| | CVE-2026-28498 |  Red Hat | high | 9.1 | — | | A flaw was found in Authlib, a Python library used for building OAuth and OpenID Connect (OIDC) serv… | Mar 16, 2026 | Mar 16, 2026 |
| | CVE-2026-4224 | Red Hat | medium | 5.9 | — | | A stack overflow flaw has been discovered in the python pyexpat module. When an Expat parser with a … | Mar 16, 2026 | Mar 16, 2026 |
| | CVE-2026-28490 | Red Hat | medium | 5.9 | — | | A flaw was found in Authlib, a Python library for building OAuth and OpenID Connect servers. This cr… | Mar 16, 2026 | Mar 16, 2026 |
| | CVE-2026-3644 | Red Hat | medium | 5.4 | — | | A control character validation flaw has been discovered in the Python http.cookie module. The Morsel… | Mar 16, 2026 | Mar 16, 2026 |
| | CVE-2026-27962 | Red Hat | high | 9.1 | — | | A flaw was found in Authlib, a Python library used for creating secure authentication and authorizat… | Mar 16, 2026 | Mar 16, 2026 |
| | CVE-2025-2274 |  Forcepoint | medium | 4.8 | — | | Improper Neutralization of Input During Web Page Generation in Forcepoint Web Security (On-Prem) on … | Mar 16, 2026 | Mar 16, 2026 |
| | CVE-2026-26133 |  Microsoft | high | 7.1 | 0.1%
| | AI command injection in M365 Copilot allows an unauthorized attacker to disclose information over a … | Mar 16, 2026 | Apr 9, 2026 |
| | CVE-2026-0385 | Microsoft | medium | 5.0 | 0.0%
| | Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability | Mar 16, 2026 | Apr 7, 2026 |
| | CVE-2026-32778 | Red Hat | medium | 5.1 | 0.0%
| | A flaw was found in libexpat. This vulnerability allows an attacker to trigger a NULL pointer derefe… | Mar 16, 2026 | Mar 16, 2026 |
| | CVE-2026-32777 | Red Hat | medium | 4.0 | 0.0%
| | A flaw was found in libexpat. A remote attacker could exploit this vulnerability by providing specia… | Mar 16, 2026 | Mar 16, 2026 |
| | CVE-2026-32776 | Red Hat | medium | 6.2 | 0.0%
| | A flaw was found in libexpat. A remote attacker could exploit this vulnerability by providing specia… | Mar 16, 2026 | Mar 16, 2026 |
| | CVE-2026-32775 | Red Hat | medium | 5.3 | 0.0%
| | A flaw was found in libexif. When decoding MakerNotes, an integer underflow can occur in the exif_mn… | Mar 16, 2026 | Mar 16, 2026 |
| | CVE-2025-69693 | Red Hat | medium | 7.1 | — | | A flaw was found in the RV60 video decoder in FFmpeg. Processing a specially crafted RV60 file can c… | Mar 16, 2026 | Mar 16, 2026 |
| | CVE-2025-54920 |  Apache | medium | — | 0.2%
| | This issue affects Apache Spark: before 3.5.7 and 4.0.1. Users are recommended to upgrade to version… | Mar 14, 2026 | Mar 17, 2026 |
| | CVE-2026-23941 | Apache | medium | — | 0.0%
| | Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') vulnerability in Erlang OTP … | Mar 13, 2026 | Mar 13, 2026 |
| | CVE-2025-66249 | Apache | medium | 6.3 | 0.0%
| | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Apac… | Mar 13, 2026 | Mar 19, 2026 |
| | CVE-2025-60012 | Apache | medium | 6.3 | 0.1%
| | Malicious configuration can lead to unauthorized file access in Apache Livy.
