| | CVE-2025-15538 |  Red Hat | medium | 5.3 | 0.0%
| | A security vulnerability has been detected in Open Asset Import Library Assimp up to 6.0.2. Affected… | Jan 18, 2026 | Jan 18, 2026 |
| | CVE-2025-15537 | Red Hat | medium | 5.3 | 0.0%
| | A security vulnerability has been detected in Mapnik up to 4.2.0. This issue affects the function ma… | Jan 18, 2026 | Jan 18, 2026 |
| | CVE-2025-15536 | Red Hat | medium | 5.3 | 0.0%
| | A weakness has been identified in BYVoid OpenCC up to 1.1.9. This vulnerability affects the function… | Jan 18, 2026 | Jan 18, 2026 |
| | CVE-2025-15534 | Red Hat | medium | 5.3 | 0.0%
| | A vulnerability was identified in raysan5 raylib up to 909f040. Affected by this issue is the functi… | Jan 18, 2026 | Jan 18, 2026 |
| | CVE-2025-15533 | Red Hat | medium | 5.3 | 0.0%
| | A vulnerability was determined in raysan5 raylib up to 909f040. Affected by this vulnerability is th… | Jan 18, 2026 | Jan 18, 2026 |
| | CVE-2026-21223 |  Microsoft | high | 7.1 | 0.0%
| | Improper privilege management in Microsoft Edge (Chromium-based) allows an authorized attacker to by… | Jan 16, 2026 | Feb 22, 2026 |
| | CVE-2026-20960 | Microsoft | high | 8.0 | 0.0%
| | Improper authorization in Microsoft Power Apps allows an authorized attacker to execute code over a … | Jan 16, 2026 | Feb 12, 2026 |
| | CVE-2026-23745 | Red Hat | high | 8.2 | 0.0%
| ✓ Fix | node-tar is a Tar for Node.js. The node-tar library (<= 7.5.2) fails to sanitize the linkpath of Lin… | Jan 16, 2026 | Jan 16, 2026 |
| | CVE-2021-47839 | Red Hat | high | — | 0.0%
| | Marky 0.0.1 contains a persistent cross-site scripting vulnerability that allows attackers to inject… | Jan 16, 2026 | Jan 16, 2026 |
| | CVE-2026-23490 | Red Hat | high | 7.5 | 0.0%
| ✓ Fix | pyasn1 is a generic ASN.1 library for Python. Prior to 0.6.2, a Denial-of-Service issue has been fou… | Jan 16, 2026 | Jan 16, 2026 |
| | CVE-2025-29943 | Red Hat | low | 3.2 | 0.0%
| | Write what were condition within AMD CPUs may allow an admin-privileged attacker to modify the confi… | Jan 16, 2026 | Jan 16, 2026 |
| | CVE-2026-0858 | Red Hat | medium | 6.1 | 0.0%
| | Versions of the package net.sourceforge.plantuml:plantuml before 1.2026.0 are vulnerable to Stored X… | Jan 16, 2026 | Jan 16, 2026 |
| | CVE-2025-24531 | Red Hat | medium | 6.7 | 0.0%
| | In OpenSC pam_pkcs11 before 0.6.13, pam_sm_authenticate() wrongly returns PAM_IGNORE in many error s… | Jan 16, 2026 | Jan 16, 2026 |
| | CVE-2025-62291 | Red Hat | high | 8.1 | 0.0%
| | In the eap-mschapv2 plugin (client-side) in strongSwan before 6.0.3, a malicious EAP-MSCHAPv2 server… | Jan 16, 2026 | Jan 16, 2026 |
| | CVE-2026-22045 | Red Hat | medium | 5.9 | 0.0%
| | Traefik is an HTTP reverse proxy and load balancer. Prior to 2.11.35 and 3.6.7, there is a potential… | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-0915 | Red Hat | medium | 5.3 | 0.0%
| ✓ Fix | Calling getnetbyaddr or getnetbyaddr_r with a configured nsswitch.conf that specifies the library's … | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-1002 | Red Hat | medium | 5.3 | 0.0%
| ✓ Fix | The Vert.x Web static handler component cache can be manipulated to deny the access to static files … | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2025-15265 | Red Hat | medium | 6.1 | 0.0%
| | An SSR XSS exists in async hydration when attacker‑controlled keys are passed to hydratable. The key… | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-23527 | Red Hat | high | 8.9 | 0.0%
| | H3 is a minimal H(TTP) framework built for high performance and portability. Prior to 1.15.5, there … | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-23766 | Red Hat | medium | — | — | | No description is available for this CVE. | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-22775 | Red Hat | high | 7.5 | 0.0%
| ✓ Fix | Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't… | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-22774 | Red Hat | high | 7.5 | 0.0%
| ✓ Fix | Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't… | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2025-9014 |  Check Point | high | 7.5 | 0.1%
| | A Null Pointer Dereference vulnerability exists in the referer header check of the web portal of TP-… | Jan 15, 2026 | Jan 30, 2026 |
| | CVE-2026-20076 |  Cisco | medium | 4.8 | 0.0%
| | A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could … | Jan 15, 2026 | Jan 30, 2026 |
| | CVE-2026-20075 | Cisco | medium | 4.8 | 0.0%
| | A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager … | Jan 15, 2026 | Jan 30, 2026 |
