| | CVE-2026-48203 | Apache | critical | 9.1 | 0.3%
| | Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection'), … | Jul 6, 2026 | Jul 8, 2026 |
| | CVE-2026-46726 | Apache | high | 7.5 | 0.4%
| | Improper Input Validation, Exposure of Sensitive Information to an Unauthorized Actor, Server-Side R… | Jul 6, 2026 | Jul 8, 2026 |
| | CVE-2026-46592 | Apache | high | 7.5 | 0.3%
| | Improper Input Validation, Unintended Proxy or Intermediary ('Confused Deputy') vulnerability in Apa… | Jul 6, 2026 | Jul 8, 2026 |
| | CVE-2026-46591 | Apache | high | 8.2 | 0.2%
| | Improper Neutralization of Special Elements in Data Query Logic vulnerability in Apache Camel Neo4J … | Jul 6, 2026 | Jul 8, 2026 |
| | CVE-2026-46590 | Apache | high | 8.8 | 0.4%
| | Deserialization of Untrusted Data vulnerability in Apache Camel PQC component.
The camel-pqc compon… | Jul 6, 2026 | Jul 8, 2026 |
| | CVE-2026-46585 | Apache | high | 7.5 | 0.3%
| | Improper Input Validation, Authorization Bypass Through User-Controlled Key vulnerability in Apache … | Jul 6, 2026 | Jul 8, 2026 |
| | CVE-2026-46584 | Apache | low | 3.7 | 0.2%
| | Improper Input Validation, Exposure of Sensitive Information to an Unauthorized Actor vulnerability … | Jul 6, 2026 | Jul 8, 2026 |
| | CVE-2026-46457 | Apache | high | 7.5 | 0.3%
| | Improper Input Validation vulnerability in Apache Camel NATS component.
The camel-nats component ma… | Jul 6, 2026 | Jul 8, 2026 |
| | CVE-2026-46456 | Apache | critical | 9.8 | 0.3%
| | Improper Input Validation vulnerability in Apache Camel AWS2-SQS Component.
The camel-aws2-sqs com… | Jul 6, 2026 | Jul 8, 2026 |
| | CVE-2026-46455 | Apache | critical | 9.8 | 0.3%
| | Insufficient Session Expiration vulnerability in Apache Camel Keycloak Component.
The camel-keycloa… | Jul 6, 2026 | Jul 8, 2026 |
| | CVE-2026-46454 | Apache | critical | 9.8 | 0.4%
| | Improper Input Validation vulnerability in Apache Camel Cometd Component.
The camel-cometd componen… | Jul 6, 2026 | Jul 8, 2026 |
| | CVE-2026-46453 | Apache | medium | 5.3 | 0.3%
| | Improper Input Validation, Authorization Bypass Through User-Controlled Key vulnerability in Apache … | Jul 6, 2026 | Jul 7, 2026 |
| | CVE-2026-43867 | Apache | critical | 9.8 | 0.5%
| | Deserialization of Untrusted Data vulnerability in Apache Camel PQC Component.
The camel-pqc compon… | Jul 6, 2026 | Jul 7, 2026 |
| | CVE-2026-43866 | Apache | high | 7.3 | 0.3%
| | Deserialization of Untrusted Data vulnerability in Apache Camel, Apache Camel JMS component.
JmsBin… | Jul 6, 2026 | Jul 7, 2026 |
| | CVE-2026-43865 | Apache | high | 8.1 | 0.7%
| | Deserialization of Untrusted Data vulnerability in Apache Camel Hazelcast component.
The camel-haze… | Jul 6, 2026 | Jul 7, 2026 |
| | CVE-2026-42527 | Apache | high | 8.1 | 0.4%
| | Deserialization of Untrusted Data vulnerability in Apache Camel.
The default ObjectInputFilter patt… | Jul 6, 2026 | Jul 7, 2026 |
| | CVE-2026-40859 | Apache | high | 8.1 | 0.5%
| | Deserialization of Untrusted Data vulnerability in Apache Camel.
The camel-vertx-http component des… | Jul 6, 2026 | Jul 7, 2026 |
| | CVE-2026-40047 | Apache | critical | 9.1 | 1.3%
| | Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') vulnerability in … | Jul 6, 2026 | Jul 8, 2026 |
| | CVE-2026-24014 | Apache | critical | 9.8 | 0.4%
| | Apache IoTDB DataNode’s internal RPC interface for creating Trigger instances uses the uploaded Trig… | Jul 6, 2026 | Jul 7, 2026 |
| | CVE-2026-24013 | Apache | critical | 9.1 | 0.4%
| | Authentication Bypass by Spoofing vulnerability in Apache IoTDB.
Certain Thrift RPC query handlers l… | Jul 6, 2026 | Jul 7, 2026 |
| | CVE-2026-24012 | Apache | high | 7.5 | 0.4%
| | Uncontrolled Resource Consumption vulnerability in Apache IoTDB.
