| | CVE-2026-31892 |  Red Hat | high | 9.9 | 0.0%
| | A flaw was found in Argo Workflows. A user with privileges to submit workflows can bypass security s… | Mar 11, 2026 | Mar 11, 2026 |
| | CVE-2026-29777 | Red Hat | medium | 6.8 | 0.0%
| | A flaw was found in Traefik. A tenant with write access to an HTTPRoute resource can exploit this vu… | Mar 11, 2026 | Mar 11, 2026 |
| | CVE-2025-12690 |  Forcepoint | high | 7.8 | 0.0%
| | Execution with unnecessary privileges in Forcepoint NGFW Engine allows local privilege escalation.Th… | Mar 11, 2026 | May 7, 2026 |
| | CVE-2026-1471 | Red Hat | low | 4.2 | 0.0%
| | A flaw was found in Neo4j. Authenticated users can inherit the authentication context of the first u… | Mar 11, 2026 | Mar 11, 2026 |
| | CVE-2026-31853 | Red Hat | medium | 5.5 | 0.0%
| | A flaw was found in ImageMagick. An overflow on 32-bit systems in the SFW decoder can lead to a cras… | Mar 11, 2026 | Mar 11, 2026 |
| | CVE-2025-68623 |  Microsoft | high | 8.8 | 0.0%
| | In Microsoft DirectX End-User Runtime Web Installer 9.29.1974.0, a low-privilege user can replace an… | Mar 11, 2026 | Mar 12, 2026 |
| | CVE-2026-20040 |  Cisco | high | 8.8 | 0.0%
| | A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to … | Mar 11, 2026 | Mar 12, 2026 |
| | CVE-2026-20046 | Cisco | high | 8.8 | 0.0%
| | A vulnerability in task group assignment for a specific CLI command in Cisco IOS XR Software could a… | Mar 11, 2026 | Mar 12, 2026 |
| | CVE-2026-20074 | Cisco | high | 7.4 | 0.0%
| | A vulnerability in the Intermediate System-to-Intermediate System (IS-IS) multi-instance routing fea… | Mar 11, 2026 | Mar 12, 2026 |
| | CVE-2026-20116 | Cisco | medium | 6.1 | 0.0%
| | A vulnerability in the web-based management interface of Cisco Finesse, Cisco Packaged Contact… | Mar 11, 2026 | Mar 12, 2026 |
| | CVE-2026-20117 | Cisco | medium | 6.1 | 0.0%
| | A vulnerability in the web-based management interface of Cisco Unified Contact Center Express (Unifi… | Mar 11, 2026 | Mar 12, 2026 |
| | CVE-2026-20118 | Cisco | medium | 6.8 | 0.1%
| | A vulnerability in the handling of an Egress Packet Network Interface (EPNI) Aligner interrupt in Ci… | Mar 11, 2026 | Mar 12, 2026 |
| | CVE-2026-20162 |  Splunk | medium | 6.3 | 0.0%
| | In Splunk Enterprise versions below 10.2.0, 10.0.3, 9.4.9, and 9.3.9, and Splunk Cloud Platform vers… | Mar 11, 2026 | Mar 12, 2026 |
| | CVE-2026-20163 | Splunk | high | 7.2 | 0.1%
| | In Splunk Enterprise versions below 10.2.0, 10.0.4, 9.4.9, and 9.3.10, and Splunk Cloud Platform ver… | Mar 11, 2026 | Mar 24, 2026 |
| | CVE-2026-20164 | Splunk | medium | 6.5 | 0.0%
