| CVE-2026-3190 | Keycloak: keycloak: information disclosure via improper role enforcement in uma 2.0 protection api | Red Hat | Red Hat build of Keycloak 26.4 | Medium | 4.3 | 2026-03-26 19:12:38 | Deep Dive |
| CVE-2026-4897 | Polkit: polkit: denial of service via unbounded input processing through standard input | Red Hat | Red Hat Enterprise Linux 10 | Medium | 5.5 | 2026-03-26 14:56:06 | Deep Dive |
| CVE-2026-1961 | Forman: foreman: remote code execution via command injection in websocket proxy | Red Hat | Red Hat Satellite 6.16 for RHEL 8 | High | 8.0 | 2026-03-26 12:53:10 | Deep Dive |
| CVE-2026-4887 | Gimp: gimp:memory disclosure and denial of service via specially crafted pcx image | Red Hat | Red Hat Enterprise Linux 6 | Medium | 6.1 | 2026-03-26 12:08:47 | Deep Dive |
| CVE-2026-4874 | Org.keycloak.protocol.oidc.grants: org.keycloak.services.managers: keycloak: server-side request forgery via oidc token endpoint manipulation | Red Hat | Red Hat Build of Keycloak | Low | 3.1 | 2026-03-26 07:12:38 | Deep Dive |
| CVE-2026-4775 | Libtiff: libtiff: arbitrary code execution or denial of service via signed integer overflow in tiff file processing | Red Hat | Red Hat Enterprise Linux 10 | High | 7.8 | 2026-03-24 14:42:48 | Deep Dive |
| CVE-2026-3260 | Undertow: undertow: denial of service due to premature multipart/form-data parsing in get requests | Red Hat | Red Hat build of Apache Camel for Spring Boot 4 | Medium | 5.9 | 2026-03-24 04:11:16 | Deep Dive |
| CVE-2026-1940 | Gstreamer: incomplete fix of cve-2026-1940 | Red Hat | Red Hat Enterprise Linux 10 | Medium | 5.1 | 2026-03-23 21:26:15 | Deep Dive |
| CVE-2026-4647 | Binutils: out-of-bounds read in xcoff relocation processing in gnu binutils bfd library | Red Hat | Red Hat Enterprise Linux 10 | Medium | 6.1 | 2026-03-23 13:37:44 | Deep Dive |
| CVE-2026-4633 | Keycloak: keycloak: user enumeration via differential error messages | Red Hat | Red Hat Build of Keycloak | Low | 3.7 | 2026-03-23 10:53:36 | Deep Dive |
| CVE-2026-4628 | Keycloak: org.keycloak.authorization: keycloak: unauthorized resource modification due to improper access control | Red Hat | Red Hat Build of Keycloak | Medium | 4.3 | 2026-03-23 08:09:22 | Deep Dive |
| CVE-2026-23536 | Feast: unauthenticated arbitrary file read | Red Hat | Red Hat OpenShift AI (RHOAI) | High | 7.5 | 2026-03-20 21:58:47 | Deep Dive |
| CVE-2026-2369 | Libsoup: libsoup: buffer overread due to integer underflow when handling zero-length resources | Red Hat | Red Hat Enterprise Linux 10 | Medium | 6.5 | 2026-03-19 14:20:27 | Deep Dive |
| CVE-2026-4426 | Libarchive: libarchive: denial of service via malformed iso file processing | Red Hat | Red Hat Enterprise Linux 10 | Medium | 6.5 | 2026-03-19 13:53:39 | Deep Dive |
| CVE-2026-4424 | Libarchive: libarchive: information disclosure via heap out-of-bounds read in rar archive processing | Red Hat | Red Hat Enterprise Linux 10 | High | 7.5 | 2026-03-19 13:50:27 | Deep Dive |
| CVE-2026-4366 | Keycloak-services: blind server-side request forgery (ssrf) via http redirect handling in keycloak | Red Hat | Red Hat Build of Keycloak | Medium | 5.8 | 2026-03-18 04:03:00 | Deep Dive |
| CVE-2026-2575 | Keycloak: keycloak: denial of service due to excessive samlrequest decompression | Red Hat | Red Hat build of Keycloak 26.4 | Medium | 5.3 | 2026-03-18 03:19:10 | Deep Dive |
| CVE-2026-2603 | Keycloak: keycloak: unauthorized authentication via disabled saml identity provider | Red Hat | Red Hat build of Keycloak 26.2 | High | 8.1 | 2026-03-18 01:14:54 | Deep Dive |
| CVE-2026-2092 | Keycloak-services: keycloak: unauthorized access via improper validation of encrypted saml assertions | Red Hat | Red Hat build of Keycloak 26.2 | High | 7.7 | 2026-03-18 01:14:48 | Deep Dive |
| CVE-2026-4324 | Rubygem-katello: katello: denial of service and potential information disclosure via sql injection | Red Hat | Red Hat Satellite 6.17 for RHEL 9 | Medium | 5.4 | 2026-03-17 13:52:15 | Deep Dive |