| | CVE-2025-29943 | Red Hat | low | 3.2 | 0.0%
| | Write what were condition within AMD CPUs may allow an admin-privileged attacker to modify the confi… | Jan 16, 2026 | Jan 16, 2026 |
| | CVE-2026-0858 | Red Hat | medium | 6.1 | 0.0%
| | Versions of the package net.sourceforge.plantuml:plantuml before 1.2026.0 are vulnerable to Stored X… | Jan 16, 2026 | Jan 16, 2026 |
| | CVE-2025-24531 | Red Hat | medium | 6.7 | 0.0%
| | In OpenSC pam_pkcs11 before 0.6.13, pam_sm_authenticate() wrongly returns PAM_IGNORE in many error s… | Jan 16, 2026 | Jan 16, 2026 |
| | CVE-2025-62291 | Red Hat | high | 8.1 | 0.0%
| | In the eap-mschapv2 plugin (client-side) in strongSwan before 6.0.3, a malicious EAP-MSCHAPv2 server… | Jan 16, 2026 | Jan 16, 2026 |
| | CVE-2026-22045 | Red Hat | medium | 5.9 | 0.0%
| | Traefik is an HTTP reverse proxy and load balancer. Prior to 2.11.35 and 3.6.7, there is a potential… | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-0915 | Red Hat | medium | 5.3 | 0.0%
| ✓ Fix | Calling getnetbyaddr or getnetbyaddr_r with a configured nsswitch.conf that specifies the library's … | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-1002 | Red Hat | medium | 5.3 | 0.0%
| ✓ Fix | The Vert.x Web static handler component cache can be manipulated to deny the access to static files … | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2025-15265 | Red Hat | medium | 6.1 | 0.0%
| | An SSR XSS exists in async hydration when attacker‑controlled keys are passed to hydratable. The key… | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-23527 | Red Hat | high | 8.9 | 0.0%
| | H3 is a minimal H(TTP) framework built for high performance and portability. Prior to 1.15.5, there … | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-23766 | Red Hat | medium | — | — | | No description is available for this CVE. | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-22775 | Red Hat | high | 7.5 | 0.0%
| ✓ Fix | Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't… | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-22774 | Red Hat | high | 7.5 | 0.0%
| ✓ Fix | Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't… | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2025-9014 | Check Point | high | 7.5 | 0.1%
| | A Null Pointer Dereference vulnerability exists in the referer header check of the web portal of TP-… | Jan 15, 2026 | Jan 30, 2026 |
| | CVE-2026-20076 | Cisco | medium | 4.8 | 0.0%
| | A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could … | Jan 15, 2026 | Jan 30, 2026 |
| | CVE-2026-20075 | Cisco | medium | 4.8 | 0.0%
| | A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager … | Jan 15, 2026 | Jan 30, 2026 |
| | CVE-2026-20047 | Cisco | medium | 4.8 | 0.0%
| | A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) and Ci… | Jan 15, 2026 | Jan 30, 2026 |
| | CVE-2025-61973 | Microsoft | high | 8.8 | 0.0%
| | A local privilege escalation vulnerability exists during the installation of Epic Games Store via th… | Jan 15, 2026 | Jan 16, 2026 |
| | CVE-2026-0897 | Red Hat | high | 7.6 | 0.0%
| ✓ Fix | Allocation of Resources Without Limits or Throttling in the HDF5 weight loading component in Google … | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-0976 | Red Hat | low | 3.7 | 0.0%
| | A flaw was found in Keycloak. This improper input validation vulnerability occurs because Keycloak a… | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-0988 | Red Hat | low | 3.7 | 0.1%
| | A flaw was found in glib. Missing validation of offset and count parameters in the g_buffered_input_… | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-0989 | Red Hat | low | 3.7 | 0.0%
| | A flaw was identified in the RelaxNG parser of libxml2 related to how external schema inclusions are… | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-0990 | Red Hat | medium | 5.9 | 0.1%
| | A flaw was found in libxml2, an XML parsing library. This uncontrolled recursion vulnerability occur… | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-0992 | Red Hat | low | 2.9 | 0.0%
| | A flaw was found in the libxml2 library. This uncontrolled resource consumption vulnerability occurs… | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-0861 | Red Hat | low | 8.1 | 0.0%
| ✓ Fix | Passing too large an alignment to the memalign suite of functions (memalign, posix_memalign, aligned… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2026-0961 | Red Hat | medium | 5.5 | 0.0%
