| | CVE-2026-42042 | Red Hat | medium | 6.1 | 0.0%
| | A flaw was found in Axios, a promise-based HTTP client. A remote attacker can exploit this vulnerabi… | Apr 24, 2026 | Apr 24, 2026 |
| | CVE-2026-41907 | Red Hat | medium | 4.8 | 0.0%
| | A flaw was found in uuid. The library's versions v3, v5, and v6 do not adequately check the size of … | Apr 24, 2026 | Apr 24, 2026 |
| | CVE-2026-41415 | Red Hat | high | 7.5 | 0.1%
| | A flaw was found in PJSIP, a multimedia communication library. A remote attacker could exploit this … | Apr 24, 2026 | Apr 24, 2026 |
| | CVE-2026-41425 | Red Hat | medium | 5.4 | 0.0%
| | A flaw was found in Authlib, a Python library for building OAuth and OpenID Connect servers. A remot… | Apr 24, 2026 | Apr 24, 2026 |
| | CVE-2026-41481 | Red Hat | high | 6.5 | 0.0%
| | A flaw was found in LangChain and langchain-text-splitters. This vulnerability, a Server-Side Reques… | Apr 24, 2026 | Apr 24, 2026 |
| | CVE-2026-41488 | Red Hat | low | 3.4 | 0.0%
| | A flaw was found in langchain-openai. A remote attacker could exploit a Time-of-Check to Time-of-Use… | Apr 24, 2026 | Apr 24, 2026 |
| | CVE-2026-31680 | Red Hat | medium | 5.5 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
net: ipv6: flowlabel: defer excl… | Apr 25, 2026 | Apr 25, 2026 |
| | CVE-2026-31677 | Red Hat | low | 5.5 | 0.0%
| ✓ Fix | In the Linux kernel, the following vulnerability has been resolved:
crypto: af_alg - limit RX SG ext… | Apr 25, 2026 | Apr 25, 2026 |
| | CVE-2026-31679 | Red Hat | medium | 5.5 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
openvswitch: validate MPLS set/s… | Apr 25, 2026 | Apr 25, 2026 |
| | CVE-2026-31678 | Red Hat | medium | 5.5 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
openvswitch: defer tunnel netdev… | Apr 25, 2026 | Apr 25, 2026 |
| | CVE-2026-31675 | Red Hat | medium | 5.5 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
net/sched: sch_netem: fix out-of… | Apr 25, 2026 | Apr 25, 2026 |
| | CVE-2026-31685 | Red Hat | medium | 7.1 | 0.1%
| ✓ Fix | In the Linux kernel, the following vulnerability has been resolved:
netfilter: ip6t_eui64: reject in… | Apr 25, 2026 | Apr 25, 2026 |
| | CVE-2026-31674 | Red Hat | medium | 5.5 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
netfilter: ip6t_rt: reject overs… | Apr 25, 2026 | Apr 25, 2026 |
| | CVE-2026-31684 | Red Hat | medium | 7.1 | 0.0%
| ✓ Fix | In the Linux kernel, the following vulnerability has been resolved:
net: sched: act_csum: validate n… | Apr 25, 2026 | Apr 25, 2026 |
| | CVE-2026-31683 | Red Hat | medium | — | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
batman-adv: avoid OGM aggregatio… | Apr 25, 2026 | Apr 25, 2026 |
| | CVE-2026-31676 | Red Hat | medium | 5.5 | 0.1%
| | In the Linux kernel, the following vulnerability has been resolved:
rxrpc: only handle RESPONSE duri… | Apr 25, 2026 | Apr 25, 2026 |
| | CVE-2026-31682 | Red Hat | medium | 5.5 | 0.1%
| | In the Linux kernel, the following vulnerability has been resolved:
bridge: br_nd_send: linearize sk… | Apr 25, 2026 | Apr 25, 2026 |
