| CVE-2025-59894 | Cross-Site request forgery (CSRF) vulnerability in Sync Breeze Enterprise Server | Flexense | Sync Breeze Enterprise Server | - | - | 2026-01-28 11:53:24 | Deep Dive |
| CVE-2025-59893 | Cross-Site request forgery (CSRF) vulnerability in Sync Breeze Enterprise Server | Flexense | Sync Breeze Enterprise Server | - | - | 2026-01-28 11:52:52 | Deep Dive |
| CVE-2025-59892 | Cross-Site request forgery (CSRF) vulnerability in Sync Breeze Enterprise Server | Flexense | Sync Breeze Enterprise Server | - | - | 2026-01-28 11:52:36 | Deep Dive |
| CVE-2025-59891 | Cross-Site request forgery (CSRF) vulnerability in Sync Breeze Enterprise Server | Flexense | Sync Breeze Enterprise Server | - | - | 2026-01-28 11:52:16 | Deep Dive |
| CVE-2026-23593 | Unauthenticated Limited File Read allows Data Exposure in Web Interface | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking Fabric Composer | High | 7.5 | 2026-01-27 17:58:36 | Deep Dive |
| CVE-2026-23592 | Insecure File Handling allows Remote Code Execution in Backup Functionality | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking Fabric Composer | High | 7.2 | 2026-01-27 17:57:57 | Deep Dive |
| CVE-2026-1489 | Glib: glib: memory corruption via integer overflow in unicode case conversion | Red Hat | Red Hat Enterprise Linux 10 | Medium | 5.4 | 2026-01-27 14:26:48 | Deep Dive |
| CVE-2026-1485 | Glib: glib: local denial of service via buffer underflow in content type parsing | Red Hat | Red Hat Enterprise Linux 10 | Low | 2.8 | 2026-01-27 13:43:18 | Deep Dive |
| CVE-2026-1484 | Glib: integer overflow leading to buffer underflow and out-of-bounds write in glib g_base64_encode() | Red Hat | Red Hat Enterprise Linux 10 | Medium | 4.2 | 2026-01-27 13:41:54 | Deep Dive |
| CVE-2026-1467 | Libsoup: libsoup: http header injection via specially crafted urls when an http proxy is configured | Red Hat | Red Hat Enterprise Linux 10 | Medium | 5.8 | 2026-01-27 09:17:45 | Deep Dive |
| CVE-2026-21721 | Dashboard Permissions Scope Bypass Enables Cross‑Dashboard Privilege Escalation | Grafana | grafana/grafana | High | 8.1 | 2026-01-27 09:07:55 | Deep Dive |
| CVE-2026-21720 | Unauthenticated DoS: avatar cache leaks goroutines when /avatar/:hash requests time out | Grafana | grafana/grafana-enterprise | High | 7.5 | 2026-01-27 09:07:05 | Deep Dive |
| CVE-2025-9820 | Gnutls: stack-based buffer overflow in gnutls_pkcs11_token_init() function | Red Hat | Red Hat Enterprise Linux 10 | Medium | 4.0 | 2026-01-26 19:58:33 | Deep Dive |
| CVE-2025-9615 | Networkmanager: networkmanager file access | Red Hat | Red Hat Enterprise Linux 10 | - | - | 2026-01-26 19:58:17 | Deep Dive |
| CVE-2026-1190 | Org.keycloak/keycloak-services: keycloak saml brokering: response delay due to unchecked notonorafter in subjectconfirmationdata | Red Hat | Red Hat build of Keycloak 26.4 | Low | 3.1 | 2026-01-26 19:36:54 | Deep Dive |
| CVE-2026-0810 | Gix-date: gix-date: undefined behavior due to invalid string generation | GitoxideLabs | gitoxide | High | 7.1 | 2026-01-26 19:36:46 | Deep Dive |
| CVE-2025-14969 | Hibernate-reactive-core: hibernate reactive: denial of service due to connection leak on http client disconnect | Red Hat | Red Hat build of Quarkus 3.27.2 | Medium | 4.3 | 2026-01-26 19:36:40 | Deep Dive |
| CVE-2025-11065 | Github.com/go-viper/mapstructure/v2: go-viper's mapstructure may leak sensitive information in logs in github.com/go-viper/mapstructure | - | - | Medium | 5.3 | 2026-01-26 19:36:29 | Deep Dive |
| CVE-2026-21509 | Microsoft Office Security Feature Bypass Vulnerability | Microsoft | Microsoft 365 Apps for Enterprise | High | 7.8 | 2026-01-26 17:06:36 | Deep Dive |
| CVE-2021-47903 | LiteSpeed Web Server Enterprise 5.4.11 - Command Injection | LiteSpeed Technologies Inc | LiteSpeed Web Server Enterprise | High | 8.8 | 2026-01-23 16:47:43 | Deep Dive |