| | CVE-2026-52933 | Red Hat | medium | 7.0 | 0.2%
| | A flaw was found in the Linux kernel's `io_uring/poll` component. A logic error exists in the `io_po… | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-52935 | Red Hat | medium | 7.0 | 0.2%
| | A flaw was found in the Linux kernel. The `espintcp` component, responsible for handling encrypted n… | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-52941 | Red Hat | low | 5.5 | 0.2%
| | A flaw was found in the Linux kernel's `net/smc` module. An unprivileged local user could trigger a … | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-52914 | Red Hat | medium | — | 0.2%
| | A flaw was found in the Linux kernel's batman-adv component. This vulnerability allows a local attac… | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-52939 | Red Hat | medium | 5.5 | 0.2%
| | A flaw was found in the Linux kernel's Reliable Datagram Sockets (RDS) component. An unprivileged lo… | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-52937 | Red Hat | medium | 5.5 | 0.2%
| | A flaw was found in the Linux kernel's tap driver. This vulnerability allows an attacker to potentia… | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-52913 | Red Hat | medium | — | 0.2%
| | No description is available for this CVE. | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-52912 | Red Hat | medium | 7.0 | 0.2%
| | A flaw was found in the Linux kernel's netfilter component. This vulnerability occurs because a queu… | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-52926 | Red Hat | medium | — | 0.2%
| | A flaw was found in the Linux kernel's batman-adv module, which is responsible for managing mesh net… | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-52929 | Red Hat | medium | 5.5 | 0.2%
| | A flaw was found in the Linux kernel's Stream Control Transmission Protocol (SCTP) stream handling. … | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-52922 | Red Hat | medium | — | 0.2%
| | A flaw was found in the Linux kernel's batman-adv (Better Approach To Mobile Ad-hoc Networking) modu… | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-52921 | Red Hat | low | 5.5 | 0.2%
| | A flaw was found in the Linux kernel's netfilter ipset component. Specifically, certain hash set var… | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-52920 | Red Hat | medium | 7.0 | 0.2%
| | A flaw was found in the Linux kernel's netfilter component, which is responsible for network packet … | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-52916 | Red Hat | medium | — | 0.2%
| | A flaw was found in the Linux kernel's batman-adv module. A remote attacker can exploit this vulnera… | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-52934 | Red Hat | medium | — | 0.2%
| | A flaw was found in the Linux kernel's batman-adv (Better Approach To Mobile Ad-hoc Networking - Adv… | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-52917 | Red Hat | medium | 7.0 | 0.2%
| | A flaw was found in the Linux kernel's Stream Control Transmission Protocol (SCTP) diagnostics. When… | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-52930 | Red Hat | medium | 5.5 | 0.2%
| | A flaw was found in the Linux kernel's inter-process communication (IPC) shared memory (shm) compone… | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-52936 | Red Hat | low | 5.5 | 0.2%
| | A flaw was found in the Linux kernel's `jitterentropy` cryptographic module. A long-held spinlock du… | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-52931 | Red Hat | medium | — | 0.2%
| | A flaw was found in the `batman-adv` `tp_meter` module of the Linux kernel. A remote attacker could … | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-52915 | Red Hat | medium | 5.5 | 0.2%
| | A flaw was found in the Linux kernel's netfilter subsystem, specifically within the ip6t_hbh module … | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-52927 | Red Hat | medium | 5.5 | 0.2%
| | A flaw was found in the Linux kernel's netfilter ebtables component. The `compat_mtw_from_user` func… | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-52940 | Red Hat | medium | 7.0 | 0.2%
| | A flaw was found in the Linux kernel's `tun` driver. An unprivileged user can exploit this vulnerabi… | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-52944 | Red Hat | medium | — | 0.2%
| | A flaw was found in the Linux kernel's ksmbd component. This vulnerability allows a client to bypass… | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-52943 | Red Hat | high | 7.0 | 0.2%
