| CVE-2026-6507 | Dnsmasq: dnsmasq: denial of service due to out-of-bounds write in dhcp bootreply processing | Red Hat | Red Hat Enterprise Linux 10 | High | 7.5 | 2026-04-17 12:23:32 | Deep Dive |
| CVE-2026-6494 | Aap-mcp-server: aap mcp server: log injection allows social engineering attacks via unsanitized input | Red Hat | Red Hat Ansible Automation Platform 2 | Medium | 5.3 | 2026-04-17 08:18:51 | Deep Dive |
| CVE-2026-40002 | ZTE Red Magic 11 Pro (NX809J) contains a vulnerability that allows non-privileged applications to trigger sensitive operations. | ZTE | Red Magic 11 Pro (NX809J) | Medium | 5.0 | 2026-04-17 07:40:58 | Deep Dive |
| CVE-2026-6388 | Argocd-image-updater: argocd image updater: cross-namespace privilege escalation via insufficient namespace validation | Red Hat | Red Hat OpenShift GitOps | Critical | 9.1 | 2026-04-15 21:34:07 | Deep Dive |
| CVE-2026-6385 | Ffmpeg: ffmpeg: denial of service and potential arbitrary code execution via signed integer overflow in dvd subtitle parser | Red Hat | Lightspeed Core | Medium | 6.5 | 2026-04-15 19:18:39 | Deep Dive |
| CVE-2026-6384 | Gimp: gimp: arbitrary code execution or denial of service via buffer overflow in gif image processing | Red Hat | Red Hat Enterprise Linux 6 | High | 7.3 | 2026-04-15 19:09:11 | Deep Dive |
| CVE-2026-40919 | Gimp: gimp: denial of service via specially crafted seattle filmworks file | Red Hat | Red Hat Enterprise Linux 6 | Medium | 6.1 | 2026-04-15 18:59:16 | Deep Dive |
| CVE-2026-40918 | Gimp: gimp: denial of service via crafted pvr image file | Red Hat | Red Hat Enterprise Linux 6 | Medium | 5.5 | 2026-04-15 18:59:15 | Deep Dive |
| CVE-2026-40917 | Gimp: gimp: application crashes or information disclosure via crafted icns image files | Red Hat | Red Hat Enterprise Linux 6 | Medium | 5.0 | 2026-04-15 18:59:09 | Deep Dive |
| CVE-2026-40916 | Gimp: gimp: denial of service due to stack buffer overflow in tim image loader | Red Hat | Red Hat Enterprise Linux 6 | Medium | 5.0 | 2026-04-15 18:58:58 | Deep Dive |
| CVE-2026-40915 | Gimp: gimp: heap buffer overflow due to integer overflow in fits image loader | Red Hat | Red Hat Enterprise Linux 6 | Medium | 5.5 | 2026-04-15 18:58:52 | Deep Dive |
| CVE-2026-6245 | Sssd: out-of-bounds read in the sssd | Red Hat | Red Hat Enterprise Linux 10 | Medium | 5.5 | 2026-04-15 18:35:19 | Deep Dive |
| CVE-2026-6383 | Kubevirt: kubevirt: unauthorized subresource access due to improper rbac evaluation | Red Hat | Red Hat OpenShift Virtualization 4 | Medium | 5.4 | 2026-04-15 18:22:31 | Deep Dive |
| CVE-2026-37980 | Org.keycloak.forms.login: keycloak: keycloak: arbitrary code execution via stored cross-site scripting (xss) in organization selection login page | Red Hat | Red Hat Build of Keycloak | Medium | 6.9 | 2026-04-14 14:54:43 | Deep Dive |
| CVE-2026-5483 | Odh-dashboard: odh dashboard kubernetes service account exposure | Red Hat | Red Hat OpenShift AI 2.16 | High | 8.5 | 2026-04-10 17:33:25 | Deep Dive |
| CVE-2026-1584 | Gnutls: gnutls: remote denial of service via crafted clienthello with invalid psk binder | Red Hat | Red Hat Enterprise Linux 10 | High | 7.5 | 2026-04-09 18:00:21 | Deep Dive |
| CVE-2026-4878 | Libcap: libcap: privilege escalation via toctou race condition in cap_set_file() | Red Hat | Red Hat Hardened Images | Medium | 6.7 | 2026-04-09 14:49:03 | Deep Dive |
| CVE-2026-32591 | Mirror-registry: quay: server-side request forgery in proxy cache upstream registry configuration | Red Hat | mirror registry for Red Hat OpenShift | Medium | 5.2 | 2026-04-08 17:06:58 | Deep Dive |
| CVE-2026-32590 | Mirror-registry: remote code execution using pickle deserialization | Red Hat | mirror registry for Red Hat OpenShift | High | 7.1 | 2026-04-08 17:04:23 | Deep Dive |
| CVE-2026-32589 | Mirror-registry: quay: insecure direct object reference in blobupload | Red Hat | mirror registry for Red Hat OpenShift | High | 7.1 | 2026-04-08 17:04:20 | Deep Dive |