| | CVE-2026-26965 | Red Hat | high | 8.8 | 0.1%
| | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, in the RLE… | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-3172 | Red Hat | medium | 6.8 | 0.0%
| | Buffer overflow in parallel HNSW index build in pgvector 0.6.0 through 0.8.1 allows a database user … | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-26955 | Red Hat | high | 8.8 | 0.0%
| | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, a maliciou… | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-27015 | Red Hat | medium | 6.5 | 0.0%
| | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, a missing … | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-26271 | Red Hat | medium | 4.3 | 0.1%
| | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, a buffer o… | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-25997 | Red Hat | medium | 5.3 | 0.1%
| | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_clipbo… | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-25959 | Red Hat | medium | 5.3 | 0.1%
| | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_cliprd… | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-25955 | Red Hat | medium | 4.3 | 0.1%
| | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_AppUpd… | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-25954 | Red Hat | medium | 5.3 | 0.1%
| | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_rail_s… | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-25953 | Red Hat | medium | 4.3 | 0.1%
| | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_AppUpd… | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-25952 | Red Hat | medium | 6.4 | 0.1%
| | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_SetWin… | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-2636 | Microsoft | medium | 5.5 | 0.0%
| | This vulnerability is caused by a CWE‑159: "Improper Handling of Invalid Use of Special Elements" we… | Feb 25, 2026 | Feb 27, 2026 |
| | CVE-2026-25942 | Red Hat | medium | 4.3 | 0.1%
| | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_rail_s… | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-25941 | Red Hat | medium | 5.4 | 0.1%
| | FreeRDP is a free implementation of the Remote Desktop Protocol. Versions on the 2.x branch prior to… | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-22720 | VMware | high | 8.0 | 0.1%
| | VMware Aria Operations contains a stored cross-site scripting vulnerability. A malicious actor with … | Feb 25, 2026 | Apr 14, 2026 |
| | CVE-2026-22719 | VMware | high | 8.1 | 2.3%
| ⚠ KEV | VMware Aria Operations contains a command injection vulnerability. A malicious unauthenticated actor… | Feb 25, 2026 | Apr 14, 2026 |
| | CVE-2026-27795 | Red Hat | medium | 6.5 | 0.0%
| | LangChain is a framework for building LLM-powered applications. Prior to version 1.1.8, a redirect-b… | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-20133 | Cisco | medium | 6.5 | 9.0%
| ⚠ KEV | A vulnerability in Cisco Catalyst SD-WAN Software could allow an unauthenticated, remote attacker to… | Feb 25, 2026 | Jun 17, 2026 |
| | CVE-2026-20129 | Cisco | critical | 9.8 | 0.7%
| | A vulnerability in the API user authentication of Cisco Catalyst SD-WAN Manager could allow an unaut… | Feb 25, 2026 | Jun 17, 2026 |
| | CVE-2026-20128 | Cisco | high | 7.5 | 4.6%
| ⚠ KEV | A vulnerability in the Data Collection Agent (DCA) feature of Cisco Catalyst SD-WAN Manager could al… | Feb 25, 2026 | Jun 17, 2026 |
| | CVE-2026-20127 | Cisco | critical | 10.0 | 48.2%
| ⚠ KEV | A vulnerability in the peering authentication in Cisco Catalyst SD-WAN Controller, formerly SD-WAN v… | Feb 25, 2026 | Jun 17, 2026 |
| | CVE-2026-20126 | Cisco | high | 8.8 | 0.3%
| | A vulnerability in Cisco Catalyst SD-WAN Manager could allow an authenticated, local attacker with l… | Feb 25, 2026 | Jun 17, 2026 |
| | CVE-2026-20122 | Cisco | medium | 5.4 | 6.1%
| ⚠ KEV | A vulnerability in the API of Cisco Catalyst SD-WAN Manager could allow an authenticated, remote att… | Feb 25, 2026 | Jun 17, 2026 |
| | CVE-2026-20107 | Cisco | medium | 5.5 | 0.0%
| | A vulnerability in the Object Model CLI component of Cisco Application Policy Infrastructure Control… | Feb 25, 2026 | Feb 27, 2026 |
| | CVE-2026-20099 | Cisco | medium | 6.7 | 0.1%
| | A vulnerability in the web-based management interface of Cisco FXOS Software and Cisco UCS Mana… | Feb 25, 2026 | Feb 27, 2026 |
| | CVE-2026-20091 | Cisco | medium | 4.8 | 0.0%