This issue affects Apa… | Mar 13, 2026 | Mar 19, 2026 |
| | CVE-2026-31897 | Red Hat | low | 3.1 | 0.0%
| | An out of bounds read flaw has been discovered in FreeRDP. This Out-of-bounds read exists in the `fr… | Mar 13, 2026 | Mar 13, 2026 |
| | CVE-2026-31806 | Red Hat | high | 8.8 | 0.0%
| | A flaw was found in FreeRDP, a free implementation of the Remote Desktop Protocol (RDP). The `gdi_su… | Mar 13, 2026 | Mar 13, 2026 |
| | CVE-2026-31885 | Red Hat | medium | 6.5 | 0.0%
| | An out of bounds read flaw has been discovered in FreeRDP. This out-of-bounds read exists in the MS-… | Mar 13, 2026 | Mar 13, 2026 |
| | CVE-2026-31884 | Red Hat | medium | 6.5 | 0.0%
| | A division by zero flaw has been discovered in FreeRDP. This division by zero exists in the MS-ADPCM… | Mar 13, 2026 | Mar 13, 2026 |
| | CVE-2026-31883 | Red Hat | medium | — | 0.0%
| | No description is available for this CVE. | Mar 13, 2026 | Mar 13, 2026 |
| | CVE-2026-29776 | Red Hat | low | 3.1 | 0.0%
| | An integer underflow flaw has been discovered in FreeRDP. A uint32 field is populated from a uint16 … | Mar 13, 2026 | Mar 13, 2026 |
| | CVE-2026-29775 | Red Hat | medium | 5.3 | 0.0%
| | A heap based buffer overflow flaw has been discovered in FreeRDP. This client-side heap out-of-bound… | Mar 13, 2026 | Mar 13, 2026 |
| | CVE-2026-29774 | Red Hat | medium | 5.3 | 0.0%
| | A heap based buffer overflow flaw has been discovered in FreeRDP. A client-side heap buffer overflow… | Mar 13, 2026 | Mar 13, 2026 |
| | CVE-2026-2673 | Red Hat | low | 3.1 | 0.0%
| | A key group selection preference flaw has been discovered in OpenSSL. An OpenSSL TLS 1.3 server may … | Mar 13, 2026 | Mar 13, 2026 |
| | CVE-2025-57849 | Red Hat | medium | 6.4 | 0.0%
| | A container privilege escalation flaw was found in certain Fuse images. This issue stems from the /e… | Mar 13, 2026 | Mar 13, 2026 |
| | CVE-2025-8766 | Red Hat | high | 6.4 | 0.0%
| | A container privilege escalation flaw was found in certain Multi-Cloud Object Gateway Core images. T… | Mar 13, 2026 | Mar 13, 2026 |
| | CVE-2026-4105 | Red Hat | medium | 7.8 | 0.0%
| | A flaw was found in systemd. The systemd-machined service contains an Improper Access Control vulner… | Mar 13, 2026 | Mar 13, 2026 |
| | CVE-2026-32597 | Red Hat | high | 7.5 | 0.0%
| | A missing verification step has been discovered in PyJWT. PyJWT does not validate the crit (Critical… | Mar 12, 2026 | Mar 12, 2026 |
| | CVE-2026-2229 | Red Hat | high | 7.5 | 0.1%
| | A flaw was found in the undici WebSocket client. A remote malicious server can exploit this vulnerab… | Mar 12, 2026 | Mar 12, 2026 |
| | CVE-2026-1528 | Red Hat | high | 7.5 | 0.1%
| | A flaw was found in undici. A remote attacker could exploit this vulnerability by sending a speciall… | Mar 12, 2026 | Mar 12, 2026 |
| | CVE-2026-1527 | Red Hat | medium | 6.5 | 0.0%
| | A flaw was found in undici, a Node.js HTTP/1.1 client. This vulnerability allows a remote attacker t… | Mar 12, 2026 | Mar 12, 2026 |
| | CVE-2026-32249 |  Check Point | medium | 5.3 | 0.0%
