[{"CVE":"CVE-2026-44490","severity":"moderate","public_date":"2026-06-11T15:36:13Z","advisories":[],"bugzilla":"2487941","bugzilla_description":"axios: Axios: Information disclosure and denial of service due to prototype pollution","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-915","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-44490.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L","cvss3_score":"4.8"},{"CVE":"CVE-2026-44489","severity":"low","public_date":"2026-06-11T15:30:44Z","advisories":[],"bugzilla":"2487940","bugzilla_description":"axios: Axios: Information disclosure via Prototype Pollution","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-44489.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N","cvss3_score":"3.7"},{"CVE":"CVE-2026-11986","severity":"moderate","public_date":"2026-06-11T14:17:32Z","advisories":[],"bugzilla":"2487906","bugzilla_description":"keycloak-rest-admin-ui-ext: Authorization Bypass vulnerability in the admin-ui-ext bulk role-mapping-delete endpoints of Keycloak","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-425","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11986.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N","cvss3_score":"4.9"},{"CVE":"CVE-2026-47734","severity":"moderate","public_date":"2026-06-10T22:11:02Z","advisories":[],"bugzilla":"2487774","bugzilla_description":"dulwich: Dulwich: Denial of Service via crafted Git thin pack","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1285","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-47734.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"6.5"},{"CVE":"CVE-2026-53465","severity":"moderate","public_date":"2026-06-10T22:07:50Z","advisories":[],"bugzilla":"2487772","bugzilla_description":"ImageMagick: ImageMagick: Denial of Service via crafted multi-frame image leading to heap buffer overwrite","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-787","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-53465.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"6.2"},{"CVE":"CVE-2026-53464","severity":"low","public_date":"2026-06-10T22:07:06Z","advisories":[],"bugzilla":"2487768","bugzilla_description":"ImageMagick: ImageMagick: Memory leak via invalid options to wand option parser","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-772","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-53464.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L","cvss3_score":"3.3"},{"CVE":"CVE-2026-53462","severity":"low","public_date":"2026-06-10T22:04:53Z","advisories":[],"bugzilla":"2487761","bugzilla_description":"ImageMagick: ImageMagick: Denial of Service due to heap-use-after-free in CheckPrimitiveExtent","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-53462.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L","cvss3_score":"3.7"},{"CVE":"CVE-2026-47712","severity":"low","public_date":"2026-06-10T22:01:49Z","advisories":[],"bugzilla":"2487762","bugzilla_description":"dulwich: Dulwich: Arbitrary file write via malicious commit subject in format_patch","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-22","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-47712.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","cvss3_score":"3.3"},{"CVE":"CVE-2026-48994","severity":"moderate","public_date":"2026-06-10T21:58:14Z","advisories":[],"bugzilla":"2487771","bugzilla_description":"ImageMagick: ImageMagick: Denial of Service via heap buffer over-write in MAT decoder","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-253","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-48994.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.9"},{"CVE":"CVE-2026-48734","severity":"moderate","public_date":"2026-06-10T21:55:59Z","advisories":[],"bugzilla":"2487756","bugzilla_description":"ImageMagick: ImageMagick: Denial of Service via crafted MVG file leading to stack overflow","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-770","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-48734.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-48733","severity":"moderate","public_date":"2026-06-10T21:53:35Z","advisories":[],"bugzilla":"2487767","bugzilla_description":"ImageMagick: ImageMagick: Denial of Service via crafted image in subimage-search","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-835","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-48733.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H","cvss3_score":"6.5"},{"CVE":"CVE-2026-48724","severity":"moderate","public_date":"2026-06-10T21:52:32Z","advisories":[],"bugzilla":"2487759","bugzilla_description":"ImageMagick: ImageMagick: Denial of Service via heap buffer overwrite in Floyd-Steinberg dithering","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-124","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-48724.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-47165","severity":"low","public_date":"2026-06-10T21:50:30Z","advisories":[],"bugzilla":"2487760","bugzilla_description":"ImageMagick: ImageMagick: Information disclosure due to missing authentication in distributed pixel cache","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-306","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-47165.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"4.0"},{"CVE":"CVE-2026-46521","severity":"moderate","public_date":"2026-06-10T21:40:44Z","advisories":[],"bugzilla":"2487766","bugzilla_description":"ImageMagick: ImageMagick: Denial of Service via out-of-bounds write in LZMA MIFF encoder","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-787","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46521.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46520","severity":"important","public_date":"2026-06-10T21:31:57Z","advisories":[],"bugzilla":"2487729","bugzilla_description":"ImageMagick: ImageMagick: Denial of Service via out-of-bounds write when processing multiple images","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-787","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46520.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"7.5"},{"CVE":"CVE-2026-45664","severity":"important","public_date":"2026-06-10T21:30:51Z","advisories":[],"bugzilla":"2487732","bugzilla_description":"ImageMagick: ImageMagick: Denial of Service due to excessive resource use in MNG coder","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-770","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45664.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"7.5"},{"CVE":"CVE-2026-46522","severity":"important","public_date":"2026-06-10T21:30:41Z","advisories":[],"bugzilla":"2487730","bugzilla_description":"ImageMagick: ImageMagick: Denial of Service via crafted MIFF file","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-835","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46522.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"7.5"},{"CVE":"CVE-2026-45624","severity":"moderate","public_date":"2026-06-10T21:29:28Z","advisories":[],"bugzilla":"2487739","bugzilla_description":"ImageMagick: ImageMagick: Data exposure due to image processing vulnerability","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45624.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L","cvss3_score":"4.4"},{"CVE":"CVE-2026-45359","severity":"important","public_date":"2026-06-10T21:26:32Z","advisories":[],"bugzilla":"2487737","bugzilla_description":"ImageMagick: ImageMagick: Information Disclosure via Invalid Connected-Components Value","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45359.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H","cvss3_score":"7.1"},{"CVE":"CVE-2026-42326","severity":"moderate","public_date":"2026-06-10T21:25:35Z","advisories":[],"bugzilla":"2487735","bugzilla_description":"ImageMagick: ImageMagick: Information disclosure via malicious IPTC input file","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-42326.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L","cvss3_score":"5.1"},{"CVE":"CVE-2026-45031","severity":"important","public_date":"2026-06-10T21:25:20Z","advisories":[],"bugzilla":"2487734","bugzilla_description":"ImageMagick: ImageMagick: Denial of Service due to resource policy bypass in PSD decoder","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-770","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45031.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"7.5"},{"CVE":"CVE-2026-46523","severity":"important","public_date":"2026-06-10T21:22:02Z","advisories":[],"bugzilla":"2487743","bugzilla_description":"ImageMagick: ImageMagick: Denial of Service via crafted MSL image leading to heap-use-after-free","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46523.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"7.5"},{"CVE":"CVE-2026-10143","severity":"important","public_date":"2026-06-10T20:22:39Z","advisories":[],"bugzilla":"2487722","bugzilla_description":"kafka-python: kafka-python: Denial of Service via excessive SCRAM authentication iteration count","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-606","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10143.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"7.5"},{"CVE":"CVE-2026-46529","severity":"important","public_date":"2026-06-10T19:46:23Z","advisories":[],"bugzilla":"2487669","bugzilla_description":"atril: evince: xreader: PDF /GoToR action argv injection enables single-click RCE via --gtk-module dlopen","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-77","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46529.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"7.8"},{"CVE":"CVE-2026-6893","severity":"important","public_date":"2026-06-10T19:39:00Z","advisories":[],"bugzilla":"2459963","bugzilla_description":"dracut: dracut: Root code execution via DHCP options command injection","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-78","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6893.json","cvss3_scoring_vector":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-53442","severity":"moderate","public_date":"2026-06-10T13:06:02Z","advisories":[],"bugzilla":"2487556","bugzilla_description":"jenkins: Jenkins: Information disclosure of secrets via unencrypted storage","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-312","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-53442.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","cvss3_score":"5.5"},{"CVE":"CVE-2026-53439","severity":"moderate","public_date":"2026-06-10T13:06:00Z","advisories":[],"bugzilla":"2487549","bugzilla_description":"jenkins: Jenkins: Information Disclosure via Missing Permission Checks","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-862","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-53439.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N","cvss3_score":"4.3"},{"CVE":"CVE-2026-11850","severity":"moderate","public_date":"2026-06-10T00:00:00Z","advisories":[],"bugzilla":"2459970","bugzilla_description":"krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-191","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11850.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:N/A:H","cvss3_score":"5.0"},{"CVE":"CVE-2026-11837","severity":"important","public_date":"2026-06-10T00:00:00Z","advisories":[],"bugzilla":"2487424","bugzilla_description":"ansible-collection-ansible-posix: ansible.posix authorized_key: local privilege escalation via symlink-following chown","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-59","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11837.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"7.3"},{"CVE":"CVE-2026-53701","severity":"moderate","public_date":"2026-06-10T00:00:00Z","advisories":[],"bugzilla":"2487611","bugzilla_description":"gstreamer1-plugins-bad-free: GStreamer: Out-of-bounds write in H.266/VVC PPS picture partition parser","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-787","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-53701.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H","cvss3_score":"6.5"},{"CVE":"CVE-2026-53702","severity":"moderate","public_date":"2026-06-10T00:00:00Z","advisories":[],"bugzilla":"2487612","bugzilla_description":"gstreamer1-plugins-bad-free: GStreamer: Stack buffer overflow in H.265 buffering period SEI parser","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-787","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-53702.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H","cvss3_score":"6.5"},{"CVE":"CVE-2026-41726","severity":"moderate","public_date":"2026-06-09T23:48:51Z","advisories":[],"bugzilla":"2487380","bugzilla_description":"spring-kafka: Spring-kafka: Denial of Service due to unbounded heap growth via unique header values","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-770","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-41726.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"6.5"},{"CVE":"CVE-2026-45591","severity":"important","public_date":"2026-06-09T17:05:29Z","advisories":["RHSA-2026:25110","RHSA-2026:25220","RHSA-2026:25111","RHSA-2026:25221","RHSA-2026:25112","RHSA-2026:25222","RHSA-2026:17527","RHSA-2026:25113","RHSA-2026:25114","RHSA-2026:25115"],"bugzilla":"2487224","bugzilla_description":"dotnet: ASP.NET Core: Denial of Service via uncontrolled resource consumption","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-770","affected_packages":["dotnet8.0-0:8.0.128-1.el10_2","dotnet8.0-0:8.0.128-1.el8_10","dotnet10.0-0:10.0.109-1.el9_8","dotnet10.0-0:10.0.109-1.el8_10","dotnet9.0-0:9.0.118-1.el9_8","dotnet9.0-0:9.0.118-1.el10_2","dotnet9.0-0:9.0.118-1.el8_10","dotnet8.0-0:8.0.128-1.el9_8","dotnet9-0-main-9.0.117-1.hum1","dotnet10.0-0:10.0.109-1.el10_2"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45591.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"7.5"},{"CVE":"CVE-2026-45491","severity":"moderate","public_date":"2026-06-09T17:04:44Z","advisories":["RHSA-2026:25110","RHSA-2026:25220","RHSA-2026:25111","RHSA-2026:25221","RHSA-2026:25112","RHSA-2026:25222","RHSA-2026:17527","RHSA-2026:25113","RHSA-2026:25114","RHSA-2026:25115"],"bugzilla":"2487164","bugzilla_description":"dotnet: .NET: Local file tampering via link following vulnerability","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-59","affected_packages":["dotnet8.0-0:8.0.128-1.el10_2","dotnet8.0-0:8.0.128-1.el8_10","dotnet10.0-0:10.0.109-1.el9_8","dotnet10.0-0:10.0.109-1.el8_10","dotnet9.0-0:9.0.118-1.el9_8","dotnet9.0-0:9.0.118-1.el10_2","dotnet9.0-0:9.0.118-1.el8_10","dotnet8.0-0:8.0.128-1.el9_8","dotnet9-0-main-9.0.117-1.hum1","dotnet10.0-0:10.0.109-1.el10_2"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45491.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N","cvss3_score":"6.2"},{"CVE":"CVE-2026-45490","severity":"important","public_date":"2026-06-09T17:04:43Z","advisories":[],"bugzilla":"2487184","bugzilla_description":"dotnet: .NET SDK workload elevate: arbitrary file creation/truncation via LogFile named pipe.","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-266","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45490.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.8"},{"CVE":"CVE-2026-42599","severity":"moderate","public_date":"2026-06-09T16:22:46Z","advisories":[],"bugzilla":"2487076","bugzilla_description":"svelte: Svelte: Cross-Site Scripting via untrusted data in spread attributes","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-79","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-42599.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N","cvss3_score":"4.2"},{"CVE":"CVE-2026-42570","severity":"important","public_date":"2026-06-09T16:12:26Z","advisories":[],"bugzilla":"2487050","bugzilla_description":"devalue: devalue: Excessive memory consumption via deserialization of sparse arrays","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-770","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-42570.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"7.5"},{"CVE":"CVE-2025-10263","severity":"important","public_date":"2026-06-09T09:23:18Z","advisories":[],"bugzilla":"2486958","bugzilla_description":"kernel: Arm Processors: Privilege escalation or information disclosure via writes to higher exception level resources","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-266","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-10263.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N","cvss3_score":"8.4"},{"CVE":"CVE-2026-52903","severity":"important","public_date":"2026-06-09T07:23:47Z","advisories":[],"bugzilla":"2486730","bugzilla_description":"manageiq: YAML safe_load production fallback to unsafe_load enables RCE via deserialization","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-502","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-52903.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-52902","severity":"moderate","public_date":"2026-06-09T07:17:10Z","advisories":[],"bugzilla":"2486729","bugzilla_description":"awxkit: path traversal via YAML !include directive","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-22","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-52902.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"4.7"},{"CVE":"CVE-2026-7383","severity":"low","public_date":"2026-06-09T00:00:00Z","advisories":["RHSA-2026:25239","RHSA-2026:25237"],"bugzilla":"2481879","bugzilla_description":"openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":["openssl-1:3.5.5-4.el10_2","openssl-1:3.5.5-4.el9_8"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-7383.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-9076","severity":"low","public_date":"2026-06-09T00:00:00Z","advisories":["RHSA-2026:25239","RHSA-2026:25237"],"bugzilla":"2481880","bugzilla_description":"openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-131","affected_packages":["openssl-1:3.5.5-4.el10_2","openssl-1:3.5.5-4.el9_8"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-9076.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.9"},{"CVE":"CVE-2026-34180","severity":"low","public_date":"2026-06-09T00:00:00Z","advisories":["RHSA-2026:25239","RHSA-2026:25237"],"bugzilla":"2481881","bugzilla_description":"openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure.","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":["openssl-1:3.5.5-4.el10_2","openssl-1:3.5.5-4.el9_8"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34180.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:N/A:H","cvss3_score":"5.0"},{"CVE":"CVE-2026-34181","severity":"low","public_date":"2026-06-09T00:00:00Z","advisories":["RHSA-2026:25239","RHSA-2026:25237"],"bugzilla":"2481882","bugzilla_description":"openssl: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-347","affected_packages":["openssl-1:3.5.5-4.el10_2","openssl-1:3.5.5-4.el9_8"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34181.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N","cvss3_score":"6.3"},{"CVE":"CVE-2026-34182","severity":"moderate","public_date":"2026-06-09T00:00:00Z","advisories":["RHSA-2026:25239","RHSA-2026:25237"],"bugzilla":"2481884","bugzilla_description":"openssl: CMS AuthEnvelopedData Processing May Accept Forged Messages","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-130","affected_packages":["openssl-1:3.5.5-4.el10_2","openssl-1:3.5.5-4.el9_8"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34182.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N","cvss3_score":"7.4"},{"CVE":"CVE-2026-34183","severity":"moderate","public_date":"2026-06-09T00:00:00Z","advisories":["RHSA-2026:25239","RHSA-2026:25237"],"bugzilla":"2481885","bugzilla_description":"openssl: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-770","affected_packages":["openssl-1:3.5.5-4.el10_2","openssl-1:3.5.5-4.el9_8"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34183.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"7.5"},{"CVE":"CVE-2026-42764","severity":"moderate","public_date":"2026-06-09T00:00:00Z","advisories":["RHSA-2026:25239","RHSA-2026:25237"],"bugzilla":"2481887","bugzilla_description":"openssl: NULL pointer dereference in QUIC server initial packet handling","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-476","affected_packages":["openssl-1:3.5.5-4.el10_2","openssl-1:3.5.5-4.el9_8"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-42764.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.9"},{"CVE":"CVE-2026-42766","severity":"low","public_date":"2026-06-09T00:00:00Z","advisories":["RHSA-2026:25239","RHSA-2026:25237"],"bugzilla":"2481890","bugzilla_description":"openssl: Possible NULL Dereference in Password-Based CMS Decryption","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-476","affected_packages":["openssl-1:3.5.5-4.el10_2","openssl-1:3.5.5-4.el9_8"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-42766.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.3"},{"CVE":"CVE-2026-42767","severity":"low","public_date":"2026-06-09T00:00:00Z","advisories":["RHSA-2026:25239","RHSA-2026:25237"],"bugzilla":"2481891","bugzilla_description":"openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-476","affected_packages":["openssl-1:3.5.5-4.el10_2","openssl-1:3.5.5-4.el9_8"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-42767.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.3"},{"CVE":"CVE-2026-42768","severity":"low","public_date":"2026-06-09T00:00:00Z","advisories":["RHSA-2026:25239","RHSA-2026:25237"],"bugzilla":"2481892","bugzilla_description":"openssl: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-205","affected_packages":["openssl-1:3.5.5-4.el10_2","openssl-1:3.5.5-4.el9_8"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-42768.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N","cvss3_score":"6.3"},{"CVE":"CVE-2026-42769","severity":"low","public_date":"2026-06-09T00:00:00Z","advisories":["RHSA-2026:25239","RHSA-2026:25237"],"bugzilla":"2481893","bugzilla_description":"openssl: Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-295","affected_packages":["openssl-1:3.5.5-4.el10_2","openssl-1:3.5.5-4.el9_8"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-42769.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N","cvss3_score":"5.9"},{"CVE":"CVE-2026-42770","severity":"low","public_date":"2026-06-09T00:00:00Z","advisories":["RHSA-2026:25239","RHSA-2026:25237"],"bugzilla":"2481894","bugzilla_description":"openssl: FFC-DH Peer Validation Uses Attacker-Supplied q","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-354","affected_packages":["openssl-1:3.5.5-4.el10_2","openssl-1:3.5.5-4.el9_8"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-42770.