| | CVE-2026-6303 | Red Hat | high | 9.6 | 0.1%
| | Use after free in Codecs in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execu… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-6363 | Red Hat | medium | 8.8 | 0.0%
| | Type Confusion in V8 in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to potential… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-6317 | Red Hat | high | 8.8 | 0.1%
| | Use after free in Cast in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-6310 | Red Hat | high | 9.0 | 0.0%
| | Use after free in Dawn in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had co… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-6314 | Red Hat | high | 8.0 | 0.0%
| | Out of bounds write in GPU in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who ha… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-6316 | Red Hat | high | 9.6 | 0.1%
| | Use after free in Forms in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execut… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-6364 | Red Hat | medium | 4.3 | 0.0%
| | Out of bounds read in Skia in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to obt… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-6309 | Red Hat | high | 9.0 | 0.0%
| | Use after free in Viz in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had com… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-6313 | Red Hat | high | 6.8 | 0.0%
| | Insufficient policy enforcement in CORS in Google Chrome prior to 147.0.7727.101 allowed a remote at… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-6311 | Red Hat | high | 9.0 | 0.0%
| | Uninitialized Use in Accessibility in Google Chrome on Windows prior to 147.0.7727.101 allowed a rem… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-6299 | Red Hat | high | 9.6 | 0.1%
| | Use after free in Prerender in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to ex… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-6308 | Red Hat | high | 9.6 | 0.0%
| | Out of bounds read in Media in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who c… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-6319 | Red Hat | medium | 9.6 | — | | An use after free flaw was found in the Payments component of the Chromium browser.
Upstream bug(s):… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-6360 | Red Hat | high | 9.6 | — | | An use after free flaw was found in the FileSystem component of the Chromium browser.
Upstream bug(s… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-6362 | Red Hat | high | 9.6 | — | | An use after free flaw was found in the Codecs component of the Chromium browser.
Upstream bug(s):
h… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-6307 | Red Hat | high | 8.8 | — | | A type confusion flaw was found in the Turbofan component of the Chromium browser.
Upstream bug(s):
… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-6298 | Red Hat | high | 7.4 | — | | A heap buffer overflow flaw was found in the Skia component of the Chromium browser.
Upstream bug(s)… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-6359 | Red Hat | high | 9.0 | — | | An use after free flaw was found in the Video component of the Chromium browser.
Upstream bug(s):
ht… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-6297 | Red Hat | high | 8.3 | — | | An use after free flaw was found in the Proxy component of the Chromium browser.
Upstream bug(s):
ht… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-6302 | Red Hat | high | 8.8 | — | | An use after free flaw was found in the Video component of the Chromium browser.
Upstream bug(s):
ht… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-6301 | Red Hat | high | 9.6 | — | | A type confusion flaw was found in the Turbofan component of the Chromium browser.
Upstream bug(s):
… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-6296 | Red Hat | high | 9.6 | — | | A heap buffer overflow flaw was found in the ANGLE component of the Chromium browser.
Upstream bug(s… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-6305 | Red Hat | high | 9.6 | — | | A heap buffer overflow flaw was found in the PDFium component of the Chromium browser.
Upstream bug(… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-6306 | Red Hat | high | 9.6 | — | | A heap buffer overflow flaw was found in the PDFium component of the Chromium browser.
Upstream bug(… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-6300 | Red Hat | high | 8.8 | — | | An use after free flaw was found in the CSS component of the Chromium browser.
Upstream bug(s):
http… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-6358 | Red Hat | high | 8.8 | — | | An use after free flaw was found in the XR component of the Chromium browser.
Upstream bug(s):
https… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-6318 | Red Hat | medium | 9.6 | — | | An use after free flaw was found in the Codecs component of the Chromium browser.