| | Vim is an open source, command line text editor. From 9.1.0011 to before 9.2.0137, Vim's NFA regex c… | Mar 12, 2026 | Mar 12, 2026 |
| | CVE-2026-2581 | Red Hat | medium | 5.9 | 0.0%
| | A flaw was found in Undici. When the `interceptors.deduplicate()` feature is enabled, response data … | Mar 12, 2026 | Mar 12, 2026 |
| | CVE-2026-1526 | Red Hat | high | 7.5 | 0.0%
| | A flaw was found in undici. A remote attacker can exploit this vulnerability by sending a specially … | Mar 12, 2026 | Mar 12, 2026 |
| | CVE-2026-1525 | Red Hat | medium | 6.5 | 0.0%
| | A flaw was found in undici, a Node.js HTTP/1.1 client. A remote attacker could exploit this vulnerab… | Mar 12, 2026 | Mar 12, 2026 |
| | CVE-2026-32274 | Red Hat | high | 7.5 | 0.0%
| | A user input sanitization flaw has been discovered in the Black python code formatter. Black writes … | Mar 12, 2026 | Mar 12, 2026 |
| | CVE-2026-32237 | Red Hat | medium | 4.4 | 0.0%
| | A data exposure flaw has been discovered in the @backstage/plugin-scaffolder-backend npm library. Au… | Mar 12, 2026 | Mar 12, 2026 |
| | CVE-2026-32236 | Red Hat | medium | 0.0 | 0.0%
| | A server side request forgery flaw has been discovered in the npm @backstage/plugin-auth-backend pac… | Mar 12, 2026 | Mar 12, 2026 |
| | CVE-2026-32235 | Red Hat | medium | 5.9 | 0.0%
| | An allowlist bypass flaw has been discovered in the npm @backstage/plugin-auth-backend package. Inst… | Mar 12, 2026 | Mar 12, 2026 |
| | CVE-2026-3497 | Red Hat | high | 8.2 | 0.1%
| | A flaw was found in the OpenSSH GSSAPI (Generic Security Service Application Program Interface) delt… | Mar 12, 2026 | Mar 12, 2026 |
| | CVE-2026-32141 | Red Hat | high | 7.5 | 0.0%
| | A denial of service flaw has been discovered in the flatted npm library. flatted's parse() function … | Mar 12, 2026 | Mar 12, 2026 |
| | CVE-2026-21708 |  Veeam | critical | 10.0 | 0.5%
| | A vulnerability allowing a Backup Viewer to perform remote code execution (RCE) as the postgres user… | Mar 12, 2026 | Mar 13, 2026 |
| | CVE-2026-21672 | Veeam | high | 8.8 | 0.1%
| | A vulnerability allowing local privilege escalation on Windows-based Veeam Backup & Replication serv… | Mar 12, 2026 | Mar 13, 2026 |
| | CVE-2026-21671 | Veeam | critical | 9.1 | 0.3%
| | A vulnerability allowing an authenticated user with the Backup Administrator role to perform remote … | Mar 12, 2026 | May 10, 2026 |
| | CVE-2026-21670 | Veeam | high | 7.7 | 0.0%
| | A vulnerability allowing a low-privileged user to extract saved SSH credentials. | Mar 12, 2026 | May 10, 2026 |
| | CVE-2026-21669 | Veeam | critical | 9.9 | 0.3%
| | A vulnerability allowing an authenticated domain user to perform remote code execution (RCE) on the … | Mar 12, 2026 | May 10, 2026 |
| | CVE-2026-21668 | Veeam | high | 8.8 | 0.0%
| | A vulnerability allowing an authenticated domain user to bypass restrictions and manipulate arbitrar… | Mar 12, 2026 | May 10, 2026 |
| | CVE-2026-21667 | Veeam | critical | 9.9 | 0.3%
| | A vulnerability allowing an authenticated domain user to perform remote code execution (RCE) on the … | Mar 12, 2026 | Mar 31, 2026 |