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N","cvss3_score":"5.9"},{"CVE":"CVE-2026-45445","severity":"moderate","public_date":"2026-06-09T00:00:00Z","advisories":["RHSA-2026:25239","RHSA-2026:25237"],"bugzilla":"2481896","bugzilla_description":"openssl: AES-OCB IV Ignored on EVP_Cipher() Path","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1204","affected_packages":["openssl-1:3.5.5-4.el10_2","openssl-1:3.5.5-4.el9_8"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45445.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N","cvss3_score":"9.1"},{"CVE":"CVE-2026-45446","severity":"low","public_date":"2026-06-09T00:00:00Z","advisories":["RHSA-2026:25239","RHSA-2026:25237"],"bugzilla":"2481897","bugzilla_description":"openssl: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-347","affected_packages":["openssl-1:3.5.5-4.el10_2","openssl-1:3.5.5-4.el9_8"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45446.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N","cvss3_score":"3.7"},{"CVE":"CVE-2026-45447","severity":"important","public_date":"2026-06-09T00:00:00Z","advisories":["RHSA-2026:25239","RHSA-2026:25237"],"bugzilla":"2481898","bugzilla_description":"openssl: Heap Use-After-Free in OpenSSL PKCS7_verify()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":["openssl-1:3.5.5-4.el10_2","openssl-1:3.5.5-4.el9_8"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45447.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"8.1"},{"CVE":"CVE-2026-46315","severity":"moderate","public_date":"2026-06-09T00:00:00Z","advisories":[],"bugzilla":"2486933","bugzilla_description":"kernel: io_uring/waitid: clear waitid info before copying it to userspace","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-909","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46315.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46317","severity":"moderate","public_date":"2026-06-09T00:00:00Z","advisories":[],"bugzilla":"2486976","bugzilla_description":"kernel: KVM: arm64: Reassign nested_mmus array behind mmu_lock","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46317.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46321","severity":"moderate","public_date":"2026-06-09T00:00:00Z","advisories":[],"bugzilla":"2486977","bugzilla_description":"kernel: tun: free page on short-frame rejection in tun_xdp_one()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-763","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46321.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46319","severity":"important","public_date":"2026-06-09T00:00:00Z","advisories":[],"bugzilla":"2486979","bugzilla_description":"kernel: net/sched: act_ct: Only release RCU read lock after ct_ft","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-826","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46319.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46324","severity":"moderate","public_date":"2026-06-09T00:00:00Z","advisories":[],"bugzilla":"2486980","bugzilla_description":"kernel: netfilter: nf_tables: use list_del_rcu for netlink hooks","cvss_score":null,"cvss_scoring_vector":null,"CWE":null,"affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46324.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46316","severity":"important","public_date":"2026-06-09T00:00:00Z","advisories":[],"bugzilla":"2486982","bugzilla_description":"kernel: KVM: arm64: vgic-its: Drop the translation cache reference only for the erased entry","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-911","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46316.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46318","severity":"low","public_date":"2026-06-09T00:00:00Z","advisories":[],"bugzilla":"2486983","bugzilla_description":"kernel: Revert \"mm/hugetlbfs: update hugetlbfs to use mmap_prepare\"","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-772","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46318.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46320","severity":"moderate","public_date":"2026-06-09T00:00:00Z","advisories":[],"bugzilla":"2486985","bugzilla_description":"kernel: tap: free page on error paths in tap_get_user_xdp()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-772","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46320.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46322","severity":"moderate","public_date":"2026-06-09T00:00:00Z","advisories":[],"bugzilla":"2486987","bugzilla_description":"kernel: tun: free page on build_skb failure in tun_xdp_one()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-772","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46322.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46327","severity":"low","public_date":"2026-06-09T00:00:00Z","advisories":[],"bugzilla":"2486994","bugzilla_description":"kernel: dm: fix unlocked test for dm_suspended_md","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-367","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46327.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46332","severity":null,"public_date":"2026-06-09T00:00:00Z","advisories":[],"bugzilla":"2486995","bugzilla_description":"kernel: greybus: gb-beagleplay: bound bootloader receive buffering","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-120","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46332.json"},{"CVE":"CVE-2026-46326","severity":null,"public_date":"2026-06-09T00:00:00Z","advisories":[],"bugzilla":"2486997","bugzilla_description":"kernel: iio: pressure: mprls0025pa: fix spi_transfer struct initialisation","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-909","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46326.json"},{"CVE":"CVE-2026-52906","severity":null,"public_date":"2026-06-09T00:00:00Z","advisories":[],"bugzilla":"2486998","bugzilla_description":"kernel: 9p: fix access mode flags being ORed instead of replaced","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-266","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-52906.json"},{"CVE":"CVE-2026-46330","severity":"important","public_date":"2026-06-09T00:00:00Z","advisories":[],"bugzilla":"2486999","bugzilla_description":"kernel: Revert \"net/smc: Introduce TCP ULP support\"","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-915","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46330.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46328","severity":null,"public_date":"2026-06-09T00:00:00Z","advisories":[],"bugzilla":"2487000","bugzilla_description":"kernel: apparmor: fix rlimit for posix cpu timers","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-770","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46328.json"},{"CVE":"CVE-2026-52907","severity":null,"public_date":"2026-06-09T00:00:00Z","advisories":[],"bugzilla":"2487001","bugzilla_description":"kernel: media: rockchip: rkcif: fix off by one bugs","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-193","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-52907.json"},{"CVE":"CVE-2026-46325","severity":"moderate","public_date":"2026-06-09T00:00:00Z","advisories":[],"bugzilla":"2487002","bugzilla_description":"kernel: RDMA/rxe: Fix iova-to-va conversion for MR page sizes != PAGE_SIZE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-823","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46325.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-52904","severity":null,"public_date":"2026-06-09T00:00:00Z","advisories":[],"bugzilla":"2487003","bugzilla_description":"kernel: drm/nouveau: fix nvkm_device leak on aperture removal failure","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-772","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-52904.json"},{"CVE":"CVE-2026-52905","severity":null,"public_date":"2026-06-09T00:00:00Z","advisories":[],"bugzilla":"2487004","bugzilla_description":"kernel: mm/damon/core: disallow non-power of two min_region_sz on damon_start()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1284","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-52905.json"},{"CVE":"CVE-2026-46329","severity":"moderate","public_date":"2026-06-09T00:00:00Z","advisories":[],"bugzilla":"2487005","bugzilla_description":"kernel: erofs: handle end of filesystem properly for file-backed mounts","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46329.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-11577","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2459993","bugzilla_description":"keycloak: keycloak: privilege escalation via partialImport FGAP permission bypass","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-863","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11577.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.2"},{"CVE":"CVE-2026-11569","severity":"moderate","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486194","bugzilla_description":"quay: quay: Stored XSS via Filedrop SVG Upload","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-79","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11569.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N","cvss3_score":"5.4"},{"CVE":"CVE-2025-71315","severity":"low","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486385","bugzilla_description":"kernel: drm/vkms: Convert to DRM's vblank timer","cvss_score":null,"cvss_scoring_vector":null,"CWE":null,"affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-71315.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46275","severity":"moderate","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486398","bugzilla_description":"kernel: Bluetooth: hci_uart: fix UAFs and race conditions in close and init paths","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-476","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46275.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46274","severity":"moderate","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486404","bugzilla_description":"kernel: io-wq: check that the predecessor is hashed in io_wq_remove_pending()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46274.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.8"},{"CVE":"CVE-2026-46292","severity":"low","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486428","bugzilla_description":"kernel: pmdomain: core: Fix detach procedure for virtual devices in genpd","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-772","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46292.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46313","severity":"low","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486429","bugzilla_description":"kernel: media: intel/ipu6: fix error pointer dereference","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-476","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46313.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46299","severity":"low","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486430","bugzilla_description":"kernel: hfsplus: fix held lock freed on hfsplus_fill_super()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-772","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46299.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46302","severity":"low","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486432","bugzilla_description":"kernel: selinux: allow multiple opens of /sys/fs/selinux/policy","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-821","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46302.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46295","severity":"moderate","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486435","bugzilla_description":"kernel: KVM: x86: Do IRR scan in __kvm_apic_update_irr even if PIR is empty","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-821","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46295.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46289","severity":"moderate","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486436","bugzilla_description":"kernel: lib/scatterlist: fix length calculations in extract_kvec_to_sg","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-787","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46289.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46279","severity":"low","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486437","bugzilla_description":"kernel: mm/alloc_tag: clear codetag for pages allocated before page_ext initialization","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46279.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46312","severity":"moderate","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486438","bugzilla_description":"kernel: media: videobuf2: Set vma_flags in vb2_dma_sg_mmap","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-628","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46312.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46305","severity":null,"public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486439","bugzilla_description":"kernel: staging: rtl8723bs: os_dep: avoid NULL pointer dereference in rtw_cbuf_alloc","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-476","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46305.json"},{"CVE":"CVE-2026-46308","severity":null,"public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486440","bugzilla_description":"kernel: pmdomain: mediatek: fix use-after-free in scpsys_get_bus_protection_legacy()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-826","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46308.json"},{"CVE":"CVE-2026-46310","severity":null,"public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486441","bugzilla_description":"kernel: media: renesas: vsp1: Fix NULL pointer deref on module unload","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-763","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46310.json"},{"CVE":"CVE-2026-46296","severity":null,"public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486443","bugzilla_description":"kernel: spi: s3c64xx: fix NULL-deref on driver unbind","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-763","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46296.json"},{"CVE":"CVE-2026-46277","severity":null,"public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486444","bugzilla_description":"kernel: mm/zone_device: do not touch device folio after calling ->folio_free()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46277.json"},{"CVE":"CVE-2026-46283","severity":"moderate","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486445","bugzilla_description":"kernel: tpm: Use kfree_sensitive() to free auth session in tpm_dev_release()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-212","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46283.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46285","severity":null,"public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486447","bugzilla_description":"kernel: mtd: docg3: fix use-after-free in docg3_release()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46285.json"},{"CVE":"CVE-2026-46304","severity":"moderate","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486448","bugzilla_description":"kernel: nvmet: avoid recursive nvmet-wq flush in nvmet_ctrl_free","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-833","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46304.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46280","severity":"moderate","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486449","bugzilla_description":"kernel: lib: test_hmm: evict device pages on file close to avoid use-after-free","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46280.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46301","severity":null,"public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486450","bugzilla_description":"kernel: spi: topcliff-pch: fix use-after-free on unbind","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46301.json"},{"CVE":"CVE-2026-46278","severity":null,"public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486451","bugzilla_description":"kernel: drm/imagination: Fix segfault when updating ftrace mask","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-476","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46278.json"},{"CVE":"CVE-2026-46314","severity":null,"public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486452","bugzilla_description":"kernel: drm/v3d: Reject empty multisync extension to prevent infinite loop","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-606","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46314.json"},{"CVE":"CVE-2026-46294","severity":"moderate","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486454","bugzilla_description":"kernel: dm: fix a buffer overflow in ioctl processing","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46294.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46281","severity":"moderate","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486455","bugzilla_description":"kernel: vmalloc: fix buffer overflow in vrealloc_node_align()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-787","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46281.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46307","severity":"moderate","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486456","bugzilla_description":"kernel: wifi: ath5k: do not access array OOB","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-787","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46307.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46290","severity":null,"public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486457","bugzilla_description":"kernel: x86/efi: Fix graceful fault handling after FPU softirq changes","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-663","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46290.json"},{"CVE":"CVE-2026-46282","severity":null,"public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486460","bugzilla_description":"kernel: iio: frequency: admv1013: fix NULL pointer dereference on str","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46282.json"},{"CVE":"CVE-2026-46306","severity":"moderate","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486463","bugzilla_description":"kernel: flow_dissector: do not dissect PPPoE PFC frames","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-843","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46306.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46291","severity":"moderate","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486465","bugzilla_description":"kernel: crypto: caam - guard HMAC key hex dumps in hash_digest_key","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-215","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46291.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46287","severity":null,"public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486467","bugzilla_description":"kernel: net: txgbe: fix RTNL assertion warning when remove module","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-414","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46287.json"},{"CVE":"CVE-2026-46309","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486468","bugzilla_description":"kernel: drm/xe/uapi: Reject coh_none PAT index for CPU cached memory in madvise","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-524","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46309.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46288","severity":null,"public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486469","bugzilla_description":"kernel: of: unittest: fix use-after-free in of_unittest_changeset()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-911","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46288.json"},{"CVE":"CVE-2026-46311","severity":null,"public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486470","bugzilla_description":"kernel: drm/amdgpu/userq: fix access to stale wptr mapping","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46311.json"},{"CVE":"CVE-2026-46293","severity":null,"public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486474","bugzilla_description":"kernel: clk: microchip: mpfs-ccc: fix out of bounds access during output registration","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-131","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46293.json"},{"CVE":"CVE-2026-46284","severity":"low","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486475","bugzilla_description":"kernel: mm/hugetlb: fix early boot crash on parameters without '=' separator","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-476","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46284.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46297","severity":null,"public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486476","bugzilla_description":"kernel: net: libwx: use request_irq for VF misc interrupt","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-628","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46297.json"},{"CVE":"CVE-2026-46276","severity":null,"public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486479","bugzilla_description":"kernel: drm/amdgpu: fix zero-size GDS range init on RDNA4","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1284","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46276.json"},{"CVE":"CVE-2026-46298","severity":"low","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486480","bugzilla_description":"kernel: pseries/papr-hvpipe: Fix race with interrupt handler","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-364","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46298.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-11697","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486597","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in UI","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1286","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11697.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11670","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486598","bugzilla_description":"chromium-browser: Use after free in PDF","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11670.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11662","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486599","bugzilla_description":"chromium-browser: Type Confusion in Bindings","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-843","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11662.