Search CVE reports


Toggle filters

241 – 250 of 30559 results

Status is adjusted based on your filters.


CVE-2026-14604

Medium priority
Needs evaluation

A vulnerability was determined in Open Asset Import Library Assimp up to 6.0.4. Affected is the function Assimp::Exporter::ExportToBlob of the file code/AssetLib/Ply/PlyLoader.cpp of the component PLY Model Handler....

1 affected package

assimp

Package 26.04 LTS
assimp Needs evaluation
Show less packages

CVE-2026-14615

Medium priority

Not in release

A flaw was found in the Fine-Grained Admin Permissions (FGAP) v2 implementation within Keycloak's administrative services. When FGAP v2 is enabled, the system fails to properly filter child groups based on the caller's specific...

1 affected package

python-keycloak

Package 26.04 LTS
python-keycloak Not in release
Show less packages

CVE-2026-14614

Medium priority

Not in release

A flaw was found in the ClientResource component of Keycloak's admin services when Fine-Grained Admin Permissions (FGAP) v2 is enabled. This issue allows a delegated administrator, who should only have limited control over...

1 affected package

python-keycloak

Package 26.04 LTS
python-keycloak Not in release
Show less packages

CVE-2026-14613

Medium priority

Not in release

A vulnerability was discovered in Keycloak's administrative interface that allows certain administrators to see information about groups they shouldn't have access to. When the new Fine-Grained Admin Permissions (FGAP v2) are...

1 affected package

python-keycloak

Package 26.04 LTS
python-keycloak Not in release
Show less packages

CVE-2026-14612

Medium priority
Needs evaluation

Two off-by-one errors in the FreeIPA ipa-otpd daemon's OAuth2 device authorization handler can cause out-of-bounds memory access when processing an oversized response from a configured external OAuth2/OIDC Identity Provider. An...

1 affected package

freeipa

Package 26.04 LTS
freeipa Needs evaluation
Show less packages

CVE-2026-8804

Medium priority
Needs evaluation

Puppet resource_api (shipped in Puppet Core 8.x and Puppet Enterprise 2023.8.x and 2025.x) does not preserve the sensitive flag on parameters defined via the resource-api, causing values such as passwords to be stored in cleartext...

1 affected package

ruby-puppet-resource-api

Package 26.04 LTS
ruby-puppet-resource-api Needs evaluation
Show less packages

CVE-2026-49838

Medium priority
Needs evaluation

[Unknown description]

1 affected package

gobgp

Package 26.04 LTS
gobgp Needs evaluation
Show less packages

CVE-2026-14544

Medium priority
Needs evaluation

A flaw was found in HPLIP (HP Linux Imaging and Printing Software). This vulnerability, an incomplete fix for CVE-2026-8631, may allow a remote attacker to escalate privileges or achieve arbitrary code execution. This can occur...

1 affected package

hplip

Package 26.04 LTS
hplip Needs evaluation
Show less packages

CVE-2026-14355

Medium priority
Needs evaluation

In PHP versions 8.2.* before 8.2.32, 8.3.* before 8.3.32, 8.4.* before 8.4.23, 8.5.* before 8.5.8, the AES-WRAP-PAD algorithm implementation in OpenSSL extension contains a buffer allocation flaw. The output buffer for the AES...

8 affected packages

php5, php7.0, php7.2, php7.4, php8.1...

Package 26.04 LTS
php5 Not in release
php7.0 Not in release
php7.2 Not in release
php7.4 Not in release
php8.1 Not in release
php8.3 Not in release
php8.4 Not in release
php8.5 Needs evaluation
Show all 8 packages Show less packages

CVE-2026-13117

Medium priority
Needs evaluation

tls_wrap_reneg use after free

1 affected package

openvpn

Package 26.04 LTS
openvpn Needs evaluation
Show less packages