| | In Splunk Enterprise versions below 10.2.0, 10.0.3, 9.4.9, and 9.3.10, and Splunk Cloud Platform ver… | Mar 11, 2026 | Mar 24, 2026 |
| | CVE-2026-20165 | Splunk | medium | 6.3 | 0.0%
| | In Splunk Enterprise versions below 10.2.1, 10.0.4, 9.4.9, and 9.3.10, and Splunk Cloud Platform ver… | Mar 11, 2026 | Mar 24, 2026 |
| | CVE-2026-20166 | Splunk | medium | 5.4 | 0.0%
| | In Splunk Enterprise versions below 10.2.1 and 10.0.4, and Splunk Cloud Platform versions below 10.2… | Mar 11, 2026 | Mar 24, 2026 |
| | CVE-2026-30226 | Red Hat | medium | 5.9 | 0.0%
| | A flaw was found in the Svelte devalue JavaScript library. A remote attacker could exploit a prototy… | Mar 11, 2026 | Mar 11, 2026 |
| | CVE-2026-31870 | Red Hat | high | 7.5 | 0.1%
| | A flaw was found in cpp-httplib. A remote attacker, acting as a malicious server or through a man-in… | Mar 11, 2026 | Mar 11, 2026 |
| | CVE-2026-3949 | Red Hat | low | 3.3 | 0.0%
| | A flaw was found in libheif. This vulnerability allows a local attacker to trigger an out-of-bounds … | Mar 11, 2026 | Mar 11, 2026 |
| | CVE-2026-3950 | Red Hat | low | 3.3 | 0.0%
| | A flaw was found in libheif. A local attacker could exploit an out-of-bounds read vulnerability in t… | Mar 11, 2026 | Mar 11, 2026 |
| | CVE-2026-31958 | Red Hat | medium | 5.3 | 0.0%
| | A flaw was found in tornado-python. A remote attacker can exploit this vulnerability by sending a sp… | Mar 11, 2026 | Mar 11, 2026 |
| | CVE-2026-31957 | Microsoft | critical | 10.0 | 0.2%
| | Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. From 3.0.0 to befor… | Mar 11, 2026 | Mar 12, 2026 |
| | CVE-2026-31979 | Microsoft | high | 8.8 | 0.0%
| | Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. Prior to 3.1.0 and … | Mar 11, 2026 | Mar 12, 2026 |
| | CVE-2026-32117 |  Grafana | high | 7.6 | 0.0%
| | The grafanacubism-panel plugin allows use of cubism.js in Grafana. In 0.1.2 and earlier, the panel's… | Mar 11, 2026 | Mar 12, 2026 |
| | CVE-2026-2808 | Red Hat | medium | 6.8 | 0.1%
| | A flaw was found in HashiCorp Consul. When configured with Kubernetes authentication, a highly privi… | Mar 11, 2026 | Mar 11, 2026 |
| | CVE-2026-3963 |  Apache | low | 3.7 | 0.0%
| | A security flaw has been discovered in perfree go-fastdfs-web up to 1.3.7. This affects the function… | Mar 11, 2026 | Mar 12, 2026 |
| | CVE-2026-3910 | Red Hat | high | 8.8 | 21.9%
| ⚠ KEV | An inappropriate implementation flaw was found in the V8 component of the Chromium browser.
Upstream… | Mar 12, 2026 | Mar 12, 2026 |
| | CVE-2026-3909 | Red Hat | high | 8.8 | 27.1%
| ⚠ KEV | An out of bounds write flaw was found in the Skia component of the Chromium browser.
