Recent Advisories

Severity ID Title Vendor Product Date Type
LOW 2.7 CVE-2025-14083

Keycloak-server: keycloak: improper access control in admin rest api leads to information disclosure_CVE-2025-14083

A flaw was found in the Keycloak Admin REST API. This vulnerability allows the exposure of backend schema and rules, potentially leading to targete...

Red Hat Red Hat Build of Keycloak CVE
LOW 3.1 CVE-2026-1035

Org.keycloak.protocol.oidc: keycloak refresh token reuse bypass via toctou race condition_CVE-2026-1035

A flaw was found in the Keycloak server during refresh token processing, specifically in the TokenManager class responsible for enforcing refresh t...

Red Hat Red Hat Build of Keycloak CVE
LOW 2.8 CVE-2025-55132

CVE-2025-55132_CVE-2025-55132

A flaw in Node.js's permission model allows a file's access and modification timestamps to be changed via `futimes()` even when the process has onl...

nodejs node 20.19.6 CVE
LOW 2.7 CVE-2026-21640

CVE-2026-21640_CVE-2026-21640

HackerOne community member Faraz Ahmed (PakCyberbot) has reported a format string injection in the Revive Adserver settings. When specific characte...

Revive Revive Adserver 6 CVE
LOW 3.1 CVE-2026-21977

CVE-2026-21977_CVE-2026-21977

{“lastseen”:””,”description”:””,”published”:”2026-01-20T21:56:37.605Z”,&#82...

Oracle Corporation Oracle Zero Data Loss Recovery Appliance Software 23.1.0 CVE
LOW 2.7 CVE-2026-21965

CVE-2026-21965_CVE-2026-21965

{“lastseen”:””,”description”:””,”published”:”2026-01-20T21:56:33.583Z”,&#82...

Oracle Corporation MySQL Server 9.0.0 CVE
LOW 3.1 CVE-2026-21947

CVE-2026-21947_CVE-2026-21947

{“lastseen”:””,”description”:””,”published”:”2026-01-20T21:56:28.663Z”,&#82...

Oracle Corporation Oracle Java SE 8u471-b50 CVE
LOW 2.3 CVE-2026-21930

CVE-2026-21930_CVE-2026-21930

{“lastseen”:””,”description”:””,”published”:”2026-01-20T21:56:22.940Z”,&#82...

Oracle Corporation Oracle ZFS Storage Appliance Kit 8.8 CVE
LOW 3.5 CVE-2025-36411

Multiple vulnerabilities found in IBM ApplinX._CVE-2025-36411

IBM ApplinX 11.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitte...

IBM ApplinX 11.1 CVE
LOW 3.1 CVE-2025-36410

Multiple vulnerabilities found in IBM ApplinX._CVE-2025-36410

IBM ApplinX 11.1 could allow an authenticated user to perform unauthorized administrative actions on the server due to server-side enforcement of c...

IBM ApplinX 11.1 CVE