| | CVE-2026-40895 | Red Hat | high | 7.5 | 0.1%
| ✓ Fix | A flaw was found in follow-redirects. When an HTTP request follows a cross-domain redirect (a redire… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-40890 | Red Hat | medium | 7.5 | 0.1%
| | A flaw was found in github.com/gomarkdown/markdown, a Go library for parsing Markdown text and rende… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-33812 | Red Hat | medium | 6.1 | 0.0%
| | A flaw was found in golang.org/x/image. A remote attacker could exploit this vulnerability by provid… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-33813 | Red Hat | medium | 6.5 | 0.1%
| ✓ Fix | A flaw was found in golang.org/x/image. A remote attacker could exploit this vulnerability by provid… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-22751 | Red Hat | medium | 4.8 | 0.0%
| | A flaw was found in Spring Security, specifically in applications configured for One-Time Token logi… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-40611 | Red Hat | high | 8.8 | 0.1%
| | A flaw was found in lego, the Let's Encrypt client and ACME library written in Go. A malicious ACME … | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-40574 | Red Hat | medium | 6.8 | 0.1%
| | A flaw was found in OAuth2 Proxy, a reverse proxy providing authentication using OAuth2 providers. A… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-40161 | Red Hat | medium | 7.7 | 0.0%
| | Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines. Starting … | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-25542 | Red Hat | medium | 6.5 | 0.0%
| | Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines. Starting … | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2017-20230 | Red Hat | medium | 6.5 | 0.0%
| ✓ Fix | A flaw was found in Storable for Perl. A remote attacker can exploit a vulnerability in the `retriev… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6786 | Red Hat | high | 7.5 | 0.0%
| ✓ Fix | Memory safety bugs present in Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox 149 and Thunderbird … | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6784 | Red Hat | high | 7.5 | 0.0%
| | Memory safety bugs present in Firefox 149 and Thunderbird 149. Some of these bugs showed evidence of… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6785 | Red Hat | high | 7.5 | 0.0%
| ✓ Fix | Memory safety bugs present in Firefox ESR 115.34, Firefox ESR 140.9, Thunderbird ESR 140.9, Firefox … | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6783 | Red Hat | low | 3.4 | 0.0%
| | Incorrect boundary conditions, integer overflow in the Audio/Video: Playback component. This vulnera… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6782 | Red Hat | low | 3.4 | 0.0%
| | Information disclosure in the IP Protection component. This vulnerability was fixed in Firefox 150 a… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6781 | Red Hat | low | 3.4 | 0.1%
| | Denial-of-service in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 15… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6780 | Red Hat | low | 3.4 | 0.1%
| | Denial-of-service in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 15… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6778 | Red Hat | low | 3.4 | 0.0%
| | Invalid pointer in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 150 … | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6779 | Red Hat | low | 3.4 | 0.1%
| | Other issue in the JavaScript Engine component. This vulnerability was fixed in Firefox 150 and Thun… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6777 | Red Hat | low | 3.4 | 0.1%
| | Other issue in the Networking: DNS component. This vulnerability was fixed in Firefox 150 and Thunde… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6776 | Red Hat | low | 3.4 | 0.0%
| ✓ Fix | Incorrect boundary conditions in the WebRTC: Networking component. This vulnerability was fixed in F… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6775 | Red Hat | low | 3.4 | 0.0%
| | Incorrect boundary conditions in the WebRTC component. This vulnerability was fixed in Firefox 150 a… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6774 | Red Hat | low | 3.4 | 0.0%
| | Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 150 and Th… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6773 | Red Hat | low | 3.4 | 0.1%
| | Denial-of-service due to integer overflow in the Graphics: WebGPU component. This vulnerability was … | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6772 | Red Hat | medium | 6.1 | 0.1%
| ✓ Fix | Incorrect boundary conditions in the Libraries component in NSS. This vulnerability was fixed in Fir… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6770 | Red Hat | medium | 6.1 | 0.1%