| | A vulnerability in the web-based management interface of Cisco FXOS Software and Cisco UCS Manager S… | Feb 25, 2026 | Feb 27, 2026 |
| | CVE-2026-20051 | Cisco | high | 7.4 | 0.0%
| | A vulnerability with the Ethernet VPN (EVPN) Layer 2 ingress packet processing of Cisco Nexus 3600 P… | Feb 25, 2026 | Feb 27, 2026 |
| | CVE-2026-20048 | Cisco | high | 7.7 | 0.2%
| | A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco Nexus 9000 Serie… | Feb 25, 2026 | Feb 27, 2026 |
| | CVE-2026-20037 | Cisco | medium | 4.4 | 0.0%
| | A vulnerability in the NX-OS CLI privilege levels of Cisco UCS Manager Software could allow an authe… | Feb 25, 2026 | Feb 27, 2026 |
| | CVE-2026-20036 | Cisco | medium | 6.5 | 0.1%
| | A vulnerability in the CLI and web-based management interface of Cisco UCS Manager Software could al… | Feb 25, 2026 | Feb 27, 2026 |
| | CVE-2026-20033 | Cisco | high | 7.4 | 0.0%
| | A vulnerability in Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an unauthenticate… | Feb 25, 2026 | Feb 27, 2026 |
| | CVE-2026-20010 | Cisco | high | 7.4 | 0.0%
| | A vulnerability in the Link Layer Discovery Protocol (LLDP) feature of Cisco NX-OS Software could al… | Feb 25, 2026 | Feb 27, 2026 |
| | CVE-2026-25554 | Red Hat | high | 8.2 | 0.1%
| | OpenSIPS versions 3.1 before 3.6.4 containing the auth_jwt module (prior to commit 3822d33) contain … | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-27794 | Red Hat | medium | 6.6 | 0.3%
| | LangGraph Checkpoint defines the base interface for LangGraph checkpointers. Prior to version 4.0.0,… | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-22866 | Check Point | high | 7.5 | 0.0%
| | Ethereum Name Service (ENS) is a distributed, open, and extensible naming system based on the Ethere… | Feb 25, 2026 | Mar 13, 2026 |
| | CVE-2026-27727 | Red Hat | high | 8.3 | 0.1%
| ✓ Fix | mchange-commons-java, a library that provides Java utilities, includes code that mirrors early imple… | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-27699 | Red Hat | high | 7.5 | 0.1%
| | The `basic-ftp` FTP client library for Node.js contains a path traversal vulnerability (CWE-22) in v… | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-3203 | Red Hat | medium | 5.5 | 0.0%
| | RF4CE Profile protocol dissector crash in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows denial… | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-3202 | Red Hat | medium | 5.5 | 0.0%
| | NTS-KE protocol dissector crash in Wireshark 4.6.0 to 4.6.3 allows denial of service | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-3201 | Red Hat | medium | 5.5 | 0.0%
| | USB HID protocol dissector memory exhaustion in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows … | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-21725 | Grafana | low | 2.6 | 0.2%
| | A time-of-create-to-time-of-use (TOCTOU) vulnerability lets recently deleted-then-recreated data sou… | Feb 25, 2026 | Jun 17, 2026 |
| | CVE-2025-11563 | Red Hat | medium | 6.5 | 0.0%
| | URLs containing percent-encoded slashes (`/` or `\`) can trick wcurl into
saving the output file out… | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-3190 | Red Hat | medium | 4.3 | — | | No description is available for this CVE. | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-26104 | Red Hat | medium | 5.5 | 0.0%
| ✓ Fix | A flaw was found in the udisks storage management daemon that allows unprivileged users to back up L… | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-26103 | Red Hat | high | 7.1 | 0.0%
| ✓ Fix | A flaw was found in the udisks storage management daemon that exposes a privileged D-Bus API for res… | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-3184 | Red Hat | low | 3.7 | — | | No description is available for this CVE. | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-27628 | Red Hat | medium | 7.5 | 0.0%
| | pypdf is a free and open-source pure-python PDF library. Prior to 6.7.2, an attacker who uses this v… | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-27606 | Red Hat | high | 9.1 | 0.6%
| | Rollup is a module bundler for JavaScript. Versions prior to 2.80.0, 3.30.0, and 4.59.0 of the Rollu… | Feb 25, 2026 | Feb 25, 2026 |
| | CVE-2026-27572 | Red Hat | medium | 6.3 | 0.1%
| | Wasmtime is a runtime for WebAssembly. Prior to versions 24.0.6, 36.0.6, 4.0.04, 41.0.4, and 42.0.0,… | Feb 24, 2026 | Feb 24, 2026 |
| | CVE-2026-27204 | Red Hat | medium | 6.3 | 0.1%
| | Wasmtime is a runtime for WebAssembly. Prior to versions 24.0.6, 36.0.6, 4.0.04, 41.0.4, and 42.0.0,… | Feb 24, 2026 | Feb 24, 2026 |