| | CVE-2026-30873 |  Red Hat | medium | 4.5 | — | | A flaw was found in the `jsonpath` component of the OpenWrt Project. The `jp_get_token` function, wh… | Mar 19, 2026 | Mar 19, 2026 |
| | CVE-2026-32194 |  Microsoft | critical | 9.8 | 0.1%
| | Improper neutralization of special elements used in a command ('command injection') in Microsoft Bin… | Mar 19, 2026 | Apr 14, 2026 |
| | CVE-2026-30874 | Red Hat | high | 8.2 | — | | A flaw was found in the `procd` component of OpenWrt. A highly privileged local attacker can bypass … | Mar 19, 2026 | Mar 19, 2026 |
| | CVE-2026-32721 | Red Hat | high | 8.8 | — | | A flaw was found in LuCI, the OpenWrt Configuration Interface. A remote attacker can exploit a store… | Mar 19, 2026 | Mar 19, 2026 |
| | CVE-2026-22731 |  VMware | high | 8.2 | 0.1%
| | Spring Boot applications with Actuator can be vulnerable to an "Authentication Bypass" vulnerability… | Mar 19, 2026 | Apr 16, 2026 |
| | CVE-2026-22732 | VMware | critical | 9.1 | 0.0%
| | When applications specify HTTP response headers for servlet applications using Spring Security, ther… | Mar 19, 2026 | Apr 16, 2026 |
| | CVE-2026-22733 | VMware | high | 8.2 | 0.0%
| | Spring Boot applications with Actuator can be vulnerable to an "Authentication Bypass" vulnerability… | Mar 20, 2026 | Apr 23, 2026 |
| | CVE-2026-22735 | VMware | low | 2.6 | 0.0%
| | Spring MVC and WebFlux applications are vulnerable to stream corruption when using Server-Sent Event… | Mar 20, 2026 | Apr 23, 2026 |
| | CVE-2026-22737 | VMware | medium | 5.9 | 0.1%
| | Use of Java scripting engine enabled (e.g. JRuby, Jython) template views in Spring MVC and Spring We… | Mar 20, 2026 | Apr 23, 2026 |
| | CVE-2026-4647 | Red Hat | medium | 6.1 | — | | A flaw was found in the GNU Binutils BFD library, a widely used component for handling binary files … | Mar 23, 2026 | Mar 23, 2026 |
| | CVE-2026-3635 | Red Hat | medium | 6.1 | — | | A flaw was found in fastify. When the trustProxy option is configured with a restrictive trust funct… | Mar 23, 2026 | Mar 23, 2026 |
| | CVE-2026-26209 | Red Hat | medium | 5.5 | — | | A flaw was found in cbor2, a library for encoding and decoding Concise Binary Object Representation … | Mar 23, 2026 | Mar 23, 2026 |
| | CVE-2026-33554 | Red Hat | medium | 8.8 | — | | A flaw was found in FreeIPMI. The `ipmi-oem` program is used to send Intelligent Platform Management… | Mar 24, 2026 | Mar 24, 2026 |
| | CVE-2026-33306 | Red Hat | medium | 6.7 | — | | A flaw was found in bcrypt-ruby, a Ruby binding for the OpenBSD bcrypt() password hashing algorithm,… | Mar 24, 2026 | Mar 24, 2026 |
| | CVE-2026-3260 |  Apache | medium | 5.9 | 0.5%
| | A flaw was found in Undertow. A remote attacker could exploit this vulnerability by sending an HTTP … | Mar 24, 2026 | Mar 26, 2026 |
| | CVE-2026-4649 | Red Hat | medium | 6.1 | 0.0%
| | A flaw was found in Apache Artemis and KNIME Business Hub. A user with normal privileges and the abi… | Mar 24, 2026 | Mar 24, 2026 |
| | CVE-2026-32642 | Apache | medium | 4.3 | 0.0%
| | Incorrect Authorization (CWE-863) vulnerability in Apache Artemis, Apache ActiveMQ Artemis exists wh… | Mar 24, 2026 | Mar 30, 2026 |
| | CVE-2026-4775 | Red Hat | high | 7.8 | — | | A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow v… | Mar 24, 2026 | Mar 24, 2026 |
| | CVE-2026-27651 |  F5 | high | 7.5 | 0.0%
| | When the ngx_mail_auth_http_module module is enabled on NGINX Plus or NGINX Open Source, undisclosed… | Mar 24, 2026 | Mar 30, 2026 |
| | CVE-2026-27654 | F5 | high | 8.2 | 0.0%
| | NGINX Open Source and NGINX Plus have a vulnerability in the ngx_http_dav_module module that might a… | Mar 24, 2026 | Mar 26, 2026 |
| | CVE-2026-27784 | F5 | high | 7.8 | 0.0%
| | The 32-bit implementation of NGINX Open Source has a vulnerability in the ngx_http_mp4_module module… | Mar 24, 2026 | Mar 30, 2026 |
| | CVE-2026-28753 | F5 | low | 3.7 | 0.0%
| | NGINX Plus and NGINX Open Source have a vulnerability in the ngx_mail_smtp_module module due to the … | Mar 24, 2026 | Mar 26, 2026 |
| | CVE-2026-28755 | F5 | medium | 5.4 | 0.0%
| | NGINX Plus and NGINX Open Source have a vulnerability in the ngx_stream_ssl_module module due to the… | Mar 24, 2026 | Mar 26, 2026 |
| | CVE-2026-32647 | F5 | high | 7.8 | 0.0%
| | NGINX Open Source and NGINX Plus have a vulnerability in the ngx_http_mp4_module module, which might… | Mar 24, 2026 | Mar 26, 2026 |
