浏览 301+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。
| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-5367 | Ovn: ovn: information disclosure via crafted dhcpv6 packets | Red Hat | Fast Datapath for RHEL 7 | High | 8.6 | 2026-04-24 12:25:05 | Deep Dive |
| CVE-2026-6732 | Libxml2: libxml2: denial of service via crafted xsd-validated document | Red Hat | Red Hat Enterprise Linux 10 | Medium | 6.5 | 2026-04-23 22:19:34 | Deep Dive |
| CVE-2026-6862 | Efivar: efivar: denial of service due to stack overflow in device path node parsing | Red Hat | Red Hat Enterprise Linux 10 | Medium | 5.5 | 2026-04-22 13:45:46 | Deep Dive |
| CVE-2026-6846 | Binutils: binutils: arbitrary code execution via malformed xcoff object file processing | Red Hat | Red Hat Enterprise Linux 10 | High | 7.8 | 2026-04-22 08:37:14 | Deep Dive |
| CVE-2026-6844 | Binutils: binutils: denial of service vulnerabilities in readelf via crafted elf files | Red Hat | Red Hat Enterprise Linux 10 | Medium | 5.5 | 2026-04-22 08:37:10 | Deep Dive |
| CVE-2026-6843 | Nano: nano: format string vulnerability leads to denial of service | Red Hat | Red Hat Enterprise Linux 10 | Medium | 5.5 | 2026-04-22 08:30:05 | Deep Dive |
| CVE-2026-6845 | Binutils: binutils: denial of service via crafted elf file | Red Hat | Red Hat Enterprise Linux 10 | Medium | 5.0 | 2026-04-22 07:54:19 | Deep Dive |
| CVE-2026-6842 | Nano: nano: local attacker can inject malicious .desktop launcher due to insecure directory permissions | Red Hat | Red Hat Enterprise Linux 10 | Low | 2.5 | 2026-04-22 07:34:26 | Deep Dive |
| CVE-2026-6507 | Dnsmasq: dnsmasq: denial of service due to out-of-bounds write in dhcp bootreply processing | Red Hat | Red Hat Enterprise Linux 10 | High | 7.5 | 2026-04-17 12:23:32 | Deep Dive |
| CVE-2026-6388 | Argocd-image-updater: argocd image updater: cross-namespace privilege escalation via insufficient namespace validation | Red Hat | Red Hat OpenShift GitOps | Critical | 9.1 | 2026-04-15 21:34:07 | Deep Dive |
| CVE-2026-6385 | Ffmpeg: ffmpeg: denial of service and potential arbitrary code execution via signed integer overflow in dvd subtitle parser | Red Hat | Lightspeed Core | Medium | 6.5 | 2026-04-15 19:18:39 | Deep Dive |
| CVE-2026-6245 | Sssd: out-of-bounds read in the sssd | Red Hat | Red Hat Enterprise Linux 10 | Medium | 5.5 | 2026-04-15 18:35:19 | Deep Dive |
| CVE-2026-6383 | Kubevirt: kubevirt: unauthorized subresource access due to improper rbac evaluation | Red Hat | Red Hat OpenShift Virtualization 4 | Medium | 5.4 | 2026-04-15 18:22:31 | Deep Dive |
| CVE-2026-5483 | Odh-dashboard: odh dashboard kubernetes service account exposure | Red Hat | Red Hat OpenShift AI 2.16 | High | 8.5 | 2026-04-10 17:33:25 | Deep Dive |
| CVE-2026-1584 | Gnutls: gnutls: remote denial of service via crafted clienthello with invalid psk binder | Red Hat | Red Hat Enterprise Linux 10 | High | 7.5 | 2026-04-09 18:00:21 | Deep Dive |
| CVE-2026-4878 | Libcap: libcap: privilege escalation via toctou race condition in cap_set_file() | Red Hat | Red Hat Hardened Images | Medium | 6.7 | 2026-04-09 14:49:03 | Deep Dive |
| CVE-2026-32591 | Mirror-registry: quay: server-side request forgery in proxy cache upstream registry configuration | Red Hat | mirror registry for Red Hat OpenShift | Medium | 5.2 | 2026-04-08 17:06:58 | Deep Dive |
| CVE-2026-32590 | Mirror-registry: remote code execution using pickle deserialization | Red Hat | mirror registry for Red Hat OpenShift | High | 7.1 | 2026-04-08 17:04:23 | Deep Dive |
| CVE-2026-32589 | Mirror-registry: quay: insecure direct object reference in blobupload | Red Hat | mirror registry for Red Hat OpenShift | High | 7.1 | 2026-04-08 17:04:20 | Deep Dive |
| CVE-2026-2377 | Mirror-registry: quay: quay: server-side request forgery via log export functionality | Red Hat | mirror registry for Red Hat OpenShift | Medium | 6.5 | 2026-04-08 16:26:08 | Deep Dive |