Upstream bug(s):
h… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-33806 | Red Hat | high | 7.5 | 0.0%
| | A flaw was found in Fastify. A remote attacker could exploit this vulnerability by prepending a spac… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2025-54550 | Apache | high | 8.1 | 0.1%
| | The example example_xcom that was included in airflow documentation implemented unsafe pattern of re… | Apr 15, 2026 | Apr 17, 2026 |
| | CVE-2026-5160 | Red Hat | medium | 6.1 | 0.1%
| | A flaw was found in github.com/yuin/goldmark/renderer/html. This Cross-site Scripting (XSS) vulnerab… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-5088 | Apache | medium | — | 0.0%
| | Apache::API::Password versions through v0.5.2 for Perl can generate insecure random values for salts… | Apr 15, 2026 | Apr 16, 2026 |
| | CVE-2025-14813 | Red Hat | high | 7.5 | 0.0%
| ✓ Fix | : Use of a Broken or Risky Cryptographic Algorithm vulnerability in Legion of the Bouncy Castle Inc.… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-0636 | Red Hat | high | 6.5 | 0.0%
| ✓ Fix | Improper neutralization of special elements used in an LDAP query ('LDAP injection') vulnerability i… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-5598 | Red Hat | high | 7.5 | 0.0%
| ✓ Fix | Covert timing channel vulnerability in Legion of the Bouncy Castle Inc. BC-JAVA core on all (core mo… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-5588 | Red Hat | high | 7.5 | 0.0%
| ✓ Fix | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Legion of the Bouncy Castle Inc. B… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-3505 | Red Hat | high | 7.5 | 0.0%
| ✓ Fix | Allocation of resources without limits or throttling, Uncontrolled Resource Consumption vulnerabilit… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-33805 | Red Hat | high | 7.4 | 0.0%
| ✓ Fix | A flaw was found in @fastify/reply-from and @fastify/http-proxy. A remote attacker can exploit this … | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-30778 | Apache | high | 7.5 | 0.0%
| | The SkyWalking OAP /debugging/config/dump endpoint may leak sensitive configuration information of M… | Apr 15, 2026 | Apr 20, 2026 |
| | CVE-2026-4630 | Red Hat | medium | 6.8 | 0.0%
| ✓ Fix | A flaw was found in Keycloak. An authenticated client could exploit an Insecure Direct Object Refere… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-25219 | Apache | medium | 6.5 | 0.0%
| | The `access_key` and `connection_string` connection properties were not marked as sensitive names in… | Apr 15, 2026 | Apr 17, 2026 |
| | CVE-2025-12141 | Red Hat | low | 5.0 | 0.1%
| | A flaw was found in Grafana's alerting system. Users with editor permissions, specifically those abl… | Apr 15, 2026 | Apr 15, 2026 |
| | CVE-2026-20202 | Splunk | medium | 6.6 | 0.0%
| | In Splunk Enterprise versions below 10.2.2, 10.0.5, 9.4.10, and 9.3.11, and Splunk Cloud Platform ve… | Apr 15, 2026 | Apr 17, 2026 |
| | CVE-2026-20203 | Splunk | medium | 4.3 | 0.0%
| | In Splunk Enterprise versions below 10.2.2, 10.0.5, 9.4.10, and 9.3.11, and Splunk Cloud Platform ve… | Apr 15, 2026 | Apr 17, 2026 |
| | CVE-2026-20204 | Splunk | high | 7.1 | 0.1%
| | In Splunk Enterprise versions below 10.2.1, 10.0.5, 9.4.10, and 9.3.11, and Splunk Cloud Platform ve… | Apr 15, 2026 | Apr 17, 2026 |
| | CVE-2026-20059 | Cisco | medium | 6.1 | 0.2%
| | A vulnerability in the web-based management interface of Cisco Unity Connection could allow an unaut… | Apr 15, 2026 | Jun 17, 2026 |
| | CVE-2026-20060 | Cisco | medium | 4.7 | 0.2%
| | A vulnerability in the web-based management interface of Cisco Unity Connection could allow an unaut… | Apr 15, 2026 | Jun 17, 2026 |
| | CVE-2026-20061 | Cisco | medium | 4.3 | 0.2%
| | A vulnerability in the web-based management interface of Cisco Unity Connection could allow an authe… | Apr 15, 2026 | Jun 17, 2026 |
| | CVE-2026-20078 | Cisco | medium | 6.5 | 0.4%
| | Multiple vulnerabilities in Cisco Unity Connection could allow an authenticated, remote attacker&nbs… | Apr 15, 2026 | Jun 17, 2026 |
| | CVE-2026-20081 | Cisco | medium | 6.5 | 0.4%
| | Multiple vulnerabilities in Cisco Unity Connection could allow an authenticated, remote attacker&nbs… | Apr 15, 2026 | Jun 17, 2026 |
| | CVE-2026-20132 | Cisco | medium | 4.8 | 0.2%
| | Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (IS… | Apr 15, 2026 | Jul 2, 2026 |