Some interface fails to impose re… | Jul 6, 2026 | Jul 7, 2026 |
| | CVE-2026-9165 | Red Hat | high | 7.7 | 0.3%
| | A flaw was found in Red Hat Advanced Cluster Security for Kubernetes (RHACS). Central does not limit… | Jul 6, 2026 | Jul 6, 2026 |
| | CVE-2026-14788 | Red Hat | low | 3.3 | 0.1%
| | A flaw was found in radare2. A local attacker could trigger a use-after-free vulnerability within th… | Jul 6, 2026 | Jul 6, 2026 |
| | CVE-2026-14781 | Red Hat | medium | 4.8 | 0.2%
| | A flaw exists in the org.keycloak.broker.oidc package where the OIDC broker incorrectly synchronizes… | Jul 5, 2026 | Jul 5, 2026 |
| | CVE-2026-58523 | Microsoft | medium | 6.5 | 0.5%
| | Improper access control in Microsoft Edge for Android allows an unauthorized attacker to bypass a se… | Jul 3, 2026 | Jul 7, 2026 |
| | CVE-2026-58597 | Microsoft | medium | 4.3 | 0.4%
| | Insufficient ui warning of dangerous operations in Microsoft Edge (Chromium-based) allows an unautho… | Jul 3, 2026 | Jul 6, 2026 |
| | CVE-2026-58524 | Microsoft | medium | 5.4 | 0.2%
| | Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Ed… | Jul 3, 2026 | Jul 6, 2026 |
| | CVE-2026-58522 | Microsoft | medium | 6.8 | 0.3%
| | Relative path traversal in Microsoft Edge for Android allows an unauthorized attacker to disclose in… | Jul 3, 2026 | Jul 7, 2026 |
| | CVE-2026-58300 | Microsoft | medium | 6.2 | 0.4%
| | Absolute path traversal in Microsoft Edge for Android allows an unauthorized attacker to disclose in… | Jul 3, 2026 | Jul 7, 2026 |
| | CVE-2026-58299 | Microsoft | high | 7.5 | 0.3%
| | Time-of-check time-of-use (toctou) race condition in Microsoft Edge for Android allows an unauthoriz… | Jul 3, 2026 | Jul 7, 2026 |
| | CVE-2026-58298 | Microsoft | high | 7.2 | 0.2%
| | Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Ed… | Jul 3, 2026 | Jul 7, 2026 |
| | CVE-2026-58297 | Microsoft | high | 7.1 | 0.3%
| | Exposure of private personal information to an unauthorized actor in Microsoft Edge for Android allo… | Jul 3, 2026 | Jul 7, 2026 |
| | CVE-2026-58296 | Microsoft | high | 7.1 | 0.3%
| | Exposure of private personal information to an unauthorized actor in Microsoft Edge for Android allo… | Jul 3, 2026 | Jul 7, 2026 |
| | CVE-2026-58291 | Microsoft | medium | 6.1 | 0.6%
| | Operation on a resource after expiration or release in Microsoft Edge (Chromium-based) allows an una… | Jul 3, 2026 | Jul 6, 2026 |
| | CVE-2026-58290 | Microsoft | high | 7.5 | 0.2%
| | Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) all… | Jul 3, 2026 | Jul 7, 2026 |
| | CVE-2026-58288 | Microsoft | high | 8.3 | 0.4%
| | Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code ov… | Jul 3, 2026 | Jul 7, 2026 |
| | CVE-2026-58286 | Microsoft | high | 8.1 | 0.4%
| | Improper access control in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perfor… | Jul 3, 2026 | Jul 7, 2026 |
| | CVE-2026-58285 | Microsoft | high | 8.3 | 0.4%
| | Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) all… | Jul 3, 2026 | Jul 7, 2026 |
| | CVE-2026-58284 | Microsoft | high | 8.3 | 0.4%
| | Improper authorization in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute… | Jul 3, 2026 | Jul 7, 2026 |
| | CVE-2026-58283 | Microsoft | high | 8.1 | 0.4%
| | Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) all… | Jul 3, 2026 | Jul 6, 2026 |
| | CVE-2026-58282 | Microsoft | high | 8.1 | 0.4%
| | Improper access control in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perfor… | Jul 3, 2026 | Jul 6, 2026 |
| | CVE-2026-58278 | Microsoft | medium | 5.4 | 0.3%
| | Server-side request forgery (ssrf) in Microsoft Edge (Chromium-based) allows an unauthorized attacke… | Jul 3, 2026 | Jul 6, 2026 |
| | CVE-2026-58276 | Microsoft | high | 7.5 | 0.4%
| | Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code ov… | Jul 3, 2026 | Jul 7, 2026 |
| | CVE-2026-57993 | Microsoft | high | 7.4 | 0.6%
| | Server-side request forgery (ssrf) in Microsoft Edge (Chromium-based) allows an unauthorized attacke… | Jul 3, 2026 | Jul 6, 2026 |
| | CVE-2026-57985 | Microsoft | high | 7.6 | 0.4%
| | Improper input validation in Microsoft Edge (Chromium-based) allows an unauthorized attacker to exec… | Jul 3, 2026 | Jul 7, 2026 |
| | CVE-2026-57984 | Microsoft | high | 7.5 | 0.4%
| | Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code ov… | Jul 3, 2026 | Jul 7, 2026 |
| | CVE-2026-57983 | Microsoft | high | 8.7 | 0.5%
| | Improper authorization in Microsoft Edge (Chromium-based) allows an unauthorized attacker to bypass … | Jul 3, 2026 | Jul 7, 2026 |
| | CVE-2026-57981 | Microsoft | high | 8.8 | 0.6%
| | Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code ov… | Jul 3, 2026 | Jul 7, 2026 |
| | CVE-2026-45489 | Microsoft | medium | 6.5 | 0.5%
| | Microsoft Edge (Chromium-based) Spoofing Vulnerability | Jul 3, 2026 | Jul 7, 2026 |
| | CVE-2026-58294 | Microsoft | high | 7.5 | 0.3%
| | Use after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code ov… | Jul 3, 2026 | Jul 7, 2026 |