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11678","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486600","bugzilla_description":"chromium-browser: Integer overflow in libyuv","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11678.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"5.0"},{"CVE":"CVE-2026-11637","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486601","bugzilla_description":"chromium-browser: Use after free in Views","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11637.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11699","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486602","bugzilla_description":"chromium-browser: Use after free in Bluetooth","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11699.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11629","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486603","bugzilla_description":"chromium-browser: Use after free in Ozone","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11629.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11628","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486604","bugzilla_description":"chromium-browser: Use after free in Ozone","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11628.json","cvss3_scoring_vector":"CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"6.6"},{"CVE":"CVE-2026-11642","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486605","bugzilla_description":"chromium-browser: Use after free in Web Apps","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1341","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11642.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-11647","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486606","bugzilla_description":"chromium-browser: Use after free in Printing","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11647.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.2"},{"CVE":"CVE-2026-11635","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486607","bugzilla_description":"chromium-browser: Use after free in Bluetooth","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11635.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-11646","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486608","bugzilla_description":"chromium-browser: Use after free in ViewTransitions","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-772","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11646.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11648","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486609","bugzilla_description":"chromium-browser: Use after free in FullScreen","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11648.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11696","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486610","bugzilla_description":"chromium-browser: Uninitialized Use in Video","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11696.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11701","severity":"moderate","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486611","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Guest View","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1021","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11701.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","cvss3_score":"4.3"},{"CVE":"CVE-2026-11644","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486612","bugzilla_description":"chromium-browser: Use after free in Views","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11644.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.0"},{"CVE":"CVE-2026-11694","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486613","bugzilla_description":"chromium-browser: Use after free in ServiceWorker","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11694.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-11666","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486614","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Input","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-79","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11666.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N","cvss3_score":"5.4"},{"CVE":"CVE-2026-11652","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486615","bugzilla_description":"chromium-browser: Use after free in Extensions","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11652.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-11649","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486616","bugzilla_description":"chromium-browser: Use after free in V8","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11649.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11681","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486617","bugzilla_description":"chromium-browser: Use after free in Ozone","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11681.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11665","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486618","bugzilla_description":"chromium-browser: Out of bounds read in Dawn","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11665.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11695","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486619","bugzilla_description":"chromium-browser: Inappropriate implementation in Passwords","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11695.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"7.4"},{"CVE":"CVE-2026-11685","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486620","bugzilla_description":"chromium-browser: Insufficient data validation in MediaCapture","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11685.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"7.4"},{"CVE":"CVE-2026-11643","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486621","bugzilla_description":"chromium-browser: Use after free in Proxy","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11643.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"9.8"},{"CVE":"CVE-2026-11673","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486622","bugzilla_description":"chromium-browser: Use after free in InterestGroups","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11673.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11641","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486623","bugzilla_description":"chromium-browser: Use after free in Bluetooth","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11641.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11676","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486624","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Dawn","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1286","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11676.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.2"},{"CVE":"CVE-2026-11638","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486625","bugzilla_description":"chromium-browser: Use after free in Printing","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11638.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11654","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486626","bugzilla_description":"chromium-browser: Use after free in CameraCapture","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11654.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11671","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486627","bugzilla_description":"chromium-browser: Use after free in Navigation","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11671.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11690","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486628","bugzilla_description":"chromium-browser: Out of bounds read and write in Media","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-823","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11690.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.0"},{"CVE":"CVE-2026-11669","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486629","bugzilla_description":"chromium-browser: Integer overflow in Media","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11669.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"5.7"},{"CVE":"CVE-2026-11686","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486630","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Dawn","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11686.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"6.8"},{"CVE":"CVE-2026-11650","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486631","bugzilla_description":"chromium-browser: Use after free in V8","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11650.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11661","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486632","bugzilla_description":"chromium-browser: Use after free in Views","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11661.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-11645","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486633","bugzilla_description":"chromium-browser: Out of bounds memory access in V8","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11645.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11657","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486634","bugzilla_description":"chromium-browser: Use after free in Payments","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11657.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11683","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486635","bugzilla_description":"chromium-browser: Use after free in WebCodecs","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11683.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11664","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486636","bugzilla_description":"chromium-browser: Use after free in Payments","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11664.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11680","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486637","bugzilla_description":"chromium-browser: Use after free in Media","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11680.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11634","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486638","bugzilla_description":"chromium-browser: Use after free in Gamepad","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11634.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11632","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486639","bugzilla_description":"chromium-browser: Use after free in TabStrip","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11632.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11674","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486640","bugzilla_description":"chromium-browser: Use after free in Guest View","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11674.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11687","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486641","bugzilla_description":"chromium-browser: Use after free in Dawn","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11687.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11663","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486642","bugzilla_description":"chromium-browser: Use after free in Skia","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11663.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-11653","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486643","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Extensions","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-653","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11653.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"8.7"},{"CVE":"CVE-2026-11675","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486644","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Skia","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11675.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"6.8"},{"CVE":"CVE-2026-11667","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486645","bugzilla_description":"chromium-browser: Out of bounds read in WebRTC","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11667.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.3"},{"CVE":"CVE-2026-11682","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486646","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Views","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-653","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11682.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.2"},{"CVE":"CVE-2026-11700","severity":"moderate","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486647","bugzilla_description":"chromium-browser: Use after free in Tracing","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11700.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-11636","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486648","bugzilla_description":"chromium-browser: Use after free in Autofill","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11636.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11630","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486649","bugzilla_description":"chromium-browser: Use after free in File Input","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11630.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11691","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486650","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in New Tab Page","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11691.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"6.8"},{"CVE":"CVE-2026-11698","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486651","bugzilla_description":"chromium-browser: Use after free in Bluetooth","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1341","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11698.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11640","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486652","bugzilla_description":"chromium-browser: Integer overflow in libyuv","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11640.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-11679","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486653","bugzilla_description":"chromium-browser: Use after free in Codecs","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11679.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-11651","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486654","bugzilla_description":"chromium-browser: Use after free in Network","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11651.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11684","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486655","bugzilla_description":"chromium-browser: Insufficient policy enforcement in Network","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-940","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11684.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"5.7"},{"CVE":"CVE-2026-11660","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486656","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in New Tab Page","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-79","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11660.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-11672","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486657","bugzilla_description":"chromium-browser: Out of bounds write in GPU","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-787","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11672.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-11633","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486658","bugzilla_description":"chromium-browser: Use after free in Bluetooth","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11633.json","cvss3_scoring_vector":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11655","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486659","bugzilla_description":"chromium-browser: Integer overflow in Media","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11655.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-11677","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486660","bugzilla_description":"chromium-browser: Race in Network","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-368","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11677.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"7.3"},{"CVE":"CVE-2026-11658","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486661","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Extensions","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1286","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11658.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"6.8"},{"CVE":"CVE-2026-11688","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486662","bugzilla_description":"chromium-browser: Object lifecycle issue in SVG","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-823","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11688.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11692","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486663","bugzilla_description":"chromium-browser: Use after free in Read Anything","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11692.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-11689","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486664","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Passwords","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1100","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11689.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"8.7"},{"CVE":"CVE-2026-11668","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486665","bugzilla_description":"chromium-browser: Uninitialized Use in Codecs","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11668.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11659","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486666","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in UI","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11659.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11693","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486667","bugzilla_description":"chromium-browser: Inappropriate implementation in Plugins","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-653","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11693.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"8.7"},{"CVE":"CVE-2026-11656","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486668","bugzilla_description":"chromium-browser: Use after free in ServiceWorker","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11656.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.2"},{"CVE":"CVE-2026-11639","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486669","bugzilla_description":"chromium-browser: Use after free in Compositing","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11639.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11631","severity":"important","public_date":"2026-06-08T00:00:00Z","advisories":[],"bugzilla":"2486670","bugzilla_description":"chromium-browser: Use after free in Aura","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11631.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","cvss3_score":"9.9"},{"CVE":"CVE-2026-53469","severity":"important","public_date":"2026-06-07T00:00:00Z","advisories":[],"bugzilla":"2487065","bugzilla_description":"migration-planner: Unprotected DELETE Endpoint Wipes All Tenant Data","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-306","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-53469.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H","cvss3_score":"9.1"},{"CVE":"CVE-2026-53470","severity":"important","public_date":"2026-06-07T00:00:00Z","advisories":[],"bugzilla":"2487069","bugzilla_description":"migration-planner: GetSourceDownloadURL Missing Organization Check","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-639","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-53470.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N","cvss3_score":"9.6"},{"CVE":"CVE-2026-53471","severity":"important","public_date":"2026-06-07T00:00:00Z","advisories":[],"bugzilla":"2487070","bugzilla_description":"migration-planner: Agent API Ignores JWT source_id Claim","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-639","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-53471.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N","cvss3_score":"9.6"},{"CVE":"CVE-2026-53472","severity":"important","public_date":"2026-06-07T00:00:00Z","advisories":[],"bugzilla":"2487073","bugzilla_description":"migration-planner: credentialUrl Validator Accepts javascript: URLs","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-79","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-53472.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:N","cvss3_score":"6.3"},{"CVE":"CVE-2026-53473","severity":"important","public_date":"2026-06-07T00:00:00Z","advisories":[],"bugzilla":"2487107","bugzilla_description":"migration-planner-ui-app: Stored XSS via javascript: URL in Agent Credential Link","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-79","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-53473.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N","cvss3_score":"7.3"},{"CVE":"CVE-2026-53474","severity":"important","public_date":"2026-06-07T00:00:00Z","advisories":[],"bugzilla":"2487231","bugzilla_description":"migration-planner: Second-Order SQL Injection via RVTools Upload","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-89","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-53474.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N","cvss3_score":"9.6"},{"CVE":"CVE-2026-53475","severity":"important","public_date":"2026-06-07T00:00:00Z","advisories":[],"bugzilla":"2487232","bugzilla_description":"assisted-migration-agent: TLS Verification Disabled on All vCenter Connections","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-295","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-53475.json","cvss3_scoring_vector":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N","cvss3_score":"9.3"},{"CVE":"CVE-2026-53476","severity":"important","public_date":"2026-06-07T00:00:00Z","advisories":[],"bugzilla":"2487233","bugzilla_description":"assisted-migration-agent: VDDK Tarball Chained-Symlink Arbitrary File Write","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-59","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-53476.json","cvss3_scoring_vector":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-9088","severity":"low","public_date":"2026-06-05T07:45:40Z","advisories":["RHSA-2026:25098","RHSA-2026:25097"],"bugzilla":"2480179","bugzilla_description":"keycloak: Keycloak: Information disclosure due to user profile permission bypass","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1220","affected_packages":["rhbk/keycloak-rhel9","rhbk/keycloak-operator-bundle:26.6.3-3","rhbk/keycloak-rhel9:26.6-6","rhbk/keycloak-rhel9-operator:26.6-6"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-9088.