| | CVE-2026-34043 | Red Hat | medium | 5.9 | 0.0%
| ✓ Fix | Serialize JavaScript to a superset of JSON that includes regular expressions and functions. Prior to… | Mar 31, 2026 | Mar 31, 2026 |
| | CVE-2026-34054 | Microsoft | high | 7.8 | 0.1%
| | vcpkg is a free and open-source C/C++ package manager. Prior to version 3.6.1#3, vcpkg's Windows bui… | Mar 31, 2026 | Apr 2, 2026 |
| | CVE-2026-34070 | Red Hat | high | 7.5 | 0.2%
| | A flaw was found in LangChain. Multiple functions in `langchain_core.prompts.loading` read files fro… | Mar 31, 2026 | Mar 31, 2026 |
| | CVE-2026-34073 | Red Hat | low | 3.7 | 0.0%
| | A flaw was found in the `cryptography` library. This vulnerability occurs because DNS (Domain Name S… | Mar 31, 2026 | Mar 31, 2026 |
| | CVE-2026-34881 | Red Hat | medium | 5.0 | 0.0%
| | OpenStack Glance before 29.1.1, 30.x before 30.1.1, and 31.0.0 is affected by Server-Side Request Fo… | Mar 31, 2026 | Mar 31, 2026 |
| | CVE-2026-34165 | Red Hat | medium | 5.0 | 0.0%
| | go-git is an extensible git implementation library written in pure Go. From version 5.0.0 to before … | Mar 31, 2026 | Mar 31, 2026 |
| | CVE-2026-33762 | Red Hat | low | 2.8 | 0.0%
| | go-git is an extensible git implementation library written in pure Go. Prior to version 5.17.1, go-g… | Mar 31, 2026 | Mar 31, 2026 |
| | CVE-2026-2950 | Red Hat | medium | 6.5 | 0.0%
| ✓ Fix | A flaw was found in Lodash. An attacker can exploit a prototype pollution vulnerability in the `_.un… | Mar 31, 2026 | Mar 31, 2026 |
| | CVE-2026-4800 | Red Hat | high | 8.1 | 0.0%
| ✓ Fix | Impact:
The fix for CVE-2021-23337 (https://github.com/advisories/GHSA-35jh-r3h4-6jhm) added validat… | Mar 31, 2026 | Mar 31, 2026 |
| | CVE-2026-34401 | Microsoft | medium | 6.5 | 0.2%
| | XML Notepad is a Windows program that provides a simple intuitive User Interface for browsing and ed… | Mar 31, 2026 | Apr 13, 2026 |
| | CVE-2026-34873 | Red Hat | critical | 10.0 | 0.0%
| | An issue was discovered in Mbed TLS 3.5.0 through 4.0.0. Client impersonation can occur while resumi… | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2025-66442 | Red Hat | medium | 5.9 | 0.0%
| | In Mbed TLS through 4.0.0, there is a compiler-induced timing side channel (in RSA and CBC/ECB decry… | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-25834 | Red Hat | medium | 6.5 | 0.0%
| | Mbed TLS v3.3.0 up to 3.6.5 and 4.0.0 allows Algorithm Downgrade. | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-34872 | Red Hat | high | 7.5 | 0.0%
| | An issue was discovered in Mbed TLS 3.5.x and 3.6.x through 3.6.5 and TF-PSA-Crypto 1.0. There is a … | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-34875 | Red Hat | critical | 9.8 | 0.1%
| | An issue was discovered in Mbed TLS through 3.6.5 and TF-PSA-Crypto 1.0.0. A buffer overflow can occ… | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-23401 | Red Hat | high | 8.1 | 0.0%
| ✓ Fix | In the Linux kernel, the following vulnerability has been resolved:
KVM: x86/mmu: Drop/zap existing … | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-35094 | Red Hat | medium | 3.3 | — | | A flaw was found in libinput. An attacker capable of deploying a Lua plugin file in specific system … | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-35093 | Red Hat | high | 8.8 | — | | A flaw was found in libinput. A local attacker who can place a specially crafted Lua bytecode file i… | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-23409 | Red Hat | medium | — | 0.0%
| | A flaw was found in AppArmor, a security module in the Linux kernel. This vulnerability occurs due t… | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-23402 | Red Hat | low | 5.5 | 0.0%
| | A flaw was found in the Linux kernel's Kernel-based Virtual Machine (KVM) module. This vulnerability… | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-23404 | Red Hat | medium | — | 0.0%
| | A flaw was found in the Linux kernel's AppArmor security module. A local user could trigger a denial… | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-23408 | Red Hat | medium | — | 0.0%
| | A flaw was found in AppArmor within the Linux kernel. This vulnerability involves a double free of t… | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-23403 | Red Hat | medium | — | 0.0%
| | A flaw was found in AppArmor within the Linux kernel. This vulnerability, located in the verify_head… | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-23405 | Red Hat | medium | — | 0.0%
| | A flaw was found in the AppArmor security module within the Linux kernel. A local user could exploit… | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-23407 | Red Hat | medium | — | 0.0%
