12 vulnerabilities across 10 products scored HIGH or above on May 26, 2026.
- HIGH: 12
[HIGH] red_hat/red_hat_openshift_virtualization_4
1 CVE | CVSS 9.9 | AAS 9.8
Red Hat OpenShift Virtualization 4 is affected by CVE-2026-7374, a critical vulnerability (CVSS 9.9) in the KubeVirt virt-handler component that allows authenticated users with namespace edit permissions to exploit improper symlink validation and hijack privileged host connections, potentially accessing arbitrary Unix sockets on the host. This flaw is actively exploitable and could enable unauthorized access to the container runtime with elevated privileges. Organizations running OpenShift Virtualization should apply available patches from Red Hat’s security advisory immediately.
- CVE-2026-7374 (CVSS 9.9)
[HIGH] gitoxide/gitoxide
1 CVE | CVSS 8.5 | AAS 9.7
Gitoxide versions before 0.82.0 contain CVE-2026-40034 (CVSS 8.5), a vulnerability in gix-submodule that improperly validates the update field in .gitmodules, allowing attackers to bypass security controls and inject arbitrary shell commands for remote code execution. This flaw is exploitable when submodules are initialized with partial configuration, and injected commands execute with the privileges of the calling process. Organizations using gitoxide should update to version 0.82.0 or later immediately.
- CVE-2026-40034 (CVSS 8.5)
[HIGH] mirasvit/full_page_cache_warmer_for_magento_2
1 CVE | CVSS 9.3 | AAS 9.2
Mirasvit Full Page Cache Warmer for Magento 2 before version 1.11.12 contains CVE-2026-45247 (CVSS 9.3), a PHP object injection vulnerability that allows unauthenticated attackers to achieve remote code execution by supplying a crafted serialized PHP object in the CacheWarmer cookie. The flaw exploits unrestricted calls to PHP’s unserialize() function combined with available gadget chains to execute arbitrary code on affected Magento instances. Organizations using this extension should upgrade to version 1.11.12 or later immediately.
- CVE-2026-45247 (CVSS 9.3)
[HIGH] totolink/n300rh
1 CVE | CVSS 8.9 | AAS 8.8
Totolik N300RH version 6.1c.1353_B20190305 is affected by CVE-2026-9543 (CVSS 8.9), an OS command injection vulnerability in the Web Management Interface’s setPasswordCfg function that allows remote attackers to execute arbitrary commands via the admpass parameter. The vulnerability is actively exploitable and proof-of-concept code has been publicly disclosed. Organizations using Totolink N300RH routers should apply available firmware updates from the vendor immediately and restrict access to the Web Management Interface.
- CVE-2026-9543 (CVSS 8.9)
[HIGH] freerdp/freerdp
1 CVE | CVSS 8.7 | AAS 8.7
FreeRDP before version 3.26.0 contains CVE-2026-40033 (CVSS 8.7), a heap-buffer-overflow vulnerability in the gdi_CacheToSurface function that allows remote attackers to write out-of-bounds heap memory. Malicious RDP servers can exploit coordinate clamping logic to trigger large out-of-bounds writes, potentially causing client crashes or remote code execution. Organizations should update FreeRDP to version 3.26.0 or later and exercise caution when connecting to untrusted RDP servers.
- CVE-2026-40033 (CVSS 8.7)
[HIGH] karakeep-app/karakeep
1 CVE | CVSS 7.6 | AAS 8.6
Karakeep before version 0.32.0 contains CVE-2026-45082 (CVSS 7.6), a Server-Side Request Forgery protection bypass vulnerability that allows authenticated users to circumvent internal network access restrictions through crafted HTTP redirect chains. An attacker can exploit this flaw to cause the application to make requests to internal or private network destinations that would normally be blocked by the application’s SSRF protections. Organizations running self-hosted Karakeep instances should update to version 0.32.0 or later immediately.
- CVE-2026-45082 (CVSS 7.6)
[HIGH] mossdef-org/luci-app-https-dns-proxy
1 CVE | CVSS 8.7 | AAS 8.6
luci-app-https-dns-proxy through version 2025.12.29-5 contains CVE-2026-46368 (CVSS 8.7), a command injection vulnerability in the setInitAction function that allows authenticated users with the luci.https-dns-proxy ACL permission to inject shell metacharacters via the name parameter of ubus RPC calls. An attacker can exploit this flaw to execute arbitrary commands on the OpenWrt router. Organizations using this optional LuCI add-on should update to the latest patched version immediately.
- CVE-2026-46368 (CVSS 8.7)
[HIGH] openkm/openkm_community_edition
2 CVEs | CVSS 8.6 | AAS 8.5
OpenKM Community Edition 6.3.12 is affected by multiple vulnerabilities including CVE-2026-42785 and CVE-2026-42425 (CVSS 8.6), with the lead issue being a remote code execution flaw that allows authenticated administrators to execute arbitrary Java/BeanShell code through the /admin/Scripting endpoint. An attacker with administrative credentials can submit malicious script content with an action=Evaluate parameter to execute operating system commands in the context of the application server. Organizations running OpenKM should apply available security updates from the vendor immediately and restrict administrative access to trusted users only.
- CVE-2026-42785 (CVSS 8.6)
- CVE-2026-42425 (CVSS 8.6)
[HIGH] red_hat/red_hat_enterprise_linux_10
1 CVE | CVSS 8.5 | AAS 8.1
Red Hat Enterprise Linux 10 is affected by CVE-2026-4480 (CVSS 8.5), a vulnerability in the Samba printing subsystem where client-controlled print job description strings are passed to the print command without proper escaping of shell metacharacters. A remote attacker can exploit this flaw by sending a specially crafted print job description to achieve remote code execution on the affected system. Organizations running RHEL 10 with Samba printing enabled should apply available security patches from Red Hat immediately.
- CVE-2026-4480 (CVSS 8.5)
[HIGH] checkpoint/quantum_security_gateway
2 CVEs | CVSS 7.5 | AAS 7.5
Check Point Quantum Security Gateway is affected by multiple vulnerabilities including CVE-2026-48134 and CVE-2026-48133 (CVSS 7.5), with input-handling issues in the UserCheck Web Portal’s UserChoice flow when DLP is active. An attacker with access to the UserCheck Ask page could manipulate stored DLP/UserCheck incident information, potentially causing loss of incident entries, incorrect approval handling, or resource exhaustion through repeated abuse. Organizations should apply security updates from Check Point and implement network controls to restrict access to the UserCheck Portal to authorized users only.
- CVE-2026-48134 (CVSS 5.6)
- CVE-2026-48133 (CVSS 7.5)