| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-5165 | Virtio-win: virtio-win: memory corruption via use-after-free in virtio blk device reset | Red Hat | Red Hat Enterprise Linux 10 | Medium | 6.7 | 2026-03-30 15:02:26 | Deep Dive |
| CVE-2026-5164 | Virtio-win: virtio-win: denial of service via unvalidated descriptor count in unmap request | Red Hat | Red Hat Enterprise Linux 10 | Medium | 6.7 | 2026-03-30 15:02:22 | Deep Dive |
| CVE-2026-5121 | Libarchive: libarchive: arbitrary code execution via integer overflow in iso9660 image processing | Red Hat | Red Hat Enterprise Linux 7 Extended Lifecycle Support | High | 7.5 | 2026-03-30 07:47:29 | Deep Dive |
| CVE-2026-5119 | Libsoup: libsoup: information disclosure via cleartext transmission of cookies during https tunnel establishment | Red Hat | Red Hat Enterprise Linux 10 | Medium | 5.9 | 2026-03-30 05:35:57 | Deep Dive |
| CVE-2026-28369 | Undertow: undertow: request smuggling via malformed http request headers | Red Hat | Red Hat build of Apache Camel for Spring Boot 4 | High | 8.7 | 2026-03-27 16:13:06 | Deep Dive |
| CVE-2026-28367 | Undertow: undertow: request smuggling via `\r\r\r` as a header block terminator | Red Hat | Red Hat build of Apache Camel for Spring Boot 4 | High | 8.7 | 2026-03-27 16:13:05 | Deep Dive |
| CVE-2026-28368 | Undertow: undertow: request smuggling via inconsistent header parsing | Red Hat | Red Hat build of Apache Camel for Spring Boot 4 | High | 8.7 | 2026-03-27 16:13:04 | Deep Dive |
| CVE-2026-4948 | Firewalld: firewalld: local unprivileged user can modify firewall state due to d-bus setter mis-authorization | Red Hat | Red Hat Enterprise Linux 10 | Medium | 5.5 | 2026-03-27 05:30:24 | Deep Dive |
| CVE-2025-12805 | Llama-stack-k8s-operator: llama stack service exposed across namespaces due to missing networkpolicy | Red Hat | Red Hat OpenShift AI 2.25 | High | 8.1 | 2026-03-26 21:48:17 | Deep Dive |
| CVE-2026-0965 | Libssh: libssh: denial of service via improper configuration file handling | Red Hat | Red Hat Enterprise Linux 10 | 低危 | - | 2026-03-26 20:06:33 | Deep Dive |
| CVE-2026-0967 | Libssh: libssh: denial of service via inefficient regular expression processing | Red Hat | Red Hat Enterprise Linux 10 | 低危 | - | 2026-03-26 20:06:31 | Deep Dive |
| CVE-2026-0968 | Libssh: libssh: denial of service due to malformed sftp message | Red Hat | Red Hat Enterprise Linux 10 | Low | 3.1 | 2026-03-26 20:06:30 | Deep Dive |
| CVE-2026-0964 | Libssh: improper sanitation of paths received from scp servers | Red Hat | Red Hat Enterprise Linux 10 | 中危 | - | 2026-03-26 20:06:29 | Deep Dive |
| CVE-2026-0966 | Libssh: buffer underflow in ssh_get_hexa() on invalid input | Red Hat | Red Hat Hardened Images | - | - | 2026-03-26 20:06:28 | Deep Dive |
| CVE-2026-2100 | P11-kit: null dereference via c_derivekey with specific null parameters | Red Hat | Red Hat Hardened Images | Medium | 5.3 | 2026-03-26 20:01:46 | Deep Dive |
| CVE-2026-2239 | Gimp: gimp: application crash (dos) via crafted psd file due to heap-buffer-overflow | Red Hat | Red Hat Enterprise Linux 7 | Low | 2.8 | 2026-03-26 20:00:29 | Deep Dive |
| CVE-2026-2272 | Gimp: gimp: memory corruption due to integer overflow in ico file handling | Red Hat | Red Hat Enterprise Linux 6 | Medium | 4.3 | 2026-03-26 20:00:10 | Deep Dive |
| CVE-2026-2271 | Gimp: gimp: denial of service via crafted psp image file | Red Hat | Red Hat Enterprise Linux 6 | Low | 3.3 | 2026-03-26 20:00:09 | Deep Dive |
| CVE-2026-2436 | Libsoup: libsoup: denial of service via use-after-free in soupserver during tls handshake | Red Hat | Red Hat Enterprise Linux 10 | Medium | 6.5 | 2026-03-26 19:31:34 | Deep Dive |
| CVE-2026-3121 | Keycloak: org.keycloak/keycloak-services: keycloak: privilege escalation via manage-clients permission | Red Hat | Red Hat build of Keycloak 26.4 | Medium | 6.5 | 2026-03-26 19:13:26 | Deep Dive |