| | CVE-2026-32883 | Red Hat | medium | 6.8 | 0.0%
| | Botan is a C++ cryptography library. From version 3.0.0 to before version 3.11.0, during X509 path v… | Mar 30, 2026 | Mar 30, 2026 |
| | CVE-2026-32884 | Red Hat | medium | 6.5 | 0.0%
| | A flaw was found in Botan, a C++ cryptography library. During the processing of X.509 certificate pa… | Mar 30, 2026 | Mar 30, 2026 |
| | CVE-2026-21710 | Red Hat | high | 7.5 | 0.0%
| ✓ Fix | A flaw in Node.js HTTP request handling causes an uncaught `TypeError` when a request is received wi… | Mar 30, 2026 | Mar 30, 2026 |
| | CVE-2026-21715 | Red Hat | low | 3.3 | 0.0%
| ✓ Fix | A flaw in Node.js Permission Model filesystem enforcement leaves `fs.realpathSync.native()` without … | Mar 30, 2026 | Mar 30, 2026 |
| | CVE-2026-21716 | Red Hat | low | 3.8 | 0.0%
| ✓ Fix | An incomplete fix for CVE-2024-36137 leaves `FileHandle.chmod()` and `FileHandle.chown()` in the pro… | Mar 30, 2026 | Mar 30, 2026 |
| | CVE-2026-21711 | Red Hat | medium | 5.2 | 0.0%
| ✓ Fix | A flaw in Node.js Permission Model network enforcement leaves Unix Domain Socket (UDS) server operat… | Mar 30, 2026 | Mar 30, 2026 |
| | CVE-2026-21713 | Red Hat | medium | 5.9 | 0.0%
| ✓ Fix | A flaw in Node.js HMAC verification uses a non-constant-time comparison when validating user-provide… | Mar 30, 2026 | Mar 30, 2026 |
| | CVE-2026-21714 | Red Hat | medium | 5.3 | 0.0%
| ✓ Fix | A memory leak occurs in Node.js HTTP/2 servers when a client sends WINDOW_UPDATE frames on stream 0 … | Mar 30, 2026 | Mar 30, 2026 |
| | CVE-2026-21717 | Red Hat | medium | 5.9 | 0.0%
| ✓ Fix | A flaw in V8's string hashing mechanism causes integer-like strings to be hashed to their numeric va… | Mar 30, 2026 | Mar 30, 2026 |
| | CVE-2026-34714 | Red Hat | high | 8.6 | — | | A flaw was found in Vim. This vulnerability allows an attacker to execute malicious code on a user's… | Mar 30, 2026 | Mar 30, 2026 |
| | CVE-2026-4046 | Red Hat | high | 7.5 | — | | A flaw was found in glibc, the GNU C Library. A remote attacker could exploit this vulnerability by … | Mar 30, 2026 | Mar 30, 2026 |
| | CVE-2025-66215 | Red Hat | low | 3.8 | — | | A flaw was found in OpenSC, an open-source smart card tool and middleware. An attacker with physical… | Mar 30, 2026 | Mar 30, 2026 |
| | CVE-2025-66038 | Red Hat | low | 3.9 | — | | A flaw was found in OpenSC, an open-source smart card tools and middleware. The `sc_compacttlv_find_… | Mar 30, 2026 | Mar 30, 2026 |
| | CVE-2025-66037 | Red Hat | low | 3.9 | — | | A flaw was found in OpenSC, an open-source smart card tools and middleware. An attacker could exploi… | Mar 30, 2026 | Mar 30, 2026 |
| | CVE-2025-49010 | Red Hat | low | 3.8 | — | | A flaw was found in OpenSC, an open source smart card tools and middleware. An attacker with physica… | Mar 30, 2026 | Mar 30, 2026 |
| | CVE-2026-21712 | Red Hat | medium | 6.5 | 0.0%
| ✓ Fix | A flaw in Node.js URL processing causes an assertion failure in native code when `url.format()` is c… | Mar 30, 2026 | Mar 30, 2026 |
