| | CVE-2026-7346 | Red Hat | high | 8.8 | 0.0%
| | Inappropriate implementation in Tint in Google Chrome prior to 147.0.7727.138 allowed a remote attac… | Apr 28, 2026 | Apr 28, 2026 |
| | CVE-2026-7345 | Red Hat | high | 8.0 | 0.0%
| | Insufficient validation of untrusted input in Feedback in Google Chrome prior to 147.0.7727.138 allo… | Apr 28, 2026 | Apr 28, 2026 |
| | CVE-2026-7335 | Red Hat | high | 8.8 | 0.0%
| | Use after free in media in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to execut… | Apr 28, 2026 | Apr 28, 2026 |
| | CVE-2026-7344 | Red Hat | high | 9.0 | 0.0%
| | An use after free flaw was found in the Accessibility component of the Chromium browser.
Upstream bu… | Apr 28, 2026 | Apr 28, 2026 |
| | CVE-2026-7350 | Red Hat | high | 9.0 | 0.0%
| | Use after free in WebMIDI in Google Chrome prior to 147.0.7727.138 allowed a remote attacker who had… | Apr 28, 2026 | Apr 28, 2026 |
| | CVE-2026-7354 | Red Hat | high | 9.6 | 0.0%
| | Out of bounds read and write in Angle in Google Chrome prior to 147.0.7727.138 allowed a remote atta… | Apr 28, 2026 | Apr 28, 2026 |
| | CVE-2026-7342 | Red Hat | high | 9.6 | 0.0%
| | Use after free in WebView in Google Chrome on Android prior to 147.0.7727.138 allowed a remote attac… | Apr 28, 2026 | Apr 28, 2026 |
| | CVE-2026-7357 | Red Hat | high | 8.2 | 0.0%
| | Use after free in GPU in Google Chrome prior to 147.0.7727.138 allowed a remote attacker who had com… | Apr 28, 2026 | Apr 28, 2026 |
| | CVE-2026-7333 | Red Hat | high | 9.6 | 0.0%
| | Use after free in GPU in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to potentia… | Apr 28, 2026 | Apr 28, 2026 |
| | CVE-2026-7355 | Red Hat | medium | 8.8 | 0.0%
| | Use after free in Media in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to execut… | Apr 28, 2026 | Apr 28, 2026 |
| | CVE-2026-7343 | Red Hat | high | 9.0 | 0.2%
| | Use after free in Views in Google Chrome on Windows prior to 147.0.7727.138 allowed a remote attacke… | Apr 28, 2026 | Apr 28, 2026 |
| | CVE-2026-7337 | Red Hat | high | 8.8 | 0.0%
| | Type Confusion in V8 in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to execute a… | Apr 28, 2026 | Apr 28, 2026 |
| | CVE-2026-7361 | Red Hat | high | 9.6 | 0.0%
| | Use after free in iOS in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to potentia… | Apr 28, 2026 | Apr 28, 2026 |
| | CVE-2026-42208 | Red Hat | critical | 9.8 | 54.3%
| ⚠ KEV | LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. From version 1… | Apr 28, 2026 | Apr 28, 2026 |
| | CVE-2026-40977 | Red Hat | medium | 5.3 | 0.0%
| | A flaw was found in Spring Boot when an application is configured to use `ApplicationPidFileWriter`.… | Apr 27, 2026 | Apr 27, 2026 |
| | CVE-2026-40974 | Red Hat | medium | 6.4 | 0.1%
| | A flaw was found in Spring Boot's Cassandra auto-configuration. This vulnerability allows an adjacen… | Apr 27, 2026 | Apr 27, 2026 |
| | CVE-2026-40973 | Red Hat | medium | 7.0 | 0.0%
| ✓ Fix | A flaw was found in Spring Boot. A local attacker on the same host as the application may be able to… | Apr 27, 2026 | Apr 27, 2026 |
