| photon_os PHSA-2026-5.0-0749: Unknown PhotonOS Security Updated | CVE-2026-0915, CVE-2026-0861 | 2026/1/31 | testing |
| photon_os PHSA-2026-4.0-0953: Unknown PhotonOS Security Updated | CVE-2025-68364, CVE-2025-68367, CVE-2025-68354, CVE-2025-68733, CVE-2024-36903, CVE-2025-68332, CVE-2025-71084, CVE-2025-68740, CVE-2025-68261, CVE-2025-68803, CVE-2025-71116, CVE-2025-68258, CVE-2026-22976, CVE-2025-68325, CVE-2024-36927, CVE-2025-68776, CVE-2025-71120, CVE-2025-68799, CVE-2025-68344, CVE-2026-22977, CVE-2025-68366, CVE-2025-40215, CVE-2025-68264, CVE-2025-68336, CVE-2025-68349, CVE-2025-68346, CVE-2026-22978, CVE-2026-22980, CVE-2025-71127, CVE-2026-22990, CVE-2025-68337, CVE-2025-68724, CVE-2025-68813, CVE-2025-71087, CVE-2025-71085, CVE-2025-68764, CVE-2025-68266, CVE-2025-68783, CVE-2025-68282, CVE-2026-22991, CVE-2025-71154 | 2026/1/31 | testing |
| freebsd 232e16cc-fd83-11f0-981a-98b78501ef2a: xrdp -- remote code execution | CVE-2025-68670 | 2026/1/31 | development |
| suse_linux SUSE-SU-2026:0352-1: SUSE SLES11 : Security update for the Linux Kernel (Important) (SUSE-SU-2026:0352-1) | CVE-2025-40215, CVE-2025-40018, CVE-2023-54168, CVE-2023-54110, CVE-2023-23559 | 2026/1/31 | testing |
| Multiple Vulnerabilities in SolarWinds Web Help Desk | CVE-2025-40551, CVE-2025-40537, CVE-2025-40552, CVE-2025-40536 | 2026/1/30 | development |
| Multiple Vulnerabilities in Alteryx Server | CVE-2025-28243, CVE-2025-28245, CVE-2023-26961 | 2026/1/30 | development |
| [Web App Scanning] Firebase Configuration Detected | | 2026/1/30 | testing |
| Security Update for PyBind | CVE-2024-31884 | 2026/1/29 | development |
| Multiple Vulnerabilities in Vercel Next.js | CVE-2025-59472, CVE-2025-59471, CVE-2026-23864 | 2026/1/29 | development |
| Multiple Vulnerabilities in Keycloak | CVE-2025-14083, CVE-2026-0707, CVE-2025-14559, CVE-2025-14082, CVE-2026-1035, CVE-2026-1180, CVE-2025-11538 | 2026/1/29 | development |
| Johnson Controls (ICU) Tool Multiple Vulnerabilities | | 2026/1/27 | development |
| Security Update for Wireshark | CVE-2026-0962 | 2026/1/22 | development |
| cisco cisco-sa-ucce-pcce-xss-2JVyg3uD: Cisco Packaged Contact Center Enterprise and Cisco Unified Contact Center Enterprise Cross-Site Scripting Vulnerabilities | CVE-2026-20055, CVE-2026-20109 | 2026/1/22 | development |
| oracle_linux ELSA-2026-0936: ELSA-2026-0936: glib2 security update (MODERATE) | CVE-2025-13601 | 2026/1/22 | development |
| oracle_linux ELSA-2026-0975: ELSA-2026-0975: glib2 security update (MODERATE) | CVE-2025-13601 | 2026/1/22 | development |
| oracle_linux ELSA-2026-0930: ELSA-2026-0930: pcs security update (MODERATE) | CVE-2025-67726, CVE-2025-67725 | 2026/1/22 | development |
| juniper JSA103173: JSA103173 : 2026-01 Security Bulletin: Junos OS: A specifically crafted 'show chassis' command causes chassisd to crash (CVE-2025-60007) | CVE-2026-21920, CVE-2026-21917, CVE-2025-59961, CVE-2026-21910, CVE-2026-0203, CVE-2026-21918, CVE-2026-21914, CVE-2026-21909, CVE-2026-21911, CVE-2026-21921, CVE-2025-60003, CVE-2025-59960, CVE-2026-21912, CVE-2025-60007, CVE-2026-21908, CVE-2025-59959, CVE-2026-21913, CVE-2026-21906, CVE-2026-21905, CVE-2026-21903, CVE-2025-60011 | 2026/1/21 | development |