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N","cvss3_score":"2.7"},{"CVE":"CVE-2026-11332","severity":"important","public_date":"2026-06-05T07:12:55Z","advisories":[],"bugzilla":"2485379","bugzilla_description":"ansible-core: argument injection in ansible-galaxy role install leads to arbitrary code execution","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-88","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11332.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"7.8"},{"CVE":"CVE-2026-10732","severity":"important","public_date":"2026-06-05T05:00:02Z","advisories":[],"bugzilla":"2485376","bugzilla_description":"decompress: Decompress: Arbitrary file write leading to remote code execution via crafted ZIP archive (Zip Slip)","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-22","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10732.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"7.5"},{"CVE":"CVE-2026-50292","severity":"moderate","public_date":"2026-06-05T00:00:00Z","advisories":[],"bugzilla":"2485390","bugzilla_description":"libinput: local privilege escalation via crafted uinput devices","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-78","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50292.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"6.7"},{"CVE":"CVE-2026-11774","severity":"important","public_date":"2026-06-04T21:00:00Z","advisories":[],"bugzilla":"2484916","bugzilla_description":"389-ds-base: 389-ds-base: integer overflow in SASL packet length bypasses size limit leading to heap buffer overflow","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11774.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H","cvss3_score":"7.6"},{"CVE":"CVE-2026-11884","severity":"moderate","public_date":"2026-06-04T20:32:00Z","advisories":[],"bugzilla":"2484913","bugzilla_description":"389-ds-base: 389-ds-base: heap buffer overflow in schema objectclass serialization due to missing oc_superior in size calculation","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-122","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11884.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H","cvss3_score":"6.5"},{"CVE":"CVE-2026-50266","severity":"moderate","public_date":"2026-06-04T16:18:39Z","advisories":[],"bugzilla":"2484852","bugzilla_description":"openstack-neutron: OpenStack Neutron: Network spoofing via incorrect port RBAC policies","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-639","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50266.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"6.6"},{"CVE":"CVE-2026-10803","severity":"low","public_date":"2026-06-04T11:45:10Z","advisories":[],"bugzilla":"2484755","bugzilla_description":"mlflow: MLflow: Use of weak hash in Dataset Digest Computation","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-328","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10803.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N","cvss3_score":"2.5"},{"CVE":"CVE-2026-50219","severity":"moderate","public_date":"2026-06-04T04:20:32Z","advisories":[],"bugzilla":"2484620","bugzilla_description":"expat: libexpat: Use-after-free vulnerability due to improper handler call depth tracking","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-911","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50219.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L","cvss3_score":"4.9"},{"CVE":"CVE-2026-41283","severity":"important","public_date":"2026-06-04T00:00:00Z","advisories":[],"bugzilla":"2484607","bugzilla_description":"openstack-mistral: OpenStack Mistral: Arbitrary Remote Code Execution via exposed API endpoints","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-749","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-41283.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","cvss3_score":"9.9"},{"CVE":"CVE-2026-48681","severity":"moderate","public_date":"2026-06-04T00:00:00Z","advisories":[],"bugzilla":"2484608","bugzilla_description":"openstack-ironic: OpenStack Ironic: File overwrite via directory traversal vulnerability","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-22","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-48681.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N","cvss3_score":"5.9"},{"CVE":"CVE-2026-10805","severity":"moderate","public_date":"2026-06-04T00:00:00Z","advisories":[],"bugzilla":"2484613","bugzilla_description":"NetworkManager: NetworkManager: Local privilege escalation via malformed MUD URLs in dhclient backend","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-78","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10805.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"6.7"},{"CVE":"CVE-2026-36499","severity":"moderate","public_date":"2026-06-04T00:00:00Z","advisories":[],"bugzilla":"2484881","bugzilla_description":"openvswitch: Open vSwitch: Denial of service via resource exhaustion due to missing upper-bound check","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-770","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-36499.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"4.4"},{"CVE":"CVE-2026-47774","severity":"important","public_date":"2026-06-04T00:00:00Z","advisories":[],"bugzilla":"2487465","bugzilla_description":"envoy: envoy: HTTP/2 Remote Denial of Service via HPACK compression bomb and Slowloris-style attack","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-409","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-47774.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"7.5"},{"CVE":"CVE-2026-6657","severity":"moderate","public_date":"2026-06-03T15:06:56Z","advisories":[],"bugzilla":"2484420","bugzilla_description":"jupyter-server: jupyter-server: Arbitrary code execution due to CORS origin validation bypass","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-625","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6657.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N","cvss3_score":"6.1"},{"CVE":"CVE-2026-3276","severity":"moderate","public_date":"2026-06-03T14:29:39Z","advisories":[],"bugzilla":"2484424","bugzilla_description":"python: Python unicodedata: Denial of Service due to excessive CPU consumption","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-606","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-3276.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","cvss3_score":"5.3"},{"CVE":"CVE-2026-44546","severity":"low","public_date":"2026-06-03T13:17:55Z","advisories":[],"bugzilla":"2484368","bugzilla_description":"daphne: daphne: Information disclosure via header injection due to parser differential","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-444","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-44546.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N","cvss3_score":"3.7"},{"CVE":"CVE-2026-48587","severity":"low","public_date":"2026-06-03T13:16:47Z","advisories":[],"bugzilla":"2484372","bugzilla_description":"django: Django: Information disclosure via improper handling of Vary header whitespace","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-524","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-48587.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N","cvss3_score":"3.1"},{"CVE":"CVE-2026-35193","severity":"low","public_date":"2026-06-03T13:16:38Z","advisories":[],"bugzilla":"2484374","bugzilla_description":"django: Django: Information disclosure due to improper caching of authenticated responses","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-524","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-35193.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N","cvss3_score":"3.1"},{"CVE":"CVE-2026-8404","severity":"low","public_date":"2026-06-03T13:16:29Z","advisories":[],"bugzilla":"2484370","bugzilla_description":"Django: Django: Information disclosure due to improper handling of Cache-Control directives","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1289","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8404.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N","cvss3_score":"3.1"},{"CVE":"CVE-2026-7666","severity":"low","public_date":"2026-06-03T13:16:15Z","advisories":[],"bugzilla":"2484369","bugzilla_description":"django: Django: Information disclosure via failed STARTTLS handshake in EmailBackend","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-325","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-7666.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N","cvss3_score":"3.1"},{"CVE":"CVE-2026-6873","severity":"low","public_date":"2026-06-03T13:16:03Z","advisories":[],"bugzilla":"2484373","bugzilla_description":"python-django: Django: Information disclosure via non-injective cookie salt derivation","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-303","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-6873.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N","cvss3_score":"3.1"},{"CVE":"CVE-2026-5241","severity":"important","public_date":"2026-06-03T12:33:10Z","advisories":[],"bugzilla":"2484384","bugzilla_description":"python-transformers: python-transformers: Arbitrary code execution due to overridden trust_remote_code setting","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-829","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-5241.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"7.7"},{"CVE":"CVE-2026-10722","severity":"moderate","public_date":"2026-06-03T10:45:10Z","advisories":[],"bugzilla":"2484348","bugzilla_description":"github.com/cilium/ebpf: Cilium ebpf: Denial of Service via integer overflow","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10722.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-4035","severity":"important","public_date":"2026-06-03T07:18:08Z","advisories":[],"bugzilla":"2484318","bugzilla_description":"python-mlflow: MLflow: Sensitive credential exfiltration via environment variable resolution in AI Gateway secrets","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-201","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-4035.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N","cvss3_score":"7.7"},{"CVE":"CVE-2026-5078","severity":"moderate","public_date":"2026-06-03T05:56:49Z","advisories":[],"bugzilla":"2484311","bugzilla_description":"morgan: morgan: Log forgery due to unneutralized control characters","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-93","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-5078.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N","cvss3_score":"5.3"},{"CVE":"CVE-2026-50031","severity":"moderate","public_date":"2026-06-03T03:07:25Z","advisories":[],"bugzilla":"2484296","bugzilla_description":"freeipmi: FreeIPMI: Denial of service via buffer overflow in ipmi-oem client","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-120","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50031.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"7.5"},{"CVE":"CVE-2026-46258","severity":null,"public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484436","bugzilla_description":"kernel: gpio: cdev: Avoid NULL dereference in linehandle_create()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-476","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46258.json"},{"CVE":"CVE-2026-46261","severity":null,"public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484437","bugzilla_description":"kernel: spi: wpcm-fiu: Fix potential NULL pointer dereference in wpcm_fiu_probe()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-476","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46261.json"},{"CVE":"CVE-2026-46260","severity":"moderate","public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484438","bugzilla_description":"kernel: ipv6: Fix out-of-bound access in fib6_add_rt2node()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46260.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46273","severity":"moderate","public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484442","bugzilla_description":"kernel: ibmveth: Disable GSO for packets with small MSS","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1284","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46273.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46245","severity":null,"public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484444","bugzilla_description":"kernel: drm/amd/display: Fix dc_link NULL handling in HPD init","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-476","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46245.json"},{"CVE":"CVE-2026-46254","severity":null,"public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484445","bugzilla_description":"kernel: AppArmor: Allow apparmor to handle unaligned dfa tables","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-843","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46254.json"},{"CVE":"CVE-2026-46250","severity":null,"public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484446","bugzilla_description":"kernel: MIPS: Work around LLVM bug when gp is used as global register variable","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-823","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46250.json"},{"CVE":"CVE-2026-46271","severity":"low","public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484447","bugzilla_description":"kernel: wifi: ath12k: do WoW offloads only on primary link","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-372","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46271.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46268","severity":"low","public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484449","bugzilla_description":"kernel: PCI/P2PDMA: Fix p2pmem_alloc_mmap() warning condition","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-911","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46268.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46262","severity":"low","public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484450","bugzilla_description":"kernel: ASoC: fsl_xcvr: Revert fix missing lock in fsl_xcvr_mode_put()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-833","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46262.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46244","severity":"important","public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484451","bugzilla_description":"kernel: netfilter: nft_inner: Fix IPv6 inner_thoff desync","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-823","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46244.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H","cvss3_score":"7.3"},{"CVE":"CVE-2026-46270","severity":null,"public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484453","bugzilla_description":"kernel: power: supply: rt9455: Fix use-after-free in power_supply_changed()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-364","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46270.json"},{"CVE":"CVE-2026-46269","severity":null,"public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484454","bugzilla_description":"kernel: pinctrl: canaan: k230: Fix NULL pointer dereference when parsing devicetree","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46269.json"},{"CVE":"CVE-2026-46266","severity":"moderate","public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484456","bugzilla_description":"kernel: inet: RAW sockets using IPPROTO_RAW MUST drop incoming ICMP","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1287","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46266.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46252","severity":"moderate","public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484457","bugzilla_description":"kernel: regulator: core: fix locking in regulator_resolve_supply() error path","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-413","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46252.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46256","severity":"low","public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484459","bugzilla_description":"kernel: NFS/localio: prevent direct reclaim recursion into NFS via nfs_writepages","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-833","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46256.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46247","severity":"low","public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484463","bugzilla_description":"kernel: clk: qcom: gfx3d: add parent to parent request map","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-476","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46247.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46264","severity":null,"public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484464","bugzilla_description":"kernel: drm/xe/pf: Fix sysfs initialization","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46264.json"},{"CVE":"CVE-2026-46251","severity":"moderate","public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484466","bugzilla_description":"kernel: btrfs: fix block_group_tree dirty_list corruption","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-237","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46251.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46267","severity":null,"public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484467","bugzilla_description":"kernel: nfc: hci: shdlc: Stop timers and work before freeing context","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-364","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46267.json"},{"CVE":"CVE-2026-46257","severity":null,"public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484468","bugzilla_description":"kernel: clocksource/drivers/timer-sp804: Fix an Oops when read_current_timer is called on ARM32 platforms where the SP804 is not registered as the sched_clock","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46257.json"},{"CVE":"CVE-2026-46246","severity":null,"public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484471","bugzilla_description":"kernel: power: supply: pm8916_lbc: Fix use-after-free for extcon in IRQ handler","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46246.json"},{"CVE":"CVE-2025-71314","severity":null,"public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484472","bugzilla_description":"kernel: drm/panthor: Recover from panthor_gpu_flush_caches() failures","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-770","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-71314.json"},{"CVE":"CVE-2025-71313","severity":"low","public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484473","bugzilla_description":"kernel: PCI: endpoint: Add missing NULL check for alloc_workqueue()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-476","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-71313.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46253","severity":"moderate","public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484474","bugzilla_description":"kernel: pstore/ram: fix buffer overflow in persistent_ram_save_old()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-787","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46253.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46249","severity":"low","public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484476","bugzilla_description":"kernel: octeontx2-af: Fix PF driver crash with kexec kernel booting","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-909","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46249.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46259","severity":"moderate","public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484477","bugzilla_description":"kernel: procfs: fix missing RCU protection when reading real_parent in do_task_stat()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-820","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46259.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H","cvss3_score":"7.1"},{"CVE":"CVE-2026-46248","severity":"low","public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484478","bugzilla_description":"kernel: wifi: ath12k: clear stale link mapping of ahvif->links_map","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-459","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46248.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46265","severity":null,"public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484481","bugzilla_description":"kernel: RDMA/hns: Fix WQ_MEM_RECLAIM warning","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-821","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46265.json"},{"CVE":"CVE-2026-46272","severity":null,"public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484482","bugzilla_description":"kernel: coresight: tmc-etr: Fix race condition between sysfs and perf mode","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-367","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46272.json"},{"CVE":"CVE-2026-46263","severity":null,"public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484484","bugzilla_description":"kernel: drm/amd/display: Fix out-of-bounds stream encoder index v3","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1285","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46263.json"},{"CVE":"CVE-2026-46255","severity":"low","public_date":"2026-06-03T00:00:00Z","advisories":[],"bugzilla":"2484485","bugzilla_description":"kernel: dmaengine: fsl-edma: don't explicitly disable clocks in .remove()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-832","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46255.