| | CVE-2026-43433 |  Red Hat | medium | — | 0.0%
| | A flaw was found in the Linux kernel's rust_binder component. If a local process gains the ability t… | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43438 | Red Hat | medium | — | 0.0%
| | A flaw was found in the Linux kernel's sched_ext component. This vulnerability is caused by a redund… | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43464 | Red Hat | medium | 7.0 | 0.0%
| | A flaw was found in the Linux kernel's mlx5e driver. When using eXpress Data Path (XDP) multi-buffer… | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43430 | Red Hat | medium | — | 0.0%
| | A flaw was found in the Linux kernel's yurex USB driver. A race condition occurs during the device p… | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43355 | Red Hat | medium | — | 0.0%
| | A flaw was found in the Linux kernel's bh1780 light sensor driver. This vulnerability occurs due to … | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43451 | Red Hat | low | 5.5 | 0.0%
| | A flaw was found in the Linux kernel's netfilter component. A remote attacker can exploit this by se… | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43443 | Red Hat | medium | 5.5 | 0.0%
| | A flaw was found in the Advanced Linux Sound Architecture (ALSA) System on Chip (ASoC) AMD Audio CoP… | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43383 | Red Hat | medium | 7.0 | 0.0%
| | A flaw was found in the Linux kernel's TCP MD5 signature option. This vulnerability allows a remote … | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43417 | Red Hat | medium | — | 0.0%
| | A flaw was found in the Linux kernel. The logic for handling tasks created using `vfork()` (a system… | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43370 | Red Hat | medium | — | 0.0%
| | No description is available for this CVE. | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43380 | Red Hat | medium | — | 0.0%
| | A flaw was found in the Linux kernel's hwmon subsystem, specifically within the pmbus/q54sj108a2 dri… | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43395 | Red Hat | medium | 5.5 | 0.0%
| | A flaw was found in the Linux kernel's `drm/xe/sync` subsystem. When processing synchronization entr… | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43420 | Red Hat | medium | 7.0 | 0.0%
| | A flaw was found in the Linux kernel's Ceph file system client. A race condition during asynchronous… | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43448 | Red Hat | medium | 5.5 | 0.0%
| | A flaw was found in the Linux kernel's nvme-pci driver. A race condition exists in the `nvme_poll_ir… | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43403 | Red Hat | medium | 7.0 | 0.0%
| | A flaw was found in the Linux kernel's `nsfs` component. This vulnerability allows privileged servic… | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43406 | Red Hat | medium | 7.0 | 0.0%
| | A flaw was found in libceph in the Linux kernel. A remote attacker could exploit this vulnerability … | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43412 | Red Hat | medium | — | 0.0%
| | A flaw was found in the Linux kernel's Advanced Linux Sound Architecture (ALSA) System on Chip (ASoC… | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43426 | Red Hat | medium | — | 0.0%
| | A flaw was found in the Linux kernel's `renesas_usbhs` driver. This vulnerability occurs during the … | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43449 | Red Hat | medium | 7.0 | 0.0%
| | No description is available for this CVE. | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43456 | Red Hat | medium | 7.0 | 0.0%
| | A flaw was found in the Linux kernel's bonding driver. When a non-Ethernet device, such as a Generic… | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43423 | Red Hat | medium | 7.0 | 0.0%
| | A flaw was found in the Linux kernel's USB Network Control Model (NCM) gadget driver. The ncm_set_al… | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43458 | Red Hat | medium | — | 0.0%
| | A flaw was found in the Linux kernel, specifically within the `caif_serial` line discipline. This vu… | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43470 | Red Hat | medium | 5.5 | 0.0%
| | A flaw was found in the Network File System (NFS) implementation within the Linux kernel. When direc… | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43434 | Red Hat | medium | — | 0.0%
| | A flaw was found in the `rust_binder` component of the Linux kernel. When installing or zapping page… | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43440 | Red Hat | medium | 7.0 | 0.0%
| | A flaw was found in the Linux kernel's `net/mana` network driver. An error in the `mana_gd_setup()` … | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43400 | Red Hat | medium | — | 0.0%