| | CVE-2026-40972 | Red Hat | medium | 7.5 | 0.0%
| ✓ Fix | A flaw was found in Spring Boot. An attacker on the same network as the remote application may be ab… | Apr 27, 2026 | Apr 27, 2026 |
| | CVE-2026-40971 | Red Hat | medium | 4.2 | 0.0%
| | A flaw was found in Spring Boot. When configured to use an SSL (Secure Sockets Layer) bundle, Spring… | Apr 27, 2026 | Apr 27, 2026 |
| | CVE-2026-40970 | Red Hat | medium | 4.2 | 0.0%
| | A flaw was found in Spring Boot. When configured to use an SSL (Secure Sockets Layer) bundle, the El… | Apr 27, 2026 | Apr 27, 2026 |
| | CVE-2026-7141 | Red Hat | medium | 5.6 | 0.1%
| | A flaw was found in vllm. A remote attacker can exploit a vulnerability in the `has_mamba_layers` fu… | Apr 27, 2026 | Apr 27, 2026 |
| | CVE-2026-6357 | Red Hat | medium | 5.8 | 0.0%
| | A flaw was found in pip. Prior to version 26.1, pip's self-update check functionality would execute … | Apr 27, 2026 | Apr 27, 2026 |
| | CVE-2026-41081 | Apache | medium | 6.5 | 0.0%
| | Improper Handling of TLS Client Authentication Failure Leading to Anonymous Principal Assignment in … | Apr 27, 2026 | Apr 28, 2026 |
| | CVE-2026-40557 | Apache | medium | 4.8 | 0.0%
| | Improper Certificate Validation via Global SSL Context Downgrade in Apache Storm Prometheus Reporter… | Apr 27, 2026 | May 5, 2026 |
| | CVE-2026-40858 | Apache | high | 8.8 | 0.5%
| | The camel-infinispan component's ProtoStream-based remote aggregation repository deserializes data r… | Apr 27, 2026 | Jun 30, 2026 |
| | CVE-2026-40022 | Apache | high | 8.2 | 0.5%
| | When authentication is enabled on the Apache Camel embedded HTTP server or embedded management serve… | Apr 27, 2026 | Jun 30, 2026 |
| | CVE-2026-33454 | Apache | critical | 9.4 | 0.6%
| | The Camel-Mail component is vulnerable to Camel message header injection. The custom header filter s… | Apr 27, 2026 | Jun 27, 2026 |
| | CVE-2026-27172 | Apache | medium | — | 0.5%
| | The ConsulRegistry in the camel-consul component (class org.apache.camel.component.consul.ConsulRegi… | Apr 27, 2026 | Jun 30, 2026 |
| | CVE-2026-33453 | Apache | medium | — | 5.1%
| | Improperly Controlled Modification of Dynamically-Determined Object Attributes vulnerability in Apac… | Apr 27, 2026 | Jun 30, 2026 |
| | CVE-2026-41409 | Red Hat | low | 9.8 | 0.2%
| | A flaw was found in Apache MINA. An incomplete fix for a deserialization vulnerability in the `Abstr… | Apr 27, 2026 | Apr 27, 2026 |
| | CVE-2026-41635 | Apache | critical | 9.8 | 0.0%
| | Apache MINA's AbstractIoBuffer.resolveClass() contains two branches, one of them (for static classes… | Apr 27, 2026 | Apr 29, 2026 |
| | CVE-2026-40860 | Apache | critical | 9.8 | 0.7%
| | JmsBinding.extractBodyFromJms() in camel-jms, and the equivalent JmsBinding class in camel-sjms, des… | Apr 27, 2026 | Jun 30, 2026 |
| | CVE-2026-40453 | Apache | critical | 9.9 | 0.9%
| | The fix for CVE-2025-27636 added setLowerCase(true) to HttpHeaderFilterStrategy so that case-variant… | Apr 27, 2026 | Jun 27, 2026 |
| | CVE-2026-40048 | Apache | medium | — | 0.3%
