| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-41726 | Beckhoff: Arbitrary code execution within privileged processes | Beckhoff Automation | Beckhoff.Device.Manager.XAR | High | 8.8 | 2026-01-27 11:35:37 | Deep Dive |
| CVE-2026-1467 | Libsoup: libsoup: http header injection via specially crafted urls when an http proxy is configured | Red Hat | Red Hat Enterprise Linux 10 | Medium | 5.8 | 2026-01-27 09:17:45 | Deep Dive |
| CVE-2025-9820 | Gnutls: stack-based buffer overflow in gnutls_pkcs11_token_init() function | Red Hat | Red Hat Enterprise Linux 10 | Medium | 4.0 | 2026-01-26 19:58:33 | Deep Dive |
| CVE-2025-9615 | Networkmanager: networkmanager file access | Red Hat | Red Hat Enterprise Linux 10 | - | - | 2026-01-26 19:58:17 | Deep Dive |
| CVE-2026-0810 | Gix-date: gix-date: undefined behavior due to invalid string generation | GitoxideLabs | gitoxide | High | 7.1 | 2026-01-26 19:36:46 | Deep Dive |
| CVE-2025-11065 | Github.com/go-viper/mapstructure/v2: go-viper's mapstructure may leak sensitive information in logs in github.com/go-viper/mapstructure | - | - | Medium | 5.3 | 2026-01-26 19:36:29 | Deep Dive |
| CVE-2026-23013 | net: octeon_ep_vf: fix free_irq dev_id mismatch in IRQ rollback | Linux | Linux | High | 7.0 | 2026-01-25 14:36:26 | Deep Dive |
| CVE-2026-23012 | mm/damon/core: remove call_control in inactive contexts | Linux | Linux | 中危 | - | 2026-01-25 14:36:25 | Deep Dive |
| CVE-2026-23011 | ipv4: ip_gre: make ipgre_header() robust | Linux | Linux | 中危 | - | 2026-01-25 14:36:24 | Deep Dive |
| CVE-2026-23010 | ipv6: Fix use-after-free in inet6_addr_del(). | Linux | Linux | High | 7.8 | 2026-01-25 14:36:24 | Deep Dive |
| CVE-2026-23009 | xhci: sideband: don't dereference freed ring when removing sideband endpoint | Linux | Linux | 中危 | - | 2026-01-25 14:36:23 | Deep Dive |
| CVE-2026-23008 | drm/vmwgfx: Fix KMS with 3D on HW version 10 | Linux | Linux | 中危 | - | 2026-01-25 14:36:22 | Deep Dive |
| CVE-2026-23007 | block: zero non-PI portion of auto integrity buffer | Linux | Linux | 中危 | - | 2026-01-25 14:36:21 | Deep Dive |
| CVE-2026-23006 | ASoC: tlv320adcx140: fix null pointer | Linux | Linux | 中危 | - | 2026-01-25 14:36:20 | Deep Dive |
| CVE-2026-23005 | x86/fpu: Clear XSTATE_BV[i] in guest XSAVE state whenever XFD[i]=1 | Linux | Linux | 中危 | - | 2026-01-25 14:36:19 | Deep Dive |
| CVE-2026-23004 | dst: fix races in rt6_uncached_list_del() and rt_del_uncached_list() | Linux | Linux | High | 7.8 | 2026-01-25 14:36:18 | Deep Dive |
| CVE-2026-23003 | ip6_tunnel: use skb_vlan_inet_prepare() in __ip6_tnl_rcv() | Linux | Linux | High | 7.5 | 2026-01-25 14:36:17 | Deep Dive |
| CVE-2026-23002 | lib/buildid: use __kernel_read() for sleepable context | Linux | Linux | 中危 | - | 2026-01-25 14:36:17 | Deep Dive |
| CVE-2026-23001 | macvlan: fix possible UAF in macvlan_forward_source() | Linux | Linux | High | 7.8 | 2026-01-25 14:36:16 | Deep Dive |
| CVE-2026-23000 | net/mlx5e: Fix crash on profile change rollback failure | Linux | Linux | 中危 | - | 2026-01-25 14:36:15 | Deep Dive |