| | A flaw was found in the Linux kernel's `drm/amdgpu` module. A local user could exploit this vulnerab… | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43394 | Red Hat | medium | 5.5 | 0.0%
| | A flaw was found in the Linux kernel's nfsd component. The `nfsd_nl_listener_set_doit()` function fa… | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43361 | Red Hat | medium | 7.0 | 0.0%
| | A flaw was found in the Linux kernel's Btrfs filesystem. A malicious user can exploit this by repeat… | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43455 | Red Hat | medium | — | 0.0%
| | A flaw was found in the Linux kernel's Message Control Transport Protocol (MCTP) module. A race cond… | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43367 | Red Hat | medium | — | 0.0%
| | A flaw was found in the Linux kernel's drm/amd component. This vulnerability allows a local attacker… | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43422 | Red Hat | medium | — | 0.0%
| | A flaw was found in the Linux kernel's USB legacy NCM (Network Control Model) driver. This vulnerabi… | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43473 | Red Hat | medium | 7.0 | 0.0%
| | A flaw was found in the Linux kernel's mpi3mr SCSI driver. When the creation of reply or request que… | May 8, 2026 | May 8, 2026 |
| | CVE-2026-43387 | Red Hat | medium | — | 0.0%
| | A flaw was found in the Linux kernel's rtl8723bs Wi-Fi driver. This memory corruption vulnerability,… | May 8, 2026 | May 8, 2026 |
| | CVE-2026-42826 |  Microsoft | critical | 10.0 | 0.1%
| | Exposure of sensitive information to an unauthorized actor in Azure DevOps allows an unauthorized at… | May 7, 2026 | May 8, 2026 |
| | CVE-2026-35435 | Microsoft | high | 8.6 | 0.0%
| | Improper access control in Azure AI Foundry M365 published agents allows an unauthorized attacker to… | May 7, 2026 | May 8, 2026 |
| | CVE-2026-35428 | Microsoft | critical | 9.6 | 0.1%
| | Improper neutralization of special elements used in a command ('command injection') in Azure Cloud S… | May 7, 2026 | May 8, 2026 |
| | CVE-2026-34327 | Microsoft | high | 8.2 | 0.1%
| | Externally controlled reference to a resource in another sphere in Microsoft Partner Center allows a… | May 7, 2026 | May 8, 2026 |
| | CVE-2026-33844 | Microsoft | critical | 9.0 | 0.1%
| | Improper input validation in Azure Managed Instance for Apache Cassandra allows an authorized attack… | May 7, 2026 | May 8, 2026 |
| | CVE-2026-33823 | Microsoft | critical | 9.6 | 0.1%
| | Improper authorization in Microsoft Teams allows an authorized attacker to disclose information over… | May 7, 2026 | May 8, 2026 |
| | CVE-2026-33109 | Microsoft | critical | 9.9 | 0.1%
| | Improper access control in Azure Managed Instance for Apache Cassandra allows an authorized attacker… | May 7, 2026 | May 8, 2026 |
| | CVE-2026-32207 | Microsoft | high | 8.8 | 0.0%
| | Improper neutralization of input during web page generation ('cross-site scripting') in Azure Machin… | May 7, 2026 | May 8, 2026 |
| | CVE-2026-26164 | Microsoft | high | 7.5 | 0.1%
| | Improper neutralization of special elements in output used by a downstream component ('injection') i… | May 7, 2026 | May 8, 2026 |
| | CVE-2026-26129 | Microsoft | high | 7.5 | 0.1%
| | Improper neutralization of special elements in M365 Copilot allows an unauthorized attacker to discl… | May 7, 2026 | May 8, 2026 |
| | CVE-2026-41139 | Red Hat | high | 8.8 | 0.1%
| | A flaw was found in math.js, an extensive math library for JavaScript and Node.js. This vulnerabilit… | May 7, 2026 | May 7, 2026 |
| | CVE-2026-41004 |  VMware | medium | 4.4 | 0.0%
| | When enabling trace logging in Spring Cloud Config Server sensitive information was placed in plain … | May 7, 2026 | May 12, 2026 |
| | CVE-2026-41002 | VMware | high | 7.2 | 0.0%
| | The base directory (`spring.cloud.config.server.git.basedir`) used by the Spring Cloud Config Server… | May 7, 2026 | May 12, 2026 |
| | CVE-2026-40982 | VMware | critical | 9.1 | 0.1%
| | Spring Cloud Config allows applications to serve arbitrary text and binary files through the spring-… | May 7, 2026 | May 12, 2026 |
| | CVE-2026-40981 | VMware | high | 7.5 | 0.0%
| | When using Google Secrets Manager as a backend for the Spring Cloud Config server a client can craft… | May 7, 2026 | May 12, 2026 |
| | CVE-2026-20219 |  Cisco | medium | 5.4 | — | | A vulnerability in the REST API of Cisco Slido could have allowed an authenticated, remote attacker … | May 6, 2026 | May 6, 2026 |
| | CVE-2026-20195 | Cisco | medium | 5.3 | — | | A vulnerability in an identity management API endpoint of Cisco ISE could allow an unauthenticated, … | May 6, 2026 | May 6, 2026 |