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-49975","severity":"important","public_date":"2026-06-03T00:00:00Z","advisories":["RHSA-2026:25057","RHSA-2026:25042","RHSA-2026:25090","RHSA-2026:25225"],"bugzilla":"2485371","bugzilla_description":"httpd: HTTP/2: Remote Denial of Service via compression bomb and Slowloris-style attack","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-409","affected_packages":["mod_http2-0:2.0.26-6.el9_8.1","mod_http2-0:2.0.29-4.el10_2.1","httpd-main-2.4.68-1.hum1","httpd:2.4-8100020260608081321.489197e6"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-49975.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"7.5"},{"CVE":"CVE-2026-10650","severity":"moderate","public_date":"2026-06-02T21:15:10Z","advisories":[],"bugzilla":"2484180","bugzilla_description":"libwebsockets: libwebsockets: Denial of Service via SSH Protocol Handler resource consumption","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-130","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10650.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","cvss3_score":"5.3"},{"CVE":"CVE-2026-47265","severity":"moderate","public_date":"2026-06-02T18:32:50Z","advisories":[],"bugzilla":"2484127","bugzilla_description":"python-aiohttp: AIOHTTP: Information disclosure via improper handling of cookies during cross-origin redirects","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-201","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-47265.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-34993","severity":"important","public_date":"2026-06-02T18:29:15Z","advisories":["RHSA-2026:24977"],"bugzilla":"2484099","bugzilla_description":"aiohttp: AIOHTTP: Arbitrary code execution via untrusted input to CookieJar.load()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-502","affected_packages":["rhoai/odh-training-rocm62-torch24-py311-rhel9:1780069179","rhoai/odh-training-cuda124-torch25-py311-rhel9:1780078840","rhoai/odh-training-cuda121-torch24-py311-rhel9:1780078807","rhoai/odh-training-rocm62-torch25-py311-rhel9:1780069181"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34993.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"7.2"},{"CVE":"CVE-2026-34077","severity":"moderate","public_date":"2026-06-02T17:31:35Z","advisories":[],"bugzilla":"2484123","bugzilla_description":"react-router: React Router: Denial of Service via client-side Cross-Site Scripting in RSC redirect handling","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-79","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34077.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H","cvss3_score":"6.5"},{"CVE":"CVE-2026-46718","severity":"moderate","public_date":"2026-06-02T09:17:51Z","advisories":[],"bugzilla":"2484010","bugzilla_description":"calcite: org.apache.calcite.avatica/avatica-core: Apache Calcite: Unsafe Reflection vulnerability allows externally-controlled input to select classes or code.","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-470","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46718.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N","cvss3_score":"5.4"},{"CVE":"CVE-2026-5422","severity":"moderate","public_date":"2026-06-02T09:11:15Z","advisories":[],"bugzilla":"2484037","bugzilla_description":"jupyter-server: jupyter-server: Sensitive data exposure via path traversal vulnerability","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-22","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-5422.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N","cvss3_score":"6.8"},{"CVE":"CVE-2026-1784","severity":"important","public_date":"2026-06-02T07:12:31Z","advisories":["RHSA-2026:23241","RHSA-2026:23246"],"bugzilla":"2436075","bugzilla_description":"ose-cluster-ingress-operator: Remote Code Execution Through HAProxy Configuration Injection","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-15","affected_packages":["openshift4/ose-cluster-ingress-rhel9-operator:1780444348","openshift4/ose-cluster-ingress-rhel9-operator:1780043338"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-1784.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-3198","severity":"moderate","public_date":"2026-06-02T02:50:47Z","advisories":[],"bugzilla":"2483903","bugzilla_description":"mlflow: MLflow: Information disclosure via insufficient authorization checks in Gateway API endpoints","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-425","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-3198.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-28946","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2471790","bugzilla_description":"webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-416","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-28946.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-28847","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2483955","bugzilla_description":"webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-120","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-28847.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-28883","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2483956","bugzilla_description":"webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-416","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-28883.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-28901","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2483957","bugzilla_description":"webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-120","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-28901.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-28902","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2483958","bugzilla_description":"webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-120","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-28902.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-28903","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2483959","bugzilla_description":"webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-120","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-28903.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-28904","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2483960","bugzilla_description":"webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-120","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-28904.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-28905","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2483961","bugzilla_description":"webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-120","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-28905.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-28907","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2483962","bugzilla_description":"webkitgtk: Processing maliciously crafted web content may prevent Content Security Policy from being enforced","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-20","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-28907.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-28942","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2483963","bugzilla_description":"webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-416","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-28942.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-28947","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2483964","bugzilla_description":"webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-416","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-28947.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-28953","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2483965","bugzilla_description":"webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-120","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-28953.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-28955","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2483966","bugzilla_description":"webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-120","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-28955.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-28958","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2483967","bugzilla_description":"webkitgtk: An app may be able to access sensitive user data","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-200","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-28958.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-43658","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2483968","bugzilla_description":"webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-120","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-43658.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-43660","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2483969","bugzilla_description":"webkitgtk: Processing maliciously crafted web content may prevent Content Security Policy from being enforced","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-693","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-43660.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-10996","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484945","bugzilla_description":"chromium-browser: Inappropriate implementation in Workers","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10996.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"9.3"},{"CVE":"CVE-2026-11021","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484946","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in GPU","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-179","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11021.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-10926","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484947","bugzilla_description":"chromium-browser: Use after free in Cast","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-364","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10926.json","cvss3_scoring_vector":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11235","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484948","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Compositing","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-280","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11235.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-10985","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484949","bugzilla_description":"chromium-browser: Out of bounds read in Skia","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10985.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"7.4"},{"CVE":"CVE-2026-11016","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484950","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Network","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11016.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"8.7"},{"CVE":"CVE-2026-11300","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484951","bugzilla_description":"chromium-browser: Inappropriate implementation in Permissions","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-279","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11300.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","cvss3_score":"4.3"},{"CVE":"CVE-2026-10995","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484952","bugzilla_description":"chromium-browser: Heap buffer overflow in TabStrip","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-120","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10995.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H","cvss3_score":"8.3"},{"CVE":"CVE-2026-11101","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484953","bugzilla_description":"chromium-browser: Uninitialized Use in Dawn","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11101.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11116","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484954","bugzilla_description":"chromium-browser: Use after free in Chromoting","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11116.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"9.8"},{"CVE":"CVE-2026-10911","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484955","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Media","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1173","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10911.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-10984","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484956","bugzilla_description":"chromium-browser: Inappropriate implementation in Accessibility","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1021","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10984.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","cvss3_score":"4.3"},{"CVE":"CVE-2026-11025","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484957","bugzilla_description":"chromium-browser: Insufficient policy enforcement in Navigation","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-79","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11025.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N","cvss3_score":"8.1"},{"CVE":"CVE-2026-11156","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484958","bugzilla_description":"chromium-browser: Inappropriate implementation in CSS","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11156.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11086","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484959","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Dawn","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-94","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11086.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-11162","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484960","bugzilla_description":"chromium-browser: Insufficient policy enforcement in CSS","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11162.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"7.4"},{"CVE":"CVE-2026-10894","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484961","bugzilla_description":"chromium-browser: Use after free in Printing","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10894.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-11007","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484962","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in WebView","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11007.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"6.8"},{"CVE":"CVE-2026-10989","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484963","bugzilla_description":"chromium-browser: Inappropriate implementation in V8","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-787","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10989.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11192","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484964","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Password Manager","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1021","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11192.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N","cvss3_score":"5.4"},{"CVE":"CVE-2026-11286","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484965","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Wallet","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-79","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11286.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:N"},{"CVE":"CVE-2026-11106","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484966","bugzilla_description":"chromium-browser: Inappropriate implementation in Media","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-940","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11106.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11266","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484967","bugzilla_description":"chromium-browser: Policy bypass in SafeBrowsing","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-807","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11266.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L","cvss3_score":"6.3"},{"CVE":"CVE-2026-11113","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484968","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1173","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11113.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-10943","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484969","bugzilla_description":"chromium-browser: Use after free in WebRTC","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10943.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11030","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484970","bugzilla_description":"chromium-browser: Use after free in Network","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11030.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"9.8"},{"CVE":"CVE-2026-11200","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484971","bugzilla_description":"chromium-browser: Inappropriate implementation in WebRTC","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-940","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11200.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"7.4"},{"CVE":"CVE-2026-11263","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484972","bugzilla_description":"chromium-browser: Insufficient policy enforcement in WebAuthentication","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11263.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"6.8"},{"CVE":"CVE-2026-11218","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484973","bugzilla_description":"chromium-browser: Inappropriate implementation in PlatformIntegration","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-356","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11218.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-10889","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484974","bugzilla_description":"chromium-browser: Out of bounds read in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10889.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.2"},{"CVE":"CVE-2026-11129","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484975","bugzilla_description":"chromium-browser: Inappropriate implementation in Extensions","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11129.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"7.4"},{"CVE":"CVE-2026-11173","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484976","bugzilla_description":"chromium-browser: Out of bounds write in V8","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-787","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11173.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-10994","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484977","bugzilla_description":"chromium-browser: Uninitialized Use in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10994.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11141","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484978","bugzilla_description":"chromium-browser: Uninitialized Use in Audio","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11141.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"5.0"},{"CVE":"CVE-2026-11234","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484979","bugzilla_description":"chromium-browser: Insufficient policy enforcement in FoldableAPIs","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-653","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11234.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"6.8"},{"CVE":"CVE-2026-11305","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484980","bugzilla_description":"chromium-browser: Use after free in PDFium","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11305.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-10993","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484981","bugzilla_description":"chromium-browser: Heap buffer overflow in Skia","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10993.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11253","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484982","bugzilla_description":"chromium-browser: Race in Permissions","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-940","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11253.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"7.4"},{"CVE":"CVE-2026-10933","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484983","bugzilla_description":"chromium-browser: Use after free in Audio","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10933.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.2"},{"CVE":"CVE-2026-11054","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484984","bugzilla_description":"chromium-browser: Use after free in WebRTC","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11054.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11180","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484985","bugzilla_description":"chromium-browser: Policy bypass in SVG","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11180.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"7.4"},{"CVE":"CVE-2026-11011","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484986","bugzilla_description":"chromium-browser: Insufficient policy enforcement in Password Manager","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-653","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11011.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"6.8"},{"CVE":"CVE-2026-11185","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484987","bugzilla_description":"chromium-browser: Use after free in V8","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11185.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-11309","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484988","bugzilla_description":"chromium-browser: Insufficient policy enforcement in History","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1021","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11309.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","cvss3_score":"4.3"},{"CVE":"CVE-2026-11239","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484989","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Extensions","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-358","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11239.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"8.7"},{"CVE":"CVE-2026-10931","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484990","bugzilla_description":"chromium-browser: Use after free in FileSystem","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10931.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11117","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484991","bugzilla_description":"chromium-browser: Use after free in Views","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11117.