VIR Vulnerability Intelligence Relay

Search

Found 5,040 results in 771ms · Match type: Filtered list

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2026-2762 high 8.0 FIX rocky rheldebian debian 3mo ago Integer overflow in the JavaScript: Standard Library component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8.
CVE-2026-2761 high 8.0 FIX rocky rheldebian debian 3mo ago Sandbox escape in the Graphics: WebRender component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8.
CVE-2026-2760 high 8.0 FIX rocky rheldebian debian 3mo ago Sandbox escape due to incorrect boundary conditions in the Graphics: WebRender component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thun…
CVE-2026-2759 high 8.0 FIX rocky rheldebian debian 3mo ago Incorrect boundary conditions in the Graphics: ImageLib component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8.
CVE-2026-2758 high 8.0 FIX rocky rheldebian debian 3mo ago Use-after-free in the JavaScript: GC component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8.
CVE-2026-2757 high 8.0 FIX rocky rheldebian debian 3mo ago Incorrect boundary conditions in the WebRTC: Audio/Video component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8.
CVE-2026-2447 high 8.0 FIX rocky rheldebian debian 3mo ago Heap buffer overflow in libvpx. This vulnerability was fixed in Firefox 147.0.4, Firefox ESR 140.7.1, Firefox ESR 115.32.1, Thunderbird 140.7.2, and Thunderbird 147.0.2.
CVE-2026-25646 high 8.0 FIX rocky rheldebian debian 3mo ago RHSA-2026:9686: java-17-openjdk security update (Important)
CVE-2026-25506 high 8.0 FIX rocky rhel sles 3mo ago RHSA-2026:3032: munge security update (Important)
CVE-2026-23074 high 8.0 FIX slesdebian debianalmalinux almalinux 3mo ago In the Linux kernel, the following vulnerability has been resolved: net/sched: Enforce that teql can only be used as root qdisc Design intent of teql is that it is only supposed to be used as root …
CVE-2026-22859 high 8.0 FIX rocky rheldebian debian 3mo ago RHSA-2026:3334: freerdp security update (Important)
CVE-2026-22858 high 8.0 FIX rocky rheldebian debian 3mo ago RHSA-2026:3334: freerdp security update (Important)
CVE-2026-22855 high 8.0 FIX rocky rheldebian debian 3mo ago RHSA-2026:3334: freerdp security update (Important)
CVE-2025-38248 high 8.0 FIX slesdebian debianalmalinux almalinux 3mo ago In the Linux kernel, the following vulnerability has been resolved: bridge: mcast: Fix use-after-free during router port configuration The bridge maintains a global list of ports behind which a mul…
CVE-2026-21721 high 8.0 rhel sles rocky 4mo ago Important: grafana security update
CVE-2026-21637 high 8.0 FIX rocky rhel sles 4mo ago Important: nodejs:24 security update
CVE-2025-59466 high 8.0 FIX rocky rhel sles 4mo ago Important: nodejs:24 security update
CVE-2025-59465 high 8.0 FIX rocky rhel sles 4mo ago Important: nodejs:24 security update
CVE-2025-55132 high 8.0 FIX rocky rhel sles 4mo ago Important: nodejs:24 security update
CVE-2025-55131 high 8.0 FIX rocky rhel sles 4mo ago Important: nodejs:24 security update
CVE-2025-55130 high 8.0 FIX rocky rhel sles 4mo ago Important: nodejs:24 security update
CVE-2025-61732 high 8.0 FIX rocky rheldebian debian google 4mo ago A discrepancy between how Go and C/C++ comments were parsed allowed for code smuggling into the resulting cgo binary.
