Search CVE reports


Toggle filters

41 – 50 of 30357 results

Status is adjusted based on your filters.


CVE-2026-14614

Medium priority

Not in release

A flaw was found in the ClientResource component of Keycloak's admin services when Fine-Grained Admin Permissions (FGAP) v2 is enabled. This issue allows a delegated administrator, who should only have limited control over...

1 affected package

python-keycloak

Package 26.04 LTS
python-keycloak Not in release
Show less packages

CVE-2026-14613

Medium priority

Not in release

A vulnerability was discovered in Keycloak's administrative interface that allows certain administrators to see information about groups they shouldn't have access to. When the new Fine-Grained Admin Permissions (FGAP v2) are...

1 affected package

python-keycloak

Package 26.04 LTS
python-keycloak Not in release
Show less packages

CVE-2026-14612

Medium priority
Needs evaluation

Two off-by-one errors in the FreeIPA ipa-otpd daemon's OAuth2 device authorization handler can cause out-of-bounds memory access when processing an oversized response from a configured external OAuth2/OIDC Identity Provider. An...

1 affected package

freeipa

Package 26.04 LTS
freeipa Needs evaluation
Show less packages

CVE-2026-14610

Medium priority
Needs evaluation

A flaw has been found in Open Asset Import Library Assimp up to 6.0.5. Impacted is the function Assimp::CSMImporter::InternReadFile of the file code/AssetLib/CSM/CSMLoader.cpp of the component CSM File Handler. This manipulation...

1 affected package

assimp

Package 26.04 LTS
assimp Needs evaluation
Show less packages

CVE-2026-14604

Medium priority
Needs evaluation

(A vulnerability was determined in Open Asset Import Library Assimp up ...)

1 affected package

assimp

Package 26.04 LTS
assimp Needs evaluation
Show less packages

CVE-2026-14570

Medium priority
Needs evaluation

Crypt::DSA versions before 1.22 for Perl draw the DSA signing nonce and private key from a biased random generator, leading to private-key recovery. "Crypt::DSA::Util::makerandom forces the high bit of every value it returns to...

1 affected package

libcrypt-dsa-perl

Package 26.04 LTS
libcrypt-dsa-perl Needs evaluation
Show less packages

CVE-2026-13708

Medium priority
Needs evaluation

[Unknown description]

1 affected package

libimager-perl

Package 26.04 LTS
libimager-perl Needs evaluation
Show less packages

CVE-2026-13705

Medium priority
Needs evaluation

[Unknown description]

1 affected package

libimager-perl

Package 26.04 LTS
libimager-perl Needs evaluation
Show less packages

CVE-2026-12893

Medium priority
Needs evaluation

[gstreamer1-libav: gstreamer1-libav: NULL pointer dereference in gstavdemux.c error handler]

1 affected package

gst-libav1.0

Package 26.04 LTS
gst-libav1.0 Needs evaluation
Show less packages

CVE-2026-12481

Medium priority

Not in release

A vulnerability in keras-team/keras version 3.14.0 allows for arbitrary code execution due to improper handling of deserialization in the `Lambda` layer. Specifically, the `_raise_for_lambda_deserialization()` function fails to...

1 affected package

keras

Package 26.04 LTS
keras Not in release
Show less packages