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11024","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484992","bugzilla_description":"chromium-browser: Stack buffer overflow in Skia","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-120","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11024.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11209","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484993","bugzilla_description":"chromium-browser: Insufficient policy enforcement in Passwords","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11209.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"5.0"},{"CVE":"CVE-2026-11028","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484994","bugzilla_description":"chromium-browser: Use after free in Media","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11028.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-10945","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484995","bugzilla_description":"chromium-browser: Use after free in PDF","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10945.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11069","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484996","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Cast","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11069.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"9.3"},{"CVE":"CVE-2026-10892","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484997","bugzilla_description":"chromium-browser: Out of bounds write in GPU","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-787","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10892.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11240","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484998","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Loader","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1286","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11240.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L","cvss3_score":"4.3"},{"CVE":"CVE-2026-10956","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2484999","bugzilla_description":"chromium-browser: Use after free in MimeHandlerView","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10956.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-10918","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485000","bugzilla_description":"chromium-browser: Use after free in Viz","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10918.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-11003","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485001","bugzilla_description":"chromium-browser: Use after free in WebRTC","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-772","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11003.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11097","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485002","bugzilla_description":"chromium-browser: Inappropriate implementation in WebView","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11097.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"7.4"},{"CVE":"CVE-2026-10957","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485003","bugzilla_description":"chromium-browser: Use after free in Glic","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10957.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-10978","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485004","bugzilla_description":"chromium-browser: Use after free in Chromoting","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10978.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11085","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485005","bugzilla_description":"chromium-browser: Integer overflow in GPU","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11085.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11207","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485006","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Autofill","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-501","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11207.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11088","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485007","bugzilla_description":"chromium-browser: Integer overflow in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11088.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:L","cvss3_score":"8.1"},{"CVE":"CVE-2026-11215","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485008","bugzilla_description":"chromium-browser: Inappropriate implementation in Cronet","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11215.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","cvss3_score":"4.3"},{"CVE":"CVE-2026-11093","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485009","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Printing","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11093.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"5.9"},{"CVE":"CVE-2026-11297","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485010","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Reader Mode","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1289","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11297.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N","cvss3_score":"2.8"},{"CVE":"CVE-2026-11194","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485011","bugzilla_description":"chromium-browser: Inappropriate implementation in Network","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11194.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"7.4"},{"CVE":"CVE-2026-11251","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485012","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Password Manager","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-551","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11251.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"8.7"},{"CVE":"CVE-2026-11134","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485013","bugzilla_description":"chromium-browser: Insufficient data validation in Media","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11134.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11049","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485014","bugzilla_description":"chromium-browser: Use after free in Password Manager","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11049.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11121","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485015","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Skia","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11121.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"6.8"},{"CVE":"CVE-2026-10924","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485016","bugzilla_description":"chromium-browser: Integer overflow in Chromecast","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10924.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"8.7"},{"CVE":"CVE-2026-11264","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485017","bugzilla_description":"chromium-browser: Policy bypass in Content Security Policy","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-79","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11264.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N","cvss3_score":"5.4"},{"CVE":"CVE-2026-11140","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485018","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Chromecast","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11140.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N","cvss3_score":"2.8"},{"CVE":"CVE-2026-11128","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485019","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Web Share","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11128.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11242","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485020","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Plugins","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1173","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11242.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"7.4"},{"CVE":"CVE-2026-11026","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485021","bugzilla_description":"chromium-browser: Insufficient policy enforcement in Extensions","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1021","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11026.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N","cvss3_score":"5.7"},{"CVE":"CVE-2026-10942","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485022","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in UI","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-266","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10942.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"7.3"},{"CVE":"CVE-2026-11075","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485023","bugzilla_description":"chromium-browser: Out of bounds read in V8","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11075.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11127","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485024","bugzilla_description":"chromium-browser: Inappropriate implementation in WebAPKs","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-290","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11127.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","cvss3_score":"4.3"},{"CVE":"CVE-2026-10972","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485025","bugzilla_description":"chromium-browser: Use after free in Ozone","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10972.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-10967","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485026","bugzilla_description":"chromium-browser: Use after free in SurfaceCapture","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10967.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-11284","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485027","bugzilla_description":"chromium-browser: Side-channel information leakage in PerformanceAPIs","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11284.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-10909","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485028","bugzilla_description":"chromium-browser: Use after free in Dawn","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-364","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10909.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.0"},{"CVE":"CVE-2026-10965","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485029","bugzilla_description":"chromium-browser: Integer overflow in DevTools","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10965.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11009","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485030","bugzilla_description":"chromium-browser: Use after free in USB","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11009.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11150","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485031","bugzilla_description":"chromium-browser: Inappropriate implementation in XML","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-79","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11150.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"9.3"},{"CVE":"CVE-2026-11008","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485032","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in WebAppInstalls","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11008.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"6.8"},{"CVE":"CVE-2026-11233","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485033","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in FoldableAPIs","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11233.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"8.7"},{"CVE":"CVE-2026-11046","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485034","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Media","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1289","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11046.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.2"},{"CVE":"CVE-2026-10986","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485035","bugzilla_description":"chromium-browser: Integer overflow in Media","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10986.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11057","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485036","bugzilla_description":"chromium-browser: Uninitialized Use in Skia","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11057.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"4.8"},{"CVE":"CVE-2026-10919","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485037","bugzilla_description":"chromium-browser: Use after free in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10919.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"8.7"},{"CVE":"CVE-2026-10940","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485038","bugzilla_description":"chromium-browser: Race in Codecs","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-368","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10940.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"7.9"},{"CVE":"CVE-2026-11294","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485039","bugzilla_description":"chromium-browser: Inappropriate implementation in Passwords","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1021","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11294.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N","cvss3_score":"5.4"},{"CVE":"CVE-2026-11250","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485040","bugzilla_description":"chromium-browser: Inappropriate implementation in DevTools","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-497","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11250.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N","cvss3_score":"3.5"},{"CVE":"CVE-2026-10968","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485041","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Dawn","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10968.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"6.8"},{"CVE":"CVE-2026-10999","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485042","bugzilla_description":"chromium-browser: Out of bounds memory access in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10999.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"5.0"},{"CVE":"CVE-2026-11124","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485043","bugzilla_description":"chromium-browser: Heap buffer overflow in Skia","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11124.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-10946","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485044","bugzilla_description":"chromium-browser: Heap buffer overflow in Media","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-120","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10946.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-10971","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485045","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Printing","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1286","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10971.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-11307","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485046","bugzilla_description":"chromium-browser: Use after free in PDFium","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11307.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11206","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485047","bugzilla_description":"chromium-browser: Policy bypass in ServiceWorker","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11206.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11000","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485048","bugzilla_description":"chromium-browser: Use after free in Fonts","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11000.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-10948","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485049","bugzilla_description":"chromium-browser: Use after free in WebRTC","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10948.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11164","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485050","bugzilla_description":"chromium-browser: Use after free in Blink","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11164.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11271","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485051","bugzilla_description":"chromium-browser: Incorrect security UI in Passwords","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11271.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11220","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485052","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Navigation","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-807","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11220.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"6.8"},{"CVE":"CVE-2026-11122","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485053","bugzilla_description":"chromium-browser: Inappropriate implementation in Keyboard","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-79","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11122.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N","cvss3_score":"8.1"},{"CVE":"CVE-2026-10884","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485054","bugzilla_description":"chromium-browser: Use after free in Chromecast","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10884.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"8.7"},{"CVE":"CVE-2026-11290","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485055","bugzilla_description":"chromium-browser: Integer overflow in WebView","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11290.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H","cvss3_score":"5.0"},{"CVE":"CVE-2026-11111","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485056","bugzilla_description":"chromium-browser: Out of bounds read in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11111.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N","cvss3_score":"4.3"},{"CVE":"CVE-2026-11262","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485057","bugzilla_description":"chromium-browser: Use after free in TabStrip","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11262.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11158","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485058","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Downloads","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1286","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11158.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11100","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485059","bugzilla_description":"chromium-browser: Use after free in File Input","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11100.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-10955","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485060","bugzilla_description":"chromium-browser: Type Confusion in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-843","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10955.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-10988","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485061","bugzilla_description":"chromium-browser: Use after free in Views","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10988.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.2"},{"CVE":"CVE-2026-11098","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485062","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in GPU","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11098.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"6.8"},{"CVE":"CVE-2026-11035","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485063","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Custom Tabs","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-266","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11035.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N","cvss3_score":"7.1"},{"CVE":"CVE-2026-10974","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485064","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1286","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10974.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11157","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485065","bugzilla_description":"chromium-browser: Script injection in Accessibility","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-79","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11157.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"7.9"},{"CVE":"CVE-2026-11135","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485066","bugzilla_description":"chromium-browser: Insufficient policy enforcement in Autofill","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-551","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11135.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N","cvss3_score":"5.4"},{"CVE":"CVE-2026-10959","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485067","bugzilla_description":"chromium-browser: Use after free in Input","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10959.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11228","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485068","bugzilla_description":"chromium-browser: Incorrect security UI in File Input","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-79","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11228.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N","cvss3_score":"5.4"},{"CVE":"CVE-2026-11084","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485069","bugzilla_description":"chromium-browser: Inappropriate implementation in Password Manager","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11084.