| | CVE-2026-20047 | Cisco | medium | 4.8 | 0.0%
| | A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) and Ci… | Jan 15, 2026 | Jan 30, 2026 |
| | CVE-2025-61973 | Microsoft | high | 8.8 | 0.0%
| | A local privilege escalation vulnerability exists during the installation of Epic Games Store via th… | Jan 15, 2026 | Jan 16, 2026 |
| | CVE-2026-0897 | Red Hat | high | 7.6 | 0.0%
| ✓ Fix | Allocation of Resources Without Limits or Throttling in the HDF5 weight loading component in Google … | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-0976 | Red Hat | low | 3.7 | 0.0%
| | A flaw was found in Keycloak. This improper input validation vulnerability occurs because Keycloak a… | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-0988 | Red Hat | low | 3.7 | 0.1%
| | A flaw was found in glib. Missing validation of offset and count parameters in the g_buffered_input_… | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-0989 | Red Hat | low | 3.7 | 0.0%
| | A flaw was identified in the RelaxNG parser of libxml2 related to how external schema inclusions are… | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-0990 | Red Hat | medium | 5.9 | 0.1%
| | A flaw was found in libxml2, an XML parsing library. This uncontrolled recursion vulnerability occur… | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-0992 | Red Hat | low | 2.9 | 0.0%
| | A flaw was found in the libxml2 library. This uncontrolled resource consumption vulnerability occurs… | Jan 15, 2026 | Jan 15, 2026 |
| | CVE-2026-0861 | Red Hat | low | 8.1 | 0.0%
| ✓ Fix | Passing too large an alignment to the memalign suite of functions (memalign, posix_memalign, aligned… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2026-0961 | Red Hat | medium | 5.5 | 0.0%
| | BLF file parser crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of service | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2026-0962 | Red Hat | medium | 5.3 | 0.0%
| | SOME/IP-SD protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2026-0960 | Red Hat | medium | 4.7 | 0.0%
| | HTTP3 protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.2 allows denial of service | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2026-0959 | Red Hat | medium | 5.3 | 0.0%
| | IEEE 802.11 protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial o… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2026-22036 | Red Hat | low | 3.7 | 0.0%
| | Undici is an HTTP/1.1 client for Node.js. Prior to 7.18.0 and 6.23.0, the number of links in the dec… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2026-22859 | Red Hat | high | 7.4 | 0.1%
| ✓ Fix | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, the URBDRC client … | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2026-22858 | Red Hat | high | 7.4 | 0.1%
| ✓ Fix | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, global-buffer-over… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2026-22857 | Red Hat | medium | 5.6 | 0.1%
| | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap use-after-f… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2026-22856 | Red Hat | medium | 8.1 | 0.1%
| | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a race in the seri… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2026-22855 | Red Hat | high | 7.4 | 0.1%
| ✓ Fix | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap out-of-boun… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2026-22854 | Red Hat | medium | 8.1 | 0.1%
| | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap-buffer-over… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2026-22853 | Red Hat | high | 8.1 | 0.1%
| ✓ Fix | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, RDPEAR’s NDR array… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2026-22852 | Red Hat | medium | 5.6 | 0.1%
| | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a malicious RDP se… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2026-22851 | Red Hat | medium | 5.0 | 0.1%
| | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a race condition b… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2025-66169 | Red Hat | medium | 5.3 | 0.0%
| | Cypher Injection vulnerability in Apache Camel camel-neo4j component.
This issue affects Apache Came… | Jan 14, 2026 | Jan 14, 2026 |
| | CVE-2026-0532 | Red Hat | high | 8.6 | 0.0%
| | External Control of File Name or Path (CWE-73) combined with Server-Side Request Forgery (CWE-918) c… | Jan 14, 2026 | Jan 14, 2026 |