| | A flaw was found in AppArmor, a security module within the Linux kernel. A local user could exploit … | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-23410 | Red Hat | medium | — | 0.0%
| | A flaw was found in the Linux kernel's AppArmor security module. This vulnerability, a race conditio… | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-23411 | Red Hat | medium | — | 0.0%
| | A flaw was found in the Linux kernel's AppArmor security module. A race condition occurs when AppArm… | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-23406 | Red Hat | medium | — | 0.0%
| | A flaw was found in AppArmor within the Linux kernel. The `match_char()` macro, when processing diff… | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-35091 | Red Hat | high | 8.2 | — | | A flaw was found in Corosync. A remote unauthenticated attacker can exploit a wrong return value vul… | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-35092 | Red Hat | high | 7.5 | — | | A flaw was found in Corosync. An integer overflow vulnerability in Corosync's join message sanity va… | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-20041 | Cisco | medium | 6.1 | 0.2%
| | A vulnerability in Cisco Nexus Dashboard and Cisco Nexus Dashboard Insights could allow an unauthent… | Apr 1, 2026 | Jun 17, 2026 |
| | CVE-2026-20042 | Cisco | medium | 6.5 | 0.3%
| | A vulnerability in the configuration backup feature of Cisco Nexus Dashboard could allow an attacker… | Apr 1, 2026 | Jul 8, 2026 |
| | CVE-2026-20085 | Cisco | medium | 6.1 | 0.2%
| | A vulnerability in the web-based management interface of Cisco IMC could allow an unauthenticated, r… | Apr 1, 2026 | Jun 17, 2026 |
| | CVE-2026-20087 | Cisco | medium | 4.8 | 0.2%
| | A vulnerability in the web-based management interface of Cisco IMC could allow an authenticated, rem… | Apr 1, 2026 | Jun 17, 2026 |
| | CVE-2026-20088 | Cisco | medium | 4.8 | 0.2%
| | A vulnerability in the web-based management interface of Cisco IMC could allow an authenticated, rem… | Apr 1, 2026 | Jun 17, 2026 |
| | CVE-2026-20089 | Cisco | medium | 4.8 | 0.2%
| | A vulnerability in the web-based management interface of Cisco IMC could allow an authenticated, rem… | Apr 1, 2026 | Jun 17, 2026 |
| | CVE-2026-20090 | Cisco | medium | 4.8 | 0.2%
| | A vulnerability in the web-based management interface of Cisco IMC could allow an authenticated, rem… | Apr 1, 2026 | Jun 17, 2026 |
| | CVE-2026-20093 | Cisco | critical | 9.8 | 1.0%
| | A vulnerability in the change password functionality of Cisco Integrated Management Controller (IMC)… | Apr 1, 2026 | Jun 17, 2026 |
| | CVE-2026-20094 | Cisco | high | 8.8 | 1.1%
| | A vulnerability in the web-based management interface of Cisco IMC could allow an authenticated, rem… | Apr 1, 2026 | Jun 17, 2026 |
| | CVE-2026-20095 | Cisco | medium | 6.5 | 0.9%
| | A vulnerability in the web-based management interface of Cisco IMC could allow an authenticated, rem… | Apr 1, 2026 | Jun 17, 2026 |
| | CVE-2026-20096 | Cisco | medium | 6.5 | 0.7%
| | A vulnerability in the web-based management interface of Cisco IMC could allow an authenticated, rem… | Apr 1, 2026 | Jun 17, 2026 |
| | CVE-2026-20097 | Cisco | medium | 6.5 | 0.5%
| | A vulnerability in the web-based management interface of Cisco IMC could allow an authenticated, rem… | Apr 1, 2026 | Jun 17, 2026 |
| | CVE-2026-20151 | Cisco | high | 7.3 | 0.3%
| | A vulnerability in the web interface of Cisco Smart Software Manager On-Prem (SSM On-Prem) could all… | Apr 1, 2026 | Jul 8, 2026 |
| | CVE-2026-20155 | Cisco | high | 8.0 | 0.3%
| | A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager … | Apr 1, 2026 | Jul 2, 2026 |
| | CVE-2026-20160 | Cisco | critical | 9.8 | 0.9%
| | A vulnerability in Cisco Smart Software Manager On-Prem (SSM On-Prem) could allow an unauthenticated… | Apr 1, 2026 | Jul 1, 2026 |
| | CVE-2026-20174 | Cisco | medium | 4.9 | 0.5%
| | A vulnerability in the Metadata update feature of Cisco Nexus Dashboard Insights could allow an auth… | Apr 1, 2026 | Jul 1, 2026 |
| | CVE-2026-34445 | Red Hat | medium | 6.6 | — | | A flaw was found in Open Neural Network Exchange (ONNX). An attacker could exploit a vulnerability i… | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-27489 | Red Hat | high | 8.6 | — | | A flaw was found in Open Neural Network Exchange (ONNX), an open standard for machine learning inter… | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-34446 | Red Hat | medium | 4.7 | 0.0%
| | Open Neural Network Exchange (ONNX) is an open standard for machine learning interoperability. Prior… | Apr 1, 2026 | Apr 1, 2026 |
| | CVE-2026-34513 | Red Hat | low | 3.7 | — | | A flaw was found in AIOHTTP, an asynchronous HTTP client/server framework for asyncio and Python. Th… | Apr 1, 2026 | Apr 1, 2026 |