| | BLF file parser crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of service | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2026-0962 | Red Hat | medium | 5.3 | 0.0%
| | SOME/IP-SD protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2026-0960 | Red Hat | medium | 4.7 | 0.0%
| | HTTP3 protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.2 allows denial of service | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2026-0959 | Red Hat | medium | 5.3 | 0.0%
| | IEEE 802.11 protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial o… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2026-22036 | Red Hat | low | 3.7 | 0.0%
| | Undici is an HTTP/1.1 client for Node.js. Prior to 7.18.0 and 6.23.0, the number of links in the dec… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2026-22859 | Red Hat | high | 7.4 | 0.1%
| ✓ Fix | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, the URBDRC client … | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2026-22858 | Red Hat | high | 7.4 | 0.1%
| ✓ Fix | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, global-buffer-over… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2026-22857 | Red Hat | medium | 5.6 | 0.1%
| | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap use-after-f… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2026-22856 | Red Hat | medium | 8.1 | 0.1%
| | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a race in the seri… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2026-22855 | Red Hat | high | 7.4 | 0.1%
| ✓ Fix | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap out-of-boun… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2026-22854 | Red Hat | medium | 8.1 | 0.1%
| | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap-buffer-over… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2026-22853 | Red Hat | high | 8.1 | 0.1%
| ✓ Fix | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, RDPEAR’s NDR array… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2026-22852 | Red Hat | medium | 5.6 | 0.1%
| | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a malicious RDP se… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2026-22851 | Red Hat | medium | 5.0 | 0.1%
| | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a race condition b… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2025-66169 | Red Hat | medium | 5.3 | 0.0%
| | Cypher Injection vulnerability in Apache Camel camel-neo4j component.
This issue affects Apache Came… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2026-0532 | Red Hat | high | 8.6 | 0.0%
| | External Control of File Name or Path (CWE-73) combined with Server-Side Request Forgery (CWE-918) c… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2025-14242 | Red Hat | medium | 6.5 | 0.1%
| ✓ Fix | A flaw was found in vsftpd. This vulnerability allows a denial of service (DoS) via an integer overf… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2025-56226 | Red Hat | medium | 5.3 | 0.1%
| | Libsndfile <=1.2.2 contains a memory leak vulnerability in the mpeg_l3_encoder_init() function withi… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2025-71111 | Red Hat | low | 4.7 | 0.1%
| | In the Linux kernel, the following vulnerability has been resolved:
hwmon: (w83791d) Convert macros … | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2025-71139 | Red Hat | medium | — | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
kernel/kexec: fix IMA when alloc… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2025-71143 | Red Hat | medium | — | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
clk: samsung: exynos-clkout: Ass… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2025-71140 | Red Hat | medium | — | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
media: mediatek: vcodec: Use spi… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2025-71104 | Red Hat | medium | 5.5 | 0.1%
| | In the Linux kernel, the following vulnerability has been resolved:
KVM: x86: Fix VM hard lockup aft… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2025-71138 | Red Hat | medium | — | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
drm/msm/dpu: Add missing NULL po… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2025-71114 | Red Hat | medium | 5.5 | 0.1%
| | In the Linux kernel, the following vulnerability has been resolved:
via_wdt: fix critical boot hang … | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2025-71144 | Red Hat | medium | — | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
mptcp: ensure context reset on d… | Jan 14, 2026 | Jan 14, 2026 |