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11056","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485070","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in SiteIsolation","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1289","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11056.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-11039","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485071","bugzilla_description":"chromium-browser: Uninitialized Use in Skia","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11039.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11104","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485072","bugzilla_description":"chromium-browser: Uninitialized Use in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11104.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"5.7"},{"CVE":"CVE-2026-10908","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485073","bugzilla_description":"chromium-browser: Use after free in FullScreen","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10908.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-10983","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485074","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Dawn","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1286","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10983.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-10987","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485075","bugzilla_description":"chromium-browser: Integer overflow in V8","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10987.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11107","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485076","bugzilla_description":"chromium-browser: Inappropriate implementation in Downloads","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1021","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11107.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:N"},{"CVE":"CVE-2026-11087","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485077","bugzilla_description":"chromium-browser: Uninitialized Use in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11087.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"6.8"},{"CVE":"CVE-2026-11037","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485078","bugzilla_description":"chromium-browser: Out of bounds write in Codecs","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-787","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11037.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-10953","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485079","bugzilla_description":"chromium-browser: Use after free in Core","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10953.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-11177","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485080","bugzilla_description":"chromium-browser: Use after free in Omnibox","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11177.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11159","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485081","bugzilla_description":"chromium-browser: Uninitialized Use in Skia","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11159.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-10990","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485082","bugzilla_description":"chromium-browser: Use after free in Glic","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10990.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.2"},{"CVE":"CVE-2026-11273","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485083","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Omnibox","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-79","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11273.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"9.3"},{"CVE":"CVE-2026-10976","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485084","bugzilla_description":"chromium-browser: Uninitialized Use in Dawn","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10976.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11081","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485085","bugzilla_description":"chromium-browser: Policy bypass in Canvas","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11081.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"9.3"},{"CVE":"CVE-2026-11034","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485086","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Tab Group Sync","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-79","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11034.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N","cvss3_score":"8.1"},{"CVE":"CVE-2026-11114","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485087","bugzilla_description":"chromium-browser: Use after free in Device Trust","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11114.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.2"},{"CVE":"CVE-2026-10898","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485088","bugzilla_description":"chromium-browser: Stack buffer overflow in GPU","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-120","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10898.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.2"},{"CVE":"CVE-2026-11076","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485089","bugzilla_description":"chromium-browser: Type Confusion in CSS","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-843","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11076.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11070","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485090","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Chromoting","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1289","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11070.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N","cvss3_score":"9.6"},{"CVE":"CVE-2026-11080","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485091","bugzilla_description":"chromium-browser: Use after free in WebView","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11080.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-10969","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485092","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Extensions","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-807","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10969.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-11222","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485093","bugzilla_description":"chromium-browser: Incorrect security UI in Tab Strip","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-449","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11222.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","cvss3_score":"4.3"},{"CVE":"CVE-2026-11247","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485094","bugzilla_description":"chromium-browser: Insufficient policy enforcement in CustomTabs","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11247.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"7.4"},{"CVE":"CVE-2026-11226","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485095","bugzilla_description":"chromium-browser: Insufficient policy enforcement in PreviewTab","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11226.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N","cvss3_score":"4.3"},{"CVE":"CVE-2026-11171","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485096","bugzilla_description":"chromium-browser: Integer overflow in Blink","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11171.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-10954","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485097","bugzilla_description":"chromium-browser: Use after free in Actor","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10954.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-10997","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485098","bugzilla_description":"chromium-browser: Insufficient policy enforcement in Extensions","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-280","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10997.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"7.2"},{"CVE":"CVE-2026-10935","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485099","bugzilla_description":"chromium-browser: Inappropriate implementation in V8","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-843","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10935.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11191","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485100","bugzilla_description":"chromium-browser: Out of bounds memory access in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11191.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L","cvss3_score":"6.3"},{"CVE":"CVE-2026-10939","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485102","bugzilla_description":"chromium-browser: Use after free in WebRTC","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10939.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11259","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485103","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Cast","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11259.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"9.3"},{"CVE":"CVE-2026-11270","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485104","bugzilla_description":"chromium-browser: Inappropriate implementation in UI","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1021","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11270.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11288","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485105","bugzilla_description":"chromium-browser: Policy bypass in CSS","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11288.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N","cvss3_score":"4.3"},{"CVE":"CVE-2026-11183","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485106","bugzilla_description":"chromium-browser: Out of bounds read in GWP-ASan","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11183.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"5.0"},{"CVE":"CVE-2026-11244","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485107","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in WebAuthentication","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-79","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11244.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"8.7"},{"CVE":"CVE-2026-11060","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485108","bugzilla_description":"chromium-browser: Use after free in Media","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11060.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11033","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485109","bugzilla_description":"chromium-browser: Uninitialized Use in WebML","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11033.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11227","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485110","bugzilla_description":"chromium-browser: Incorrect security UI in Tab Hover Cards","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1021","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11227.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:N"},{"CVE":"CVE-2026-11078","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485111","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in FileSystem","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11078.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"8.7"},{"CVE":"CVE-2026-10890","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485112","bugzilla_description":"chromium-browser: Use after free in Cast","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10890.json","cvss3_scoring_vector":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11260","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485113","bugzilla_description":"chromium-browser: Policy bypass in Permissions","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-79","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11260.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N","cvss3_score":"5.4"},{"CVE":"CVE-2026-11082","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485114","bugzilla_description":"chromium-browser: Use after free in GPU","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-368","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11082.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"7.5"},{"CVE":"CVE-2026-11147","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485115","bugzilla_description":"chromium-browser: Use after free in WebML","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11147.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11130","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485116","bugzilla_description":"chromium-browser: Use after free in Media","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11130.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-10921","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485117","bugzilla_description":"chromium-browser: Integer overflow in Dawn","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10921.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.2"},{"CVE":"CVE-2026-11276","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485118","bugzilla_description":"chromium-browser: Inappropriate implementation in Cast","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-303","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11276.json","cvss3_scoring_vector":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N","cvss3_score":"5.4"},{"CVE":"CVE-2026-11176","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485119","bugzilla_description":"chromium-browser: Inappropriate implementation in Media","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11176.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"7.4"},{"CVE":"CVE-2026-10975","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485120","bugzilla_description":"chromium-browser: Use after free in WebRTC","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10975.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11190","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485121","bugzilla_description":"chromium-browser: Insufficient policy enforcement in Extensions","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-266","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11190.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N","cvss3_score":"3.9"},{"CVE":"CVE-2026-11108","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485122","bugzilla_description":"chromium-browser: Inappropriate implementation in NFC","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-648","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11108.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11055","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485123","bugzilla_description":"chromium-browser: Use after free in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11055.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11001","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485124","bugzilla_description":"chromium-browser: Incorrect security UI in Payments","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1021","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11001.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","cvss3_score":"4.3"},{"CVE":"CVE-2026-11120","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485125","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Enterprise Reporting","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1289","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11120.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-10881","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485126","bugzilla_description":"chromium-browser: Out of bounds read and write in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10881.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11143","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485127","bugzilla_description":"chromium-browser: Heap buffer overflow in Extensions","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11143.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11289","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485128","bugzilla_description":"chromium-browser: Side-channel information leakage in Paint","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-205","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11289.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N","cvss3_score":"4.3"},{"CVE":"CVE-2026-10899","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485129","bugzilla_description":"chromium-browser: Use after free in Ozone","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10899.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"7.5"},{"CVE":"CVE-2026-11119","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485130","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in GPU","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-653","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11119.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:L","cvss3_score":"8.9"},{"CVE":"CVE-2026-11148","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485131","bugzilla_description":"chromium-browser: Inappropriate implementation in Payments","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-940","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11148.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"6.3"},{"CVE":"CVE-2026-11027","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485132","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Glic","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11027.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"6.8"},{"CVE":"CVE-2026-11287","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485133","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Navigation","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-274","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11287.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:N"},{"CVE":"CVE-2026-11232","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485134","bugzilla_description":"chromium-browser: Inappropriate implementation in TabGroups","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1021","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11232.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","cvss3_score":"4.3"},{"CVE":"CVE-2026-11010","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485135","bugzilla_description":"chromium-browser: Use after free in WebShare","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11010.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.2"},{"CVE":"CVE-2026-11048","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485136","bugzilla_description":"chromium-browser: Inappropriate implementation in Extensions","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-358","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11048.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N","cvss3_score":"6.4"},{"CVE":"CVE-2026-11067","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485137","bugzilla_description":"chromium-browser: Uninitialized Use in Dawn","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11067.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N","cvss3_score":"4.3"},{"CVE":"CVE-2026-11072","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485138","bugzilla_description":"chromium-browser: Use after free in WebView","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11072.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"7.3"},{"CVE":"CVE-2026-10963","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485139","bugzilla_description":"chromium-browser: Integer overflow in V8","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10963.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11036","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485140","bugzilla_description":"chromium-browser: Inappropriate implementation in DOM","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11036.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"9.3"},{"CVE":"CVE-2026-10917","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485141","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Media","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1289","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10917.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.2"},{"CVE":"CVE-2026-11002","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485142","bugzilla_description":"chromium-browser: Use after free in Autofill","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-364","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11002.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.2"},{"CVE":"CVE-2026-11237","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485143","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Media","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-79","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11237.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N","cvss3_score":"3.5"},{"CVE":"CVE-2026-11186","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485144","bugzilla_description":"chromium-browser: Inappropriate implementation in CSS","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-79","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11186.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"9.3"},{"CVE":"CVE-2026-10930","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485145","bugzilla_description":"chromium-browser: Out of bounds read in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10930.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11062","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485146","bugzilla_description":"chromium-browser: Insufficient policy enforcement in Extensions","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-79","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11062.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"9.3"},{"CVE":"CVE-2026-11248","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485147","bugzilla_description":"chromium-browser: Policy bypass in Google Lens","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1021","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11248.