| ✓ Fix | Other issue in the Storage: IndexedDB component. This vulnerability was fixed in Firefox 150, Firefo… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6771 | Red Hat | medium | 6.1 | 0.1%
| ✓ Fix | Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 150, Firef… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6769 | Red Hat | medium | 6.1 | 0.0%
| ✓ Fix | Privilege escalation in the Debugger component. This vulnerability was fixed in Firefox 150, Firefox… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6768 | Red Hat | medium | 6.1 | 0.1%
| | Mitigation bypass in the Networking: Cookies component. This vulnerability was fixed in Firefox 150 … | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6767 | Red Hat | medium | 6.1 | 0.1%
| ✓ Fix | Other issue in the Libraries component in NSS. This vulnerability was fixed in Firefox 150, Firefox … | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6766 | Red Hat | medium | 6.1 | 0.0%
| ✓ Fix | Incorrect boundary conditions in the Libraries component in NSS. This vulnerability was fixed in Fir… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6764 | Red Hat | medium | 6.1 | 0.1%
| ✓ Fix | Incorrect boundary conditions in the DOM: Device Interfaces component. This vulnerability was fixed … | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6765 | Red Hat | medium | 6.1 | 0.0%
| ✓ Fix | Information disclosure in the Form Autofill component. This vulnerability was fixed in Firefox 150, … | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6763 | Red Hat | medium | 6.1 | 0.1%
| ✓ Fix | Mitigation bypass in the File Handling component. This vulnerability was fixed in Firefox 150, Firef… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6762 | Red Hat | medium | 6.1 | 0.0%
| ✓ Fix | Spoofing issue in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 150, Firef… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6761 | Red Hat | medium | 6.1 | 0.0%
| ✓ Fix | Privilege escalation in the Networking component. This vulnerability was fixed in Firefox 150, Firef… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6760 | Red Hat | medium | 6.1 | 0.1%
| | Mitigation bypass in the Networking: Cookies component. This vulnerability was fixed in Firefox 150 … | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6759 | Red Hat | medium | 6.1 | 0.1%
| ✓ Fix | Use-after-free in the Widget: Cocoa component. This vulnerability was fixed in Firefox 150, Firefox … | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6758 | Red Hat | medium | 6.1 | 0.1%
| | Use-after-free in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 150… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6756 | Red Hat | medium | 6.1 | 0.0%
| | Mitigation bypass in Firefox for Android. This vulnerability was fixed in Firefox 150. | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6757 | Red Hat | medium | 6.1 | 0.0%
| ✓ Fix | Invalid pointer in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 15… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6755 | Red Hat | medium | 6.1 | 0.0%
| | Mitigation bypass in the DOM: postMessage component. This vulnerability was fixed in Firefox 150 and… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6754 | Red Hat | high | 7.5 | 0.1%
| ✓ Fix | Use-after-free in the JavaScript Engine component. This vulnerability was fixed in Firefox 150, Fire… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6752 | Red Hat | high | 7.5 | 0.1%
| ✓ Fix | Incorrect boundary conditions in the WebRTC component. This vulnerability was fixed in Firefox 150, … | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6753 | Red Hat | high | 7.5 | 0.1%
| ✓ Fix | Incorrect boundary conditions in the WebRTC component. This vulnerability was fixed in Firefox 150, … | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6751 | Red Hat | high | 7.5 | 0.1%
| ✓ Fix | Uninitialized memory in the Audio/Video: Web Codecs component. This vulnerability was fixed in Firef… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6750 | Red Hat | high | 7.5 | 0.0%
| ✓ Fix | Privilege escalation in the Graphics: WebRender component. This vulnerability was fixed in Firefox 1… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6749 | Red Hat | high | 7.5 | 0.1%
| ✓ Fix | Information disclosure due to uninitialized memory in the Graphics: Canvas2D component. This vulnera… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6747 | Red Hat | high | 7.5 | 0.1%
| ✓ Fix | Use-after-free in the WebRTC component. This vulnerability was fixed in Firefox 150, Firefox ESR 140… | Apr 21, 2026 | Apr 21, 2026 |
| | CVE-2026-6748 | Red Hat | high | 7.5 | 0.1%
| ✓ Fix | Uninitialized memory in the Audio/Video: Web Codecs component. This vulnerability was fixed in Firef… | Apr 21, 2026 | Apr 21, 2026 |