Upstream bug(s)… | Mar 12, 2026 | Mar 12, 2026 |
| | CVE-2025-70873 | Red Hat | low | 3.3 | 0.0%
| | A flaw was found in SQLite. This information disclosure vulnerability exists within the zipfile exte… | Mar 12, 2026 | Mar 12, 2026 |
| | CVE-2026-21666 |  Veeam | critical | 9.9 | 0.3%
| | A vulnerability allowing an authenticated domain user to perform remote code execution (RCE) on the … | Mar 12, 2026 | Mar 31, 2026 |
| | CVE-2026-21667 | Veeam | critical | 9.9 | 0.3%
| | A vulnerability allowing an authenticated domain user to perform remote code execution (RCE) on the … | Mar 12, 2026 | Mar 31, 2026 |
| | CVE-2026-21668 | Veeam | high | 8.8 | 0.0%
| | A vulnerability allowing an authenticated domain user to bypass restrictions and manipulate arbitrar… | Mar 12, 2026 | May 10, 2026 |
| | CVE-2026-21669 | Veeam | critical | 9.9 | 0.3%
| | A vulnerability allowing an authenticated domain user to perform remote code execution (RCE) on the … | Mar 12, 2026 | May 10, 2026 |
| | CVE-2026-21670 | Veeam | high | 7.7 | 0.0%
| | A vulnerability allowing a low-privileged user to extract saved SSH credentials. | Mar 12, 2026 | May 10, 2026 |
| | CVE-2026-21671 | Veeam | critical | 9.1 | 0.3%
| | A vulnerability allowing an authenticated user with the Backup Administrator role to perform remote … | Mar 12, 2026 | May 10, 2026 |
| | CVE-2026-21672 | Veeam | high | 8.8 | 0.1%
| | A vulnerability allowing local privilege escalation on Windows-based Veeam Backup & Replication serv… | Mar 12, 2026 | Mar 13, 2026 |
| | CVE-2026-21708 | Veeam | critical | 10.0 | 0.5%
| | A vulnerability allowing a Backup Viewer to perform remote code execution (RCE) as the postgres user… | Mar 12, 2026 | Mar 13, 2026 |
| | CVE-2026-32141 | Red Hat | high | 7.5 | 0.0%
| | A denial of service flaw has been discovered in the flatted npm library. flatted's parse() function … | Mar 12, 2026 | Mar 12, 2026 |
| | CVE-2026-3497 | Red Hat | high | 8.2 | 0.1%
| | A flaw was found in the OpenSSH GSSAPI (Generic Security Service Application Program Interface) delt… | Mar 12, 2026 | Mar 12, 2026 |
| | CVE-2026-32235 | Red Hat | medium | 5.9 | 0.0%
| | An allowlist bypass flaw has been discovered in the npm @backstage/plugin-auth-backend package. Inst… | Mar 12, 2026 | Mar 12, 2026 |
| | CVE-2026-32236 | Red Hat | medium | 0.0 | 0.0%
| | A server side request forgery flaw has been discovered in the npm @backstage/plugin-auth-backend pac… | Mar 12, 2026 | Mar 12, 2026 |
| | CVE-2026-32237 | Red Hat | medium | 4.4 | 0.0%
| | A data exposure flaw has been discovered in the @backstage/plugin-scaffolder-backend npm library. Au… | Mar 12, 2026 | Mar 12, 2026 |
| | CVE-2026-32274 | Red Hat | high | 7.5 | 0.0%
| | A user input sanitization flaw has been discovered in the Black python code formatter. Black writes … | Mar 12, 2026 | Mar 12, 2026 |
| | CVE-2026-1525 | Red Hat | medium | 6.5 | 0.0%
| | A flaw was found in undici, a Node.js HTTP/1.1 client. A remote attacker could exploit this vulnerab… | Mar 12, 2026 | Mar 12, 2026 |
| | CVE-2026-1526 | Red Hat | high | 7.5 | 0.0%
| | A flaw was found in undici. A remote attacker can exploit this vulnerability by sending a specially … | Mar 12, 2026 | Mar 12, 2026 |
| | CVE-2026-2581 | Red Hat | medium | 5.9 | 0.0%
| | A flaw was found in Undici. When the `interceptors.deduplicate()` feature is enabled, response data … | Mar 12, 2026 | Mar 12, 2026 |
| | CVE-2026-32249 |  Check Point | medium | 5.3 | 0.0%
| | Vim is an open source, command line text editor. From 9.1.0011 to before 9.2.0137, Vim's NFA regex c… | Mar 12, 2026 | Mar 12, 2026 |
| | CVE-2026-1527 | Red Hat | medium | 6.5 | 0.0%
| | A flaw was found in undici, a Node.js HTTP/1.1 client. This vulnerability allows a remote attacker t… | Mar 12, 2026 | Mar 12, 2026 |
| | CVE-2026-1528 | Red Hat | high | 7.5 | 0.1%
| | A flaw was found in undici. A remote attacker could exploit this vulnerability by sending a speciall… | Mar 12, 2026 | Mar 12, 2026 |