 | Red Hat | medium | 4.7 | 0.1%
| | Wasmtime is a runtime for WebAssembly. Starting with Wasmtime 39.0.0, the `component-model-async` fe… | Feb 24, 2026 | Feb 24, 2026 |
| | CVE-2026-27204 | Red Hat | medium | 6.3 | 0.1%
| | Wasmtime is a runtime for WebAssembly. Prior to versions 24.0.6, 36.0.6, 4.0.04, 41.0.4, and 42.0.0,… | Feb 24, 2026 | Feb 24, 2026 |
| | CVE-2026-27572 | Red Hat | medium | 6.3 | 0.1%
| | Wasmtime is a runtime for WebAssembly. Prior to versions 24.0.6, 36.0.6, 4.0.04, 41.0.4, and 42.0.0,… | Feb 24, 2026 | Feb 24, 2026 |
| | CVE-2026-27606 | Red Hat | high | 9.1 | 0.6%
| | Rollup is a module bundler for JavaScript. Versions prior to 2.80.0, 3.30.0, and 4.59.0 of the Rollu… | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-27628 | Red Hat | medium | 7.5 | 0.0%
| | pypdf is a free and open-source pure-python PDF library. Prior to 6.7.2, an attacker who uses this v… | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-3184 | Red Hat | low | 3.7 | — | | No description is available for this CVE. | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-26103 | Red Hat | high | 7.1 | 0.0%
| ✓ Fix | A flaw was found in the udisks storage management daemon that exposes a privileged D-Bus API for res… | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-26104 | Red Hat | medium | 5.5 | 0.0%
| ✓ Fix | A flaw was found in the udisks storage management daemon that allows unprivileged users to back up L… | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-3190 | Red Hat | medium | 4.3 | — | | No description is available for this CVE. | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2025-11563 | Red Hat | medium | 6.5 | 0.0%
| | URLs containing percent-encoded slashes (`/` or `\`) can trick wcurl into
saving the output file out… | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-21725 |  Grafana | low | 2.6 | 0.0%
| | A time-of-create-to-time-of-use (TOCTOU) vulnerability lets recently deleted-then-recreated data sou… | Feb 25, 2026 | May 10, 2026 |
| | CVE-2026-3201 | Red Hat | medium | 5.5 | 0.0%
| | USB HID protocol dissector memory exhaustion in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows … | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-3202 | Red Hat | medium | 5.5 | 0.0%
| | NTS-KE protocol dissector crash in Wireshark 4.6.0 to 4.6.3 allows denial of service | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-3203 | Red Hat | medium | 5.5 | 0.0%
| | RF4CE Profile protocol dissector crash in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows denial… | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-27699 | Red Hat | high | 7.5 | 0.1%
| | The `basic-ftp` FTP client library for Node.js contains a path traversal vulnerability (CWE-22) in v… | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-27727 | Red Hat | high | 8.3 | 0.1%
| ✓ Fix | mchange-commons-java, a library that provides Java utilities, includes code that mirrors early imple… | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-22866 |  Check Point | high | 7.5 | 0.0%
| | Ethereum Name Service (ENS) is a distributed, open, and extensible naming system based on the Ethere… | Feb 25, 2026 | Mar 13, 2026 |
| | CVE-2026-27794 | Red Hat | medium | 6.6 | 0.3%
| | LangGraph Checkpoint defines the base interface for LangGraph checkpointers. Prior to version 4.0.0,… | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-25554 | Red Hat | high | 8.2 | 0.1%
| | OpenSIPS versions 3.1 before 3.6.4 containing the auth_jwt module (prior to commit 3822d33) contain … | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-20010 |  Cisco | high | 7.4 | 0.0%
| | A vulnerability in the Link Layer Discovery Protocol (LLDP) feature of Cisco NX-OS Software could al… | Feb 25, 2026 | Feb 27, 2026 |
| | CVE-2026-20033 | Cisco | high | 7.4 | 0.0%
| | A vulnerability in Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an unauthenticate… | Feb 25, 2026 | Feb 27, 2026 |
| | CVE-2026-20036 | Cisco | medium | 6.5 | 0.1%
| | A vulnerability in the CLI and web-based management interface of Cisco UCS Manager Software could al… | Feb 25, 2026 | Feb 27, 2026 |
| | CVE-2026-20037 | Cisco | medium | 4.4 | 0.0%
| | A vulnerability in the NX-OS CLI privilege levels of Cisco UCS Manager Software could allow an authe… | Feb 25, 2026 | Feb 27, 2026 |
| | CVE-2026-20048 | Cisco | high | 7.7 | 0.2%
| | A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco Nexus 9000 Serie… | Feb 25, 2026 | Feb 27, 2026 |
| | CVE-2026-20051 | Cisco | high | 7.4 | 0.0%
| | A vulnerability with the Ethernet VPN (EVPN) Layer 2 ingress packet processing of Cisco Nexus 3600 P… | Feb 25, 2026 | Feb 27, 2026 |
| | CVE-2026-20091 | Cisco | medium | 4.8 | 0.0%
| | A vulnerability in the web-based management interface of Cisco FXOS Software and Cisco UCS Manager S… | Feb 25, 2026 | Feb 27, 2026 |
| | CVE-2026-20099 | Cisco | medium | 6.7 | 0.1%
| | A vulnerability in the web-based management interface of Cisco FXOS Software and Cisco UCS Mana… | Feb 25, 2026 | Feb 27, 2026 |
| | CVE-2026-20107 | Cisco | medium | 5.5 | 0.0%
| | A vulnerability in the Object Model CLI component of Cisco Application Policy Infrastructure Control… | Feb 25, 2026 | Feb 27, 2026 |
| | CVE-2026-20122 | Cisco | medium | 5.4 | 1.1%
| ⚠ KEV | A vulnerability in the API of Cisco Catalyst SD-WAN Manager could allow an authenticated, remote att… | Feb 25, 2026 | Apr 21, 2026 |
| | CVE-2026-20126 | Cisco | high | 8.8 | 0.0%
| | A vulnerability in Cisco Catalyst SD-WAN Manager could allow an authenticated, local attacker with l… | Feb 25, 2026 | Mar 4, 2026 |