| | CVE-2026-31681 | Red Hat | medium | 6.1 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
netfilter: xt_multiport: validat… | Apr 25, 2026 | Apr 25, 2026 |
| | CVE-2026-31673 | Red Hat | medium | 5.5 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
af_unix: read UNIX_DIAG_VFS data… | Apr 25, 2026 | Apr 25, 2026 |
| | CVE-2026-6951 | Red Hat | high | 8.8 | 0.2%
| | A flaw was found in simple-git. A remote attacker could exploit this vulnerability by providing spec… | Apr 25, 2026 | Apr 25, 2026 |
| | CVE-2026-6993 | Red Hat | medium | 5.3 | 0.1%
| | A flaw was found in go-kratos kratos. A remote attacker could exploit a vulnerability in the HTTP se… | Apr 25, 2026 | Apr 25, 2026 |
| | CVE-2026-6994 | Red Hat | medium | 6.3 | 0.1%
| | A flaw was found in Envoy. A remote attacker could exploit a weakness in the Query Parameter Handler… | Apr 25, 2026 | Apr 25, 2026 |
| | CVE-2026-7020 | Red Hat | low | 5.6 | 0.1%
| | A security flaw has been discovered in Ollama up to 0.20.2. This affects the function digestToPath o… | Apr 26, 2026 | Apr 26, 2026 |
| | CVE-2018-25282 | Red Hat | medium | 5.5 | 0.0%
| | Nmap 7.70 contains a denial of service vulnerability that allows local attackers to crash the applic… | Apr 26, 2026 | Apr 26, 2026 |
| | CVE-2026-31690 | Red Hat | medium | — | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
firmware: thead: Fix buffer over… | Apr 27, 2026 | Apr 27, 2026 |
| | CVE-2026-31691 | Red Hat | medium | 5.5 | — | | A flaw was found in the Linux kernel's igb network driver. When an AF_XDP zero-copy application term… | Apr 27, 2026 | Apr 27, 2026 |
| | CVE-2026-31689 | Red Hat | medium | 5.5 | — | | A flaw was found in the EDAC/mc module of the Linux kernel. An error in the ordering of operations w… | Apr 27, 2026 | Apr 27, 2026 |
| | CVE-2026-31686 | Red Hat | medium | 7.0 | — | | A flaw was found in the Linux kernel. A double-free vulnerability exists in the Kernel Address Sanit… | Apr 27, 2026 | Apr 27, 2026 |
| | CVE-2026-31687 | Red Hat | medium | — | — | | A flaw was found in the Linux kernel's OMAP General Purpose Input/Output (GPIO) driver. The omap_mpu… | Apr 27, 2026 | Apr 27, 2026 |
| | CVE-2026-31688 | Red Hat | medium | 7.0 | — | | A flaw was found in the Linux kernel's driver core. An inconsistency in enforcing the `device_lock` … | Apr 27, 2026 | Apr 27, 2026 |
| | CVE-2026-3006 | Red Hat | high | 7.0 | 0.0%
| | A flaw was found in winfsp. A local attacker could exploit a race condition vulnerability, which may… | Apr 27, 2026 | Apr 27, 2026 |
| | CVE-2026-42371 | Red Hat | medium | 4.7 | 0.0%
| | A flaw was found in uriparser. This vulnerability occurs due to numeric truncation in text range com… | Apr 27, 2026 | Apr 27, 2026 |
| | CVE-2026-40473 | Apache | medium | — | 0.7%
| | The camel-mina component's MinaConverter.toObjectInput(IoBuffer) type converter wraps an IoBuffer in… | Apr 27, 2026 | Jun 30, 2026 |
| | CVE-2026-40048 | Apache | medium | — | 0.3%
| | The Camel-PQC FileBasedKeyLifecycleManager class deserializes the contents of `<keyId>.key` files in… | Apr 27, 2026 | Jun 30, 2026 |