| | CVE-2026-5164 | Red Hat | medium | 6.7 | — | | A flaw was found in virtio-win. The `RhelDoUnMap()` function does not properly validate the number o… | Mar 30, 2026 | Mar 30, 2026 |
| | CVE-2026-5165 | Red Hat | medium | 6.7 | — | | A flaw was found in virtio-win, specifically within the VirtIO Block (BLK) device. When the device u… | Mar 30, 2026 | Mar 30, 2026 |
| | CVE-2026-5121 | Red Hat | medium | — | 0.1%
| | A flaw was found in libarchive. On 32-bit systems, an integer overflow vulnerability exists in the z… | Mar 30, 2026 | Mar 30, 2026 |
| | CVE-2025-15379 | Red Hat | high | 9.0 | 0.3%
| | A command injection vulnerability exists in MLflow's model serving container initialization code, sp… | Mar 30, 2026 | Mar 30, 2026 |
| | CVE-2026-5119 | Red Hat | medium | 5.9 | 0.0%
| | A flaw was found in libsoup. When establishing HTTPS tunnels through a configured HTTP proxy, sensit… | Mar 30, 2026 | Mar 30, 2026 |
| | CVE-2026-5107 | Red Hat | medium | 4.2 | 0.0%
| | A flaw was found in frr package. This vulnerability, located in the EVPN Type-2 Route Handler functi… | Mar 30, 2026 | Mar 30, 2026 |
| | CVE-2025-15036 | Red Hat | high | 9.6 | 0.1%
| | A flaw was found in mlflow. A path traversal vulnerability exists in the `extract_archive_to_dir` fu… | Mar 30, 2026 | Mar 30, 2026 |
| | CVE-2026-2370 | Red Hat | high | 8.1 | 0.0%
| | GitLab has remediated an issue in GitLab CE/EE affecting all versions from 14.3 before 18.8.7, 18.9 … | Mar 29, 2026 | Mar 29, 2026 |
| | CVE-2026-4176 | Red Hat | medium | 7.0 | 0.0%
| | Perl versions from 5.9.4 before 5.40.4-RC1, from 5.41.0 before 5.42.2-RC1, from 5.43.0 before 5.43.9… | Mar 29, 2026 | Mar 29, 2026 |
| | CVE-2026-23400 | Red Hat | medium | — | — | | A flaw was found in the Linux kernel's rust_binder component. A local user could potentially trigger… | Mar 29, 2026 | Mar 29, 2026 |
| | CVE-2026-20643 | Red Hat | medium | 5.4 | 0.0%
| ✓ Fix | A cross-origin issue in the Navigation API was addressed with improved input validation. This issue … | Mar 28, 2026 | Mar 28, 2026 |
| | CVE-2026-20664 | Red Hat | high | 8.8 | 0.0%
| ✓ Fix | The issue was addressed with improved memory handling. This issue is fixed in Safari 26.4, iOS 26.4 … | Mar 28, 2026 | Mar 28, 2026 |
| | CVE-2026-20665 | Red Hat | medium | 5.4 | 0.2%
| ✓ Fix | This issue was addressed through improved state management. This issue is fixed in Safari 26.4, iOS … | Mar 28, 2026 | Mar 28, 2026 |
| | CVE-2026-20691 | Red Hat | medium | 4.3 | 0.0%
| ✓ Fix | An authorization issue was addressed with improved state management. This issue is fixed in Safari 2… | Mar 28, 2026 | Mar 28, 2026 |
| | CVE-2026-28857 | Red Hat | high | 8.8 | 0.0%
| ✓ Fix | The issue was addressed with improved memory handling. This issue is fixed in Safari 26.4, iOS 26.4 … | Mar 28, 2026 | Mar 28, 2026 |
| | CVE-2026-28859 | Red Hat | high | 8.8 | 0.0%
| ✓ Fix | The issue was addressed with improved memory handling. This issue is fixed in Safari 26.4, iOS 26.4 … | Mar 28, 2026 | Mar 28, 2026 |
| | CVE-2026-28861 | Red Hat | high | 4.3 | 0.0%
| | A logic issue was addressed with improved state management. This issue is fixed in Safari 26.4, iOS … | Mar 28, 2026 | Mar 28, 2026 |