| | A flaw was found in the Linux kernel. The `pskb_carve_inside_header()` and `pskb_carve_inside_nonlin… | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-13201 | Red Hat | medium | 5.2 | — | | A flaw was found in KubeVirt's safepath package. The OpenAtNoFollow function uses O_PATH|O_NOFOLLOW … | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-13208 | Red Hat | medium | 6.5 | — | | A flaw was found in KubeVirt's virt-handler domain notify server. The gRPC handlers for HandleDomain… | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-53125 | Red Hat | low | 5.5 | — | | No description is available for this CVE. | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-53091 | Red Hat | high | 7.0 | — | | A flaw was found in the Linux kernel's handling of Generic Segmentation Offload (GSO) packet headers… | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-53128 | Red Hat | medium | — | — | | A flaw was found in the Linux kernel's drbd component. Specifically, an imbalance in RCU (Read-Copy … | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-53127 | Red Hat | low | 5.5 | — | | A flaw was found in the Linux kernel's block subsystem. This vulnerability allows for a memory leak … | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-53130 | Red Hat | medium | — | — | | No description is available for this CVE. | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-53129 | Red Hat | medium | 5.5 | — | | No description is available for this CVE. | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-53126 | Red Hat | low | 5.5 | — | | A flaw was found in the Linux kernel's `blk-cgroup` component. This vulnerability occurs due to a mi… | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-53100 | Red Hat | low | 5.5 | — | | A flaw was found in the Linux kernel's mt76 wireless driver. This vulnerability occurs in the `remai… | Jun 24, 2026 | Jun 24, 2026 |
| | CVE-2026-12112 | Red Hat | high | 7.8 | — | | A flaw was found in the foreman-mcp-server. A session management vulnerability in the MCP Server all… | Jun 23, 2026 | Jun 23, 2026 |
| | CVE-2026-11807 | Red Hat | critical | 9.6 | — | ✓ Fix | A missing authorization vulnerability was found in the Event-Driven Ansible (EDA) websocket API. The… | Jun 23, 2026 | Jun 23, 2026 |
| | CVE-2026-9073 | Red Hat | medium | 6.2 | — | | A flaw was found in foreman-mcp-server. This component utilizes two distinct logging mechanisms that… | Jun 23, 2026 | Jun 23, 2026 |
| | CVE-2026-10609 | Red Hat | medium | 6.8 | — | | A missing authorization flaw was found in the OpenShift Cluster Logging Operator. The operator creat… | Jun 23, 2026 | Jun 23, 2026 |
| | CVE-2026-12891 | Red Hat | medium | 4.3 | — | | A flaw was found in the GStreamer gst-plugins-bad package. When processing a malformed H.266/VVC vid… | Jun 23, 2026 | Jun 23, 2026 |
| | CVE-2026-42127 | Grafana | high | 7.5 | 0.4%
| | The public dashboard query endpoint does not limit request body size before processing, allowing una… | Jun 22, 2026 | Jun 30, 2026 |
| | CVE-2026-9029 | Grafana | high | 7.3 | 0.3%
| | The geomap panel's XYZ tile layer has a sanitize-then-interpolate ordering bug. sanitizeTextPanelCon… | Jun 22, 2026 | Jun 30, 2026 |
| | CVE-2026-42129 | Grafana | high | 7.7 | 0.4%
| | The Loki datasource plugin's callResource handler contains a path traversal vulnerability. An authen… | Jun 22, 2026 | Jun 30, 2026 |
| | CVE-2026-28381 | Grafana | critical | 9.6 | 0.2%
| | The Snowflake datasource allows for GET/PUT commands, which can allow any user with access to run qu… | Jun 22, 2026 | Jun 30, 2026 |
| | CVE-2026-10601 | Grafana | medium | 5.4 | 0.3%
| | The Tempo and Loki datasource plugins construct backend HTTP requests by interpolating user-supplied… | Jun 22, 2026 | Jun 30, 2026 |
| | CVE-2025-66389 | Microsoft | high | 7.5 | 0.4%
| | GitHub Copilot 1.372.0 allows filesystem access outside of a workspace folder (without user approval… | Jun 22, 2026 | Jun 30, 2026 |
| | CVE-2026-54665 | Apache | medium | 5.3 | 0.2%
| | Apache NiFi 0.0.1 through 2.9.0 support building qualified URLs from one of several HTTP request hea… | Jun 22, 2026 | Jun 23, 2026 |
| | CVE-2026-44914 | Apache | high | 7.2 | 0.3%
| | Apache NiFi 1.12.0 through 2.9.0 are missing authorization when replacing Process Groups that includ… | Jun 22, 2026 | Jun 24, 2026 |
| | CVE-2026-44913 | Apache | high | 7.2 | 0.3%
| | Improper escaping of database table names in the CaptureChangeMySQL Processor included with Apache N… | Jun 22, 2026 | Jun 23, 2026 |
| | CVE-2026-44911 | Apache | medium | 6.3 | 0.3%
| | Authorization handling for component configuration verification requests in Apache NiFi 1.15.0 throu… | Jun 22, 2026 | Jun 23, 2026 |
| | CVE-2025-66336 | Apache | high | 8.1 | 0.3%
| | Apache Doris MCP Server contains a SQL injection vulnerability in a metadata query path. A user-cont… | Jun 22, 2026 | Jun 26, 2026 |