| | CVE-2026-40453 | Apache | critical | 9.9 | 0.9%
| | The fix for CVE-2025-27636 added setLowerCase(true) to HttpHeaderFilterStrategy so that case-variant… | Apr 27, 2026 | Jun 27, 2026 |
| | CVE-2026-40860 | Apache | critical | 9.8 | 0.7%
| | JmsBinding.extractBodyFromJms() in camel-jms, and the equivalent JmsBinding class in camel-sjms, des… | Apr 27, 2026 | Jun 30, 2026 |
| | CVE-2026-41635 | Apache | critical | 9.8 | 0.0%
| | Apache MINA's AbstractIoBuffer.resolveClass() contains two branches, one of them (for static classes… | Apr 27, 2026 | Apr 29, 2026 |
| | CVE-2026-41409 | Red Hat | low | 9.8 | 0.2%
| | A flaw was found in Apache MINA. An incomplete fix for a deserialization vulnerability in the `Abstr… | Apr 27, 2026 | Apr 27, 2026 |
| | CVE-2026-33453 | Apache | medium | — | 5.1%
| | Improperly Controlled Modification of Dynamically-Determined Object Attributes vulnerability in Apac… | Apr 27, 2026 | Jun 30, 2026 |
| | CVE-2026-27172 | Apache | medium | — | 0.5%
| | The ConsulRegistry in the camel-consul component (class org.apache.camel.component.consul.ConsulRegi… | Apr 27, 2026 | Jun 30, 2026 |
| | CVE-2026-33454 | Apache | critical | 9.4 | 0.6%
| | The Camel-Mail component is vulnerable to Camel message header injection. The custom header filter s… | Apr 27, 2026 | Jun 27, 2026 |
| | CVE-2026-40022 | Apache | high | 8.2 | 0.5%
| | When authentication is enabled on the Apache Camel embedded HTTP server or embedded management serve… | Apr 27, 2026 | Jun 30, 2026 |
| | CVE-2026-40858 | Apache | high | 8.8 | 0.5%
| | The camel-infinispan component's ProtoStream-based remote aggregation repository deserializes data r… | Apr 27, 2026 | Jun 30, 2026 |
| | CVE-2026-40557 | Apache | medium | 4.8 | 0.0%
| | Improper Certificate Validation via Global SSL Context Downgrade in Apache Storm Prometheus Reporter… | Apr 27, 2026 | May 5, 2026 |
| | CVE-2026-41081 | Apache | medium | 6.5 | 0.0%
| | Improper Handling of TLS Client Authentication Failure Leading to Anonymous Principal Assignment in … | Apr 27, 2026 | Apr 28, 2026 |
| | CVE-2026-6357 | Red Hat | medium | 5.8 | 0.0%
| | A flaw was found in pip. Prior to version 26.1, pip's self-update check functionality would execute … | Apr 27, 2026 | Apr 27, 2026 |
| | CVE-2026-7141 | Red Hat | medium | 5.6 | 0.1%
| | A flaw was found in vllm. A remote attacker can exploit a vulnerability in the `has_mamba_layers` fu… | Apr 27, 2026 | Apr 27, 2026 |
| | CVE-2026-40970 | Red Hat | medium | 4.2 | 0.0%
| | A flaw was found in Spring Boot. When configured to use an SSL (Secure Sockets Layer) bundle, the El… | Apr 27, 2026 | Apr 27, 2026 |
| | CVE-2026-40971 | Red Hat | medium | 4.2 | 0.0%
| | A flaw was found in Spring Boot. When configured to use an SSL (Secure Sockets Layer) bundle, Spring… | Apr 27, 2026 | Apr 27, 2026 |
| | CVE-2026-40972 | Red Hat | medium | 7.5 | 0.0%
| ✓ Fix | A flaw was found in Spring Boot. An attacker on the same network as the remote application may be ab… | Apr 27, 2026 | Apr 27, 2026 |