| | CVE-2026-28871 | Red Hat | medium | 4.3 | 0.0%
| ✓ Fix | A logic issue was addressed with improved checks. This issue is fixed in Safari 26.4, iOS 18.7.7 and… | Mar 28, 2026 | Mar 28, 2026 |
| | CVE-2026-23399 | Red Hat | low | 5.5 | 0.0%
| | In the Linux kernel, the following vulnerability has been resolved:
nf_tables: nft_dynset: fix possi… | Mar 28, 2026 | Mar 28, 2026 |
| | CVE-2026-33996 | Red Hat | medium | 5.9 | 0.0%
| | LibJWT is a C JSON Web Token Library. Starting in version 3.0.0 and prior to version 3.3.0, the JWK … | Mar 27, 2026 | Mar 27, 2026 |
| | CVE-2026-33994 | Red Hat | medium | 5.3 | 0.1%
| | Locutus brings stdlibs of other programming languages to JavaScript for educational purposes. Starti… | Mar 27, 2026 | Mar 27, 2026 |
| | CVE-2026-33993 | Red Hat | medium | 5.3 | 0.1%
| | Locutus brings stdlibs of other programming languages to JavaScript for educational purposes. Prior … | Mar 27, 2026 | Mar 27, 2026 |
| | CVE-2026-33936 | Red Hat | medium | 5.3 | 0.1%
| | The `ecdsa` PyPI package is a pure Python implementation of ECC (Elliptic Curve Cryptography) with s… | Mar 27, 2026 | Mar 27, 2026 |
| | CVE-2026-34226 | Red Hat | high | 7.5 | 0.1%
| | Happy DOM is a JavaScript implementation of a web browser without its graphical user interface. Vers… | Mar 27, 2026 | Mar 27, 2026 |
| | CVE-2026-32187 | Microsoft | medium | 4.2 | 0.1%
| | Microsoft Edge (Chromium-based) Defense in Depth Vulnerability | Mar 27, 2026 | Mar 31, 2026 |
| | CVE-2026-33943 | Red Hat | high | 8.8 | 0.1%
| | Happy DOM is a JavaScript implementation of a web browser without its graphical user interface. In v… | Mar 27, 2026 | Mar 27, 2026 |
| | CVE-2026-33941 | Red Hat | high | 8.2 | 0.0%
| | Handlebars provides the power necessary to let users build semantic templates. In versions 4.0.0 thr… | Mar 27, 2026 | Mar 27, 2026 |
| | CVE-2026-33940 | Red Hat | high | 8.1 | 0.0%
| | Handlebars provides the power necessary to let users build semantic templates. In versions 4.0.0 thr… | Mar 27, 2026 | Mar 27, 2026 |
| | CVE-2026-33939 | Red Hat | high | 7.5 | 0.0%
| | Handlebars provides the power necessary to let users build semantic templates. In versions 4.0.0 thr… | Mar 27, 2026 | Mar 27, 2026 |
| | CVE-2026-33938 | Red Hat | high | 8.1 | 0.1%
| | Handlebars provides the power necessary to let users build semantic templates. In versions 4.0.0 thr… | Mar 27, 2026 | Mar 27, 2026 |
| | CVE-2026-33937 | Red Hat | high | 9.8 | 0.3%
| | Handlebars provides the power necessary to let users build semantic templates. In versions 4.0.0 thr… | Mar 27, 2026 | Mar 27, 2026 |
| | CVE-2026-33916 | Red Hat | medium | 4.7 | 0.0%
| | Handlebars provides the power necessary to let users build semantic templates. In versions 4.0.0 thr… | Mar 27, 2026 | Mar 27, 2026 |
| | CVE-2026-33896 | Red Hat | high | 7.4 | 0.0%
| | Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScrip… | Mar 27, 2026 | Mar 27, 2026 |
| | CVE-2026-33895 | Red Hat | high | 7.5 | 0.0%
| | Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScrip… | Mar 27, 2026 | Mar 27, 2026 |