| oracle CPUJan2026: Business Intelligence Enterprise Edition | CVE-2025-8885, CVE-2025-26333, CVE-2025-66418, CVE-2024-57699, CVE-2025-48734, CVE-2025-9230, CVE-2025-59419, CVE-2025-41249, CVE-2025-55039, CVE-2026-21976, CVE-2023-6378, CVE-2021-23926, CVE-2025-48924, CVE-2025-68161, CVE-2024-35195, CVE-2025-31672, CVE-2025-52999, CVE-2024-47554, CVE-2025-48976, CVE-2022-45047, CVE-2025-59250, CVE-2025-58754 | 2026/1/20 | development |
| oracle CPUJan2026: Application Testing Suite | CVE-2025-8885, CVE-2025-26333, CVE-2025-66418, CVE-2024-57699, CVE-2025-48734, CVE-2025-9230, CVE-2025-59419, CVE-2025-41249, CVE-2024-13009, CVE-2025-55039, CVE-2026-21976, CVE-2023-6378, CVE-2021-23926, CVE-2025-48924, CVE-2025-68161, CVE-2024-35195, CVE-2025-31672, CVE-2025-52999, CVE-2024-47554, CVE-2025-48976, CVE-2022-45047, CVE-2025-59250, CVE-2025-58754 | 2026/1/20 | development |
| oracle CPUJan2026: Oracle E-Business Suite | CVE-2025-26333, CVE-2025-66418, CVE-2026-21943, CVE-2025-48734, CVE-2025-26791, CVE-2025-59419, CVE-2025-41249, CVE-2025-55039, CVE-2025-66516, CVE-2023-6378, CVE-2026-21959, CVE-2026-21960, CVE-2025-48924, CVE-2026-21972, CVE-2025-68161, CVE-2024-35195, CVE-2024-47554, CVE-2025-48976, CVE-2021-43113, CVE-2025-59250, CVE-2025-48795, CVE-2025-58754 | 2026/1/20 | development |
| oracle CPUJan2026: Enterprise Manager Base Platform | CVE-2025-8885, CVE-2025-26333, CVE-2025-66418, CVE-2024-57699, CVE-2025-48734, CVE-2025-9230, CVE-2025-59419, CVE-2025-41249, CVE-2024-13009, CVE-2025-55039, CVE-2026-21976, CVE-2023-6378, CVE-2021-23926, CVE-2025-48924, CVE-2025-68161, CVE-2024-35195, CVE-2025-31672, CVE-2025-52999, CVE-2024-47554, CVE-2025-48976, CVE-2022-45047, CVE-2025-59250, CVE-2025-58754 | 2026/1/20 | development |
| oracle CPUJan2026: MySQL Server 8.4.8 | CVE-2025-6965, CVE-2026-21941, CVE-2026-21964, CVE-2026-21937, CVE-2026-21948, CVE-2025-9230, CVE-2026-21968, CVE-2026-21936 | 2026/1/20 | development |
| oracle CPUJan2026: MySQL Cluster 8.4.8 | CVE-2025-6965, CVE-2026-21941, CVE-2026-21964, CVE-2026-21937, CVE-2026-21948, CVE-2025-9230, CVE-2026-21968, CVE-2026-21936 | 2026/1/20 | development |
| oracle CPUJan2026: MySQL Cluster 8.0.45 | CVE-2026-21941, CVE-2026-21964, CVE-2026-21937, CVE-2026-21948, CVE-2025-9230, CVE-2026-21968, CVE-2026-21936 | 2026/1/20 | development |
| oracle CPUJan2026: MySQL Server 8.0.45 | CVE-2026-21941, CVE-2026-21964, CVE-2026-21937, CVE-2026-21948, CVE-2025-9230, CVE-2026-21968, CVE-2026-21936 | 2026/1/20 | development |
| oracle CPUJan2026: MySQL Cluster 7.6.37 | CVE-2026-21936 | 2026/1/20 | development |
| cisco cisco-sa-sma-attack-N9bf4: Reports About Cyberattacks Against Cisco Secure Email Gateway And Cisco Secure Email and Web Manager | CVE-2025-20393 | 2026/1/15 | development |
| Windows SDK Inbox COM Objects (Global Memory) Remote Code Execution Vulnerability | CVE-2026-21219 | 2026/1/13 | development |
| IBM API Connect Auth Bypass | CVE-2025-13915 | 2026/1/8 | development |
| oracle_linux ELSA-2025-23295: ELSA-2025-23295: podman security update (MODERATE) | CVE-2025-58183 | 2025/12/19 | development |
| Motex LANSCOPE Endpoint Manager Improper Verification of Source of a Communication Channel Vulnerability (CVE-2025-61932) | CVE-2025-61932 | 2025/11/18 | development |