CVE-2025-61728 high 8.0 FIX rocky rheldebian debian google 4mo ago archive/zip uses a super-linear file name indexing algorithm that is invoked the first time a file in an archive is opened. This can lead to a denial of service when consuming a maliciously construct…
CVE-2025-15059 high 8.0 FIX rheldebian debian sles 4mo ago Important: gimp security update
CVE-2026-1761 high 8.0 FIX rocky rheldebian debian 4mo ago RHSA-2026:2215: libsoup security update (Important)
CVE-2026-0719 high 8.0 rocky rheldebian debian 4mo ago RHSA-2026:2215: libsoup security update (Important)
CVE-2025-39760 high 7.1 7.1 FIX rocky rhel sles 4mo ago Moderate: kernel security update
CVE-2026-1709 critical 9.5 FIX rhel sles rocky 4mo ago Critical: keylime security update
CVE-2026-23884 high 8.0 FIX rocky rheldebian debian 4mo ago RHSA-2026:2081: freerdp security update (Important)
CVE-2026-23883 high 8.0 FIX rocky rheldebian debian 4mo ago RHSA-2026:2081: freerdp security update (Important)
CVE-2026-23534 high 8.0 FIX rocky rheldebian debian 4mo ago RHSA-2026:2081: freerdp security update (Important)
CVE-2026-23533 high 8.0 FIX rocky rheldebian debian 4mo ago RHSA-2026:2081: freerdp security update (Important)
CVE-2026-23532 high 8.0 FIX rocky rheldebian debian 4mo ago RHSA-2026:2081: freerdp security update (Important)
CVE-2026-23531 high 8.0 FIX rocky rheldebian debian 4mo ago RHSA-2026:2081: freerdp security update (Important)
CVE-2026-23530 high 8.0 FIX rocky rheldebian debian 4mo ago RHSA-2026:2081: freerdp security update (Important)
CVE-2025-15279 high 8.0 rheldebian debian sles 4mo ago RHSA-2026:7677: fontforge security update (Important)
CVE-2025-15275 high 8.0 rheldebian debian sles 4mo ago RHSA-2026:7677: fontforge security update (Important)
CVE-2025-15269 high 8.0 rheldebian debian sles 4mo ago RHSA-2026:7677: fontforge security update (Important)
CVE-2026-24049 high 8.0 FIX rocky rhel sles 4mo ago RHSA-2026:2090: python3.12-wheel security update (Important)
CVE-2025-69421 high 7.5 7.5 FIX rhel sles rocky openssl 4mo ago Important: openssl security update
CVE-2025-69420 high 7.5 7.5 FIX rhel sles rocky openssl 4mo ago Important: openssl security update
CVE-2025-69419 high 7.4 7.4 FIX rhel sles rocky openssl 4mo ago RHSA-2026:3042: openssl security update (Moderate)
CVE-2025-66199 high 8.0 FIX rhel sles rocky 4mo ago Important: openssl security update
CVE-2025-15469 high 8.0 FIX rhel sles rocky 4mo ago Important: openssl security update
CVE-2025-15468 high 8.0 FIX rhel sles rocky 4mo ago Important: openssl security update
CVE-2025-15467 high 8.8 8.8 FIX rhel sles rocky openssl 4mo ago Important: openssl security update
CVE-2025-11187 high 8.0 FIX rhel sles rocky 4mo ago Important: openssl security update
CVE-2025-9086 high 7.5 7.5 FIX rocky rheldebian debian haxx 4mo ago 1. A cookie is set using the `secure` keyword for `https://target` 2. curl is redirected to or otherwise made to speak with `http://target` (same hostname, but using clear text HTTP) using the …
CVE-2025-14180 high 8.0 FIX rocky rhelalmalinux almalinux 4mo ago RHSA-2026:1412: php:8.2 security update (Important)
CVE-2025-13836 high 7.5 7.5 FIX rocky rhel sles python 4mo ago Moderate: python3.12 security update
CVE-2025-68305 high 8.0 FIX rhel sles rocky 4mo ago Important: kernel security update
CVE-2025-68301 high 8.0 FIX rocky rhel sles 4mo ago Important: kernel security update
CVE-2025-66418 high 8.0 FIX rocky rhel sles 4mo ago Important: fence-agents security update
CVE-2025-40294 high 8.0 FIX rhel sles rocky 4mo ago Important: kernel security update