| | The Camel-PQC FileBasedKeyLifecycleManager class deserializes the contents of `<keyId>.key` files in… | Apr 27, 2026 | Jun 30, 2026 |
| | CVE-2026-40473 | Apache | medium | — | 0.7%
| | The camel-mina component's MinaConverter.toObjectInput(IoBuffer) type converter wraps an IoBuffer in… | Apr 27, 2026 | Jun 30, 2026 |
| | CVE-2026-42371 | Red Hat | medium | 4.7 | 0.0%
| | A flaw was found in uriparser. This vulnerability occurs due to numeric truncation in text range com… | Apr 27, 2026 | Apr 27, 2026 |
| | CVE-2026-3006 | Red Hat | high | 7.0 | 0.0%
| | A flaw was found in winfsp. A local attacker could exploit a race condition vulnerability, which may… | Apr 27, 2026 | Apr 27, 2026 |
| | CVE-2026-31688 | Red Hat | medium | 7.0 | — | | A flaw was found in the Linux kernel's driver core. An inconsistency in enforcing the `device_lock` … | Apr 27, 2026 | Apr 27, 2026 |
| | CVE-2026-31687 | Red Hat | medium | — | — | | A flaw was found in the Linux kernel's OMAP General Purpose Input/Output (GPIO) driver. The omap_mpu… | Apr 27, 2026 | Apr 27, 2026 |
| | CVE-2026-31686 | Red Hat | medium | 7.0 | — | | A flaw was found in the Linux kernel. A double-free vulnerability exists in the Kernel Address Sanit… | Apr 27, 2026 | Apr 27, 2026 |
| | CVE-2026-31689 | Red Hat | medium | 5.5 | — | | A flaw was found in the EDAC/mc module of the Linux kernel. An error in the ordering of operations w… | Apr 27, 2026 | Apr 27, 2026 |
| | CVE-2026-31691 | Red Hat | medium | 5.5 | — | | A flaw was found in the Linux kernel's igb network driver. When an AF_XDP zero-copy application term… | Apr 27, 2026 | Apr 27, 2026 |
| | CVE-2026-31690 | Red Hat | medium | — | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
firmware: thead: Fix buffer over… | Apr 27, 2026 | Apr 27, 2026 |
| | CVE-2018-25282 | Red Hat | medium | 5.5 | 0.0%
| | Nmap 7.70 contains a denial of service vulnerability that allows local attackers to crash the applic… | Apr 26, 2026 | Apr 26, 2026 |
| | CVE-2026-7020 | Red Hat | low | 5.6 | 0.1%
| | A security flaw has been discovered in Ollama up to 0.20.2. This affects the function digestToPath o… | Apr 26, 2026 | Apr 26, 2026 |
| | CVE-2026-6994 | Red Hat | medium | 6.3 | 0.1%
| | A flaw was found in Envoy. A remote attacker could exploit a weakness in the Query Parameter Handler… | Apr 25, 2026 | Apr 25, 2026 |
| | CVE-2026-6993 | Red Hat | medium | 5.3 | 0.1%
| | A flaw was found in go-kratos kratos. A remote attacker could exploit a vulnerability in the HTTP se… | Apr 25, 2026 | Apr 25, 2026 |
| | CVE-2026-6951 | Red Hat | high | 8.8 | 0.2%
| | A flaw was found in simple-git. A remote attacker could exploit this vulnerability by providing spec… | Apr 25, 2026 | Apr 25, 2026 |
| | CVE-2026-31673 | Red Hat | medium | 5.5 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
af_unix: read UNIX_DIAG_VFS data… | Apr 25, 2026 | Apr 25, 2026 |
| | CVE-2026-31681 | Red Hat | medium | 6.1 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
netfilter: xt_multiport: validat… | Apr 25, 2026 | Apr 25, 2026 |