| | CVE-2026-32853 | Red Hat | medium | 5.4 | — | | A flaw was found in LibVNCServer. A malicious VNC server can exploit an improper bounds checking vul… | Mar 24, 2026 | Mar 24, 2026 |
| | CVE-2026-32854 | Red Hat | medium | 5.3 | — | | A flaw was found in LibVNCServer. This vulnerability allows a remote attacker to cause a Denial of S… | Mar 24, 2026 | Mar 24, 2026 |
| | CVE-2026-32948 | Red Hat | medium | 5.7 | — | | A flaw was found in sbt, a build tool for Scala and Java. On Windows, sbt uses the `cmd /c` command … | Mar 24, 2026 | Mar 24, 2026 |
| | CVE-2026-33349 | Red Hat | medium | 5.9 | — | | A flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by providing s… | Mar 24, 2026 | Mar 24, 2026 |
| | CVE-2026-33412 | Red Hat | high | 7.3 | — | | A flaw was found in Vim. By including a newline character in a pattern passed to Vim's glob() functi… | Mar 24, 2026 | Mar 24, 2026 |
| | CVE-2026-3889 | Red Hat | medium | 5.4 | — | | A spoofing flaw has been found in Thunderbird. | Mar 24, 2026 | Mar 24, 2026 |
| | CVE-2025-70888 | Red Hat | critical | 10.0 | 0.0%
| | An issue in mtrojnar Osslsigncode affected at v2.10 and before allows a remote attacker to escalate … | Mar 25, 2026 | Mar 25, 2026 |
| | CVE-2025-67030 | Red Hat | high | 8.3 | 0.0%
| | Directory Traversal vulnerability in the extractFile method of org.codehaus.plexus.util.Expand in pl… | Mar 25, 2026 | Mar 25, 2026 |
| | CVE-2026-30587 | Red Hat | medium | 6.3 | 0.1%
| | Multiple Stored XSS vulnerabilities exist in Seafile Server version 13.0.15,13.0.16-pro,12.0.14 and … | Mar 25, 2026 | Mar 25, 2026 |
| | CVE-2026-23327 | Red Hat | medium | 5.5 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
cxl/mbox: validate payload size … | Mar 25, 2026 | Mar 25, 2026 |
| | CVE-2026-23322 | Red Hat | medium | — | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
ipmi: Fix use-after-free and lis… | Mar 25, 2026 | Mar 25, 2026 |
| | CVE-2026-23287 | Red Hat | low | 5.5 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
irqchip/sifive-plic: Fix frozen … | Mar 25, 2026 | Mar 25, 2026 |
| | CVE-2026-23330 | Red Hat | medium | — | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
nfc: nci: complete pending data … | Mar 25, 2026 | Mar 25, 2026 |
| | CVE-2026-23337 | Red Hat | medium | — | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
pinctrl: pinconf-generic: Fix me… | Mar 25, 2026 | Mar 25, 2026 |
| | CVE-2026-23288 | Red Hat | medium | — | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
accel/amdxdna: Fix out-of-bounds… | Mar 25, 2026 | Mar 25, 2026 |
| | CVE-2026-23386 | Red Hat | medium | 5.5 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
gve: fix incorrect buffer cleanu… | Mar 25, 2026 | Mar 25, 2026 |
| | CVE-2026-23378 | Red Hat | medium | — | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
net/sched: act_ife: Fix metalist… | Mar 25, 2026 | Mar 25, 2026 |
| | CVE-2026-31788 | Red Hat | medium | 6.7 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
xen/privcmd: restrict usage in u… | Mar 25, 2026 | Mar 25, 2026 |
| | CVE-2026-23391 | Red Hat | medium | 5.5 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
netfilter: xt_CT: drop pending e… | Mar 25, 2026 | Mar 25, 2026 |
| | CVE-2026-23339 | Red Hat | medium | — | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
nfc: nci: free skb on nci_transc… | Mar 25, 2026 | Mar 25, 2026 |
| | CVE-2026-23376 | Red Hat | low | 3.3 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
nvmet-fcloop: Check remoteport p… | Mar 25, 2026 | Mar 25, 2026 |
| | CVE-2026-23380 | Red Hat | low | 3.3 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
tracing: Fix WARN_ON in tracing_… | Mar 25, 2026 | Mar 25, 2026 |
| | CVE-2026-23357 | Red Hat | low | 5.5 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
can: mcp251x: fix deadlock in er… | Mar 25, 2026 | Mar 25, 2026 |
| | CVE-2026-23283 | Red Hat | medium | — | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
regulator: fp9931: Fix PM runtim… | Mar 25, 2026 | Mar 25, 2026 |
| | CVE-2026-23389 | Red Hat | low | 5.5 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
ice: Fix memory leak in ice_set_… | Mar 25, 2026 | Mar 25, 2026 |
| | CVE-2026-23372 | Red Hat | medium | — | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
nfc: rawsock: cancel tx_work bef… | Mar 25, 2026 | Mar 25, 2026 |