CVE-2025-40258 high 8.0 FIX rocky rhel sles 4mo ago Important: kernel security update
CVE-2025-40248 high 8.0 FIX rocky rhel sles 4mo ago Important: kernel security update
CVE-2025-38731 high 8.0 FIX rhel sles rocky 4mo ago Important: kernel security update
CVE-2025-38349 high 8.0 FIX rhel sles rocky 4mo ago Important: kernel security update
CVE-2025-38141 high 8.0 FIX rhel sles rocky 4mo ago Important: kernel security update
CVE-2026-0994 high 8.0 rhel sles rocky google 4mo ago Important: protobuf security update
CVE-2026-21945 high 7.5 7.5 FIX rocky rhel sles oracle 5mo ago RHSA-2026:4832: java-1.8.0-ibm security update (Important)
CVE-2025-61729 high 8.0 FIX rocky rheldebian debian google 5mo ago Within HostnameError.Error(), when constructing an error string, there is no limit to the number of hosts that will be printed out. Furthermore, the error string is constructed by repeated string con…
CVE-2025-14425 high 8.0 FIX rheldebian debian sles 5mo ago Important: gimp security update
CVE-2025-14424 high 8.0 FIX rheldebian debian sles 5mo ago Important: gimp security update
CVE-2025-14423 high 8.0 FIX rheldebian debian sles 5mo ago Important: gimp security update
CVE-2025-14422 high 8.0 FIX rocky rheldebian debian 5mo ago RHSA-2026:1574: gimp:2.8 security update (Important)
CVE-2025-13601 high 7.7 7.7 FIX rocky rheldebian debian redhatgnome 5mo ago A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the g_escape_uri_string() function. If the string to escape contains a very large number of u…
CVE-2025-68287 high 8.0 FIX rhel sles rocky 5mo ago Important: kernel security update
CVE-2025-68285 high 8.0 FIX rocky rhel sles 5mo ago Important: kernel security update
CVE-2025-67269 high 8.0 FIX rheldebian debian rocky 5mo ago Important: gpsd-minimal security update
CVE-2025-67268 high 8.0 FIX rheldebian debian rocky 5mo ago Important: gpsd-minimal security update
CVE-2025-66566 high 8.0 rhel rockydebian debian 5mo ago yawkat LZ4 Java has a possible information leak in Java safe decompressor
CVE-2025-40277 high 8.0 FIX rocky rhel sles 5mo ago Important: kernel security update
CVE-2025-39933 high 8.0 FIX rocky rhel sles 5mo ago Important: kernel security update
CVE-2025-38703 high 8.0 FIX rhel sles rocky 5mo ago Important: kernel security update
CVE-2025-38051 high 8.0 FIX rocky slesdebian debian 5mo ago In the Linux kernel, the following vulnerability has been resolved: smb: client: Fix use-after-free in cifs_fill_dirent There is a race condition in the readdir concurrency process, which may acces…
CVE-2026-23490 high 8.0 FIX rocky rhel sles 5mo ago Important: fence-agents security update
CVE-2026-0891 high 8.0 FIX rocky rheldebian debian 5mo ago Memory safety bugs present in Firefox ESR 140.6, Thunderbird ESR 140.6, Firefox 146 and Thunderbird 146. Some of these bugs showed evidence of memory corruption and we presume that with enough effort…
CVE-2026-0890 high 8.0 FIX rocky rheldebian debian 5mo ago Spoofing issue in the DOM: Copy & Paste and Drag & Drop component. This vulnerability was fixed in Firefox 147, Firefox ESR 140.7, Thunderbird 147, and Thunderbird 140.7.
CVE-2026-0887 high 8.0 FIX rocky rheldebian debian 5mo ago Clickjacking issue, information disclosure in the PDF Viewer component. This vulnerability was fixed in Firefox 147, Firefox ESR 140.7, Thunderbird 147, and Thunderbird 140.7.
CVE-2026-0886 high 8.0 FIX rocky rheldebian debian 5mo ago Incorrect boundary conditions in the Graphics component. This vulnerability was fixed in Firefox 147, Firefox ESR 115.32, Firefox ESR 140.7, Thunderbird 147, and Thunderbird 140.7.
CVE-2026-0885 high 8.0 FIX rocky rheldebian debian 5mo ago Use-after-free in the JavaScript: GC component. This vulnerability was fixed in Firefox 147, Firefox ESR 140.7, Thunderbird 147, and Thunderbird 140.7.
CVE-2026-0884 high 8.0 FIX rocky rheldebian debian 5mo ago Use-after-free in the JavaScript Engine component. This vulnerability was fixed in Firefox 147, Firefox ESR 140.7, Thunderbird 147, and Thunderbird 140.7.
CVE-2026-0883 high 8.0 FIX rocky rheldebian debian 5mo ago Information disclosure in the Networking component. This vulnerability was fixed in Firefox 147, Firefox ESR 140.7, Thunderbird 147, and Thunderbird 140.7.
CVE-2026-0882 high 8.0 FIX rocky rheldebian debian 5mo ago Use-after-free in the IPC component. This vulnerability was fixed in Firefox 147, Firefox ESR 115.32, Firefox ESR 140.7, Thunderbird 147, and Thunderbird 140.7.
CVE-2026-0880 high 8.0 FIX rocky rheldebian debian 5mo ago Sandbox escape due to integer overflow in the Graphics component. This vulnerability was fixed in Firefox 147, Firefox ESR 115.32, Firefox ESR 140.7, Thunderbird 147, and Thunderbird 140.7.
CVE-2026-0879 high 8.0 FIX rocky rheldebian debian 5mo ago Sandbox escape due to incorrect boundary conditions in the Graphics component. This vulnerability was fixed in Firefox 147, Firefox ESR 115.32, Firefox ESR 140.7, Thunderbird 147, and Thunderbird 140…
CVE-2026-0878 high 8.0 FIX rocky rheldebian debian 5mo ago Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component. This vulnerability was fixed in Firefox 147, Firefox ESR 140.7, Thunderbird 147, and Thunderbird 140.7.
CVE-2026-0877 high 8.0 FIX rocky rheldebian debian 5mo ago Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 147, Firefox ESR 115.32, Firefox ESR 140.7, Thunderbird 147, and Thunderbird 140.7.
CVE-2025-68973 high 8.0 FIX rocky rheldebian debian 5mo ago RHSA-2026:0728: gnupg2 security update (Important)
CVE-2025-68615 high 8.0 FIX rocky rhel sles 5mo ago RHSA-2026:0750: net-snmp security update (Important)
CVE-2025-14327 high 8.0 FIX rocky rheldebian debian 5mo ago Spoofing issue in the Downloads Panel component. This vulnerability was fixed in Firefox 146, Thunderbird 146, Firefox ESR 140.7, and Thunderbird 140.7.
CVE-2025-47913 high 8.0 FIX rocky rheldebian debian 5mo ago RHSA-2026:0753: container-tools:rhel8 security update (Important)
CVE-2025-39993 high 8.0 FIX rocky slesdebian debian 5mo ago In the Linux kernel, the following vulnerability has been resolved: media: rc: fix races with imon_disconnect() Syzbot reports a KASAN issue as below: BUG: KASAN: use-after-free in __create_pipe in…
CVE-2025-39806 high 7.1 7.1 FIX rhel sles rocky 5mo ago Moderate: kernel security update
CVE-2025-14523 high 8.0 FIX rocky rhel sles 5mo ago RHSA-2026:1509: spice-client-win security update (Important)
CVE-2026-21441 high 8.0 FIX rocky rhel sles 5mo ago Important: fence-agents security update
CVE-2025-66293 high 8.0 FIX rocky rheldebian debian 5mo ago RHSA-2026:9686: java-17-openjdk security update (Important)
CVE-2025-65018 high 8.0 FIX rocky rheldebian debian 5mo ago RHSA-2026:0932: java-1.8.0-openjdk security update (Important)
CVE-2025-64720 high 8.0 FIX rocky rheldebian debian 5mo ago RHSA-2026:0932: java-1.8.0-openjdk security update (Important)