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N","cvss3_score":"5.4"},{"CVE":"CVE-2026-11211","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485148","bugzilla_description":"chromium-browser: Integer overflow in V8","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11211.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11092","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485149","bugzilla_description":"chromium-browser: Insufficient policy enforcement in DevTools","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-266","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11092.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N","cvss3_score":"6.6"},{"CVE":"CVE-2026-11005","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485150","bugzilla_description":"chromium-browser: Out of bounds read in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11005.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"5.7"},{"CVE":"CVE-2026-11096","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485151","bugzilla_description":"chromium-browser: Out of bounds read in WebRTC","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11096.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11152","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485152","bugzilla_description":"chromium-browser: Object lifecycle issue in Dawn","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-763","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11152.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-10907","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485153","bugzilla_description":"chromium-browser: Out of bounds write in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-787","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10907.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-10901","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485154","bugzilla_description":"chromium-browser: Use after free in Passwords","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10901.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11004","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485155","bugzilla_description":"chromium-browser: Out of bounds read in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11004.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"5.7"},{"CVE":"CVE-2026-11179","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485156","bugzilla_description":"chromium-browser: Inappropriate implementation in ORB","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-653","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11179.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N","cvss3_score":"8.2"},{"CVE":"CVE-2026-10887","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485157","bugzilla_description":"chromium-browser: Use after free in Chromoting","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10887.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"9.8"},{"CVE":"CVE-2026-11125","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485158","bugzilla_description":"chromium-browser: Use after free in Compositing","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11125.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-10886","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485159","bugzilla_description":"chromium-browser: Use after free in FileSystem","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10886.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11131","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485160","bugzilla_description":"chromium-browser: Use after free in Autofill","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11131.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-11040","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485161","bugzilla_description":"chromium-browser: Use after free in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11040.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-10981","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485162","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Codecs","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10981.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"6.8"},{"CVE":"CVE-2026-10932","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485163","bugzilla_description":"chromium-browser: Use after free in UI","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10932.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11172","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485164","bugzilla_description":"chromium-browser: Incorrect security UI in Contact Picker","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-79","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11172.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","cvss3_score":"4.3"},{"CVE":"CVE-2026-11145","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485165","bugzilla_description":"chromium-browser: Race in Geolocation","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-368","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11145.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"6.1"},{"CVE":"CVE-2026-11291","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485166","bugzilla_description":"chromium-browser: Policy bypass in Android Autofill","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11291.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"9.3"},{"CVE":"CVE-2026-11201","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485167","bugzilla_description":"chromium-browser: Use after free in ServiceWorker","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11201.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"7.3"},{"CVE":"CVE-2026-11243","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485168","bugzilla_description":"chromium-browser: Incorrect security UI in Downloads","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-358","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11243.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","cvss3_score":"4.3"},{"CVE":"CVE-2026-11133","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485169","bugzilla_description":"chromium-browser: Insufficient policy enforcement in Paint","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11133.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N","cvss3_score":"7.1"},{"CVE":"CVE-2026-11255","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485170","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Storage Access API","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11255.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"6.8"},{"CVE":"CVE-2026-11189","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485171","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in DevTools","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-807","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11189.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"8.7"},{"CVE":"CVE-2026-11050","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485172","bugzilla_description":"chromium-browser: Use after free in V8","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11050.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-10910","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485173","bugzilla_description":"chromium-browser: Type Confusion in V8","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-843","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10910.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11197","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485174","bugzilla_description":"chromium-browser: Insufficient policy enforcement in Workers","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11197.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"8.7"},{"CVE":"CVE-2026-10928","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485175","bugzilla_description":"chromium-browser: Script injection in Headless","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-94","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10928.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11151","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485176","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Password Manager","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1289","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11151.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-11112","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485177","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Chromoting","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-501","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11112.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.2"},{"CVE":"CVE-2026-11245","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485178","bugzilla_description":"chromium-browser: Inappropriate implementation in Payments","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1021","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11245.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","cvss3_score":"4.3"},{"CVE":"CVE-2026-11279","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485179","bugzilla_description":"chromium-browser: Out of bounds read in DevTools","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11279.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11283","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485180","bugzilla_description":"chromium-browser: Policy bypass in Shortcuts","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-434","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11283.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","cvss3_score":"4.3"},{"CVE":"CVE-2026-11074","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485181","bugzilla_description":"chromium-browser: Use after free in WebRTC","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11074.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11160","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485182","bugzilla_description":"chromium-browser: Out of bounds read in Input","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11160.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N","cvss3_score":"4.3"},{"CVE":"CVE-2026-11299","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485183","bugzilla_description":"chromium-browser: Out of bounds read in Fonts","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11299.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N","cvss3_score":"4.3"},{"CVE":"CVE-2026-11267","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485184","bugzilla_description":"chromium-browser: Insufficient policy enforcement in Extensions","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-79","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11267.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N","cvss3_score":"3.9"},{"CVE":"CVE-2026-10929","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485185","bugzilla_description":"chromium-browser: Heap buffer overflow in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-120","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10929.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.0"},{"CVE":"CVE-2026-10991","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485186","bugzilla_description":"chromium-browser: Use after free in V8","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10991.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11212","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485187","bugzilla_description":"chromium-browser: Insufficient policy enforcement in DevTools","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11212.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"5.9"},{"CVE":"CVE-2026-10913","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485188","bugzilla_description":"chromium-browser: Use after free in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10913.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11091","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485189","bugzilla_description":"chromium-browser: Inappropriate implementation in Dawn","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-787","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11091.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11077","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485190","bugzilla_description":"chromium-browser: Out of bounds read in Dawn","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-843","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11077.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11196","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485191","bugzilla_description":"chromium-browser: Type Confusion in XML","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-843","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11196.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11136","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485192","bugzilla_description":"chromium-browser: Use after free in Canvas","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11136.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11038","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485193","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Subresource Integrity","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-354","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11038.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11231","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485194","bugzilla_description":"chromium-browser: Inappropriate implementation in Safe Browsing","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-184","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11231.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11175","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485195","bugzilla_description":"chromium-browser: Incorrect security UI in Messages","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1021","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11175.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","cvss3_score":"4.3"},{"CVE":"CVE-2026-11118","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485196","bugzilla_description":"chromium-browser: Use after free in WebRTC","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11118.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11166","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485197","bugzilla_description":"chromium-browser: Inappropriate implementation in SVG","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-79","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11166.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N","cvss3_score":"8.1"},{"CVE":"CVE-2026-11059","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485198","bugzilla_description":"chromium-browser: Use after free in Blink","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11059.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-10900","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485199","bugzilla_description":"chromium-browser: Use after free in Passwords","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10900.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-10936","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485200","bugzilla_description":"chromium-browser: Type Confusion in V8","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-843","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10936.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11210","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485201","bugzilla_description":"chromium-browser: Insufficient policy enforcement in Safe Browsing","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-551","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11210.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N","cvss3_score":"5.4"},{"CVE":"CVE-2026-11013","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485202","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Network","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1286","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11013.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"5.7"},{"CVE":"CVE-2026-10893","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485203","bugzilla_description":"chromium-browser: Use after free in Chromoting","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10893.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H","cvss3_score":"10.0"},{"CVE":"CVE-2026-11090","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485204","bugzilla_description":"chromium-browser: Uninitialized Use in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11090.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"7.4"},{"CVE":"CVE-2026-10949","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485205","bugzilla_description":"chromium-browser: Heap buffer overflow in Video","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-131","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10949.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.2"},{"CVE":"CVE-2026-11184","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485206","bugzilla_description":"chromium-browser: Insufficient policy enforcement in Actor","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-280","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11184.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N","cvss3_score":"5.4"},{"CVE":"CVE-2026-11105","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485207","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in WebUI","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11105.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"6.8"},{"CVE":"CVE-2026-11281","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485208","bugzilla_description":"chromium-browser: Integer overflow in Chromoting","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11281.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N","cvss3_score":"3.3"},{"CVE":"CVE-2026-11308","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485209","bugzilla_description":"chromium-browser: Inappropriate implementation in Extensions","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-648","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11308.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N","cvss3_score":"2.8"},{"CVE":"CVE-2026-11181","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485210","bugzilla_description":"chromium-browser: Inappropriate implementation in Media Session","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11181.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N","cvss3_score":"8.2"},{"CVE":"CVE-2026-11256","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485211","bugzilla_description":"chromium-browser: Out of bounds read in GPU","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11256.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L","cvss3_score":"6.5"},{"CVE":"CVE-2026-11032","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485212","bugzilla_description":"chromium-browser: Insufficient data validation in Password Manager","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11032.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"7.4"},{"CVE":"CVE-2026-11083","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485213","bugzilla_description":"chromium-browser: Inappropriate implementation in Password Manager","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11083.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"7.4"},{"CVE":"CVE-2026-11268","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485214","bugzilla_description":"chromium-browser: Uninitialized Use in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11268.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"7.4"},{"CVE":"CVE-2026-11153","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485215","bugzilla_description":"chromium-browser: Side-channel information leakage in Forms","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-205","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11153.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11006","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485216","bugzilla_description":"chromium-browser: Out of bounds read in Dawn","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11006.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H","cvss3_score":"8.1"},{"CVE":"CVE-2026-11044","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485217","bugzilla_description":"chromium-browser: Integer overflow in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11044.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11102","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485218","bugzilla_description":"chromium-browser: Inappropriate implementation in Isolated Web Apps","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-434","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11102.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-10882","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485219","bugzilla_description":"chromium-browser: Use after free in Network","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10882.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11301","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485220","bugzilla_description":"chromium-browser: Out of bounds read in LiveCaption","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-787","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11301.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L","cvss3_score":"7.3"},{"CVE":"CVE-2026-10904","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485221","bugzilla_description":"chromium-browser: Inappropriate implementation in V8","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-843","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10904.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11170","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485222","bugzilla_description":"chromium-browser: Inappropriate implementation in Chromoting","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-250","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11170.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H","cvss3_score":"10.0"},{"CVE":"CVE-2026-11182","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485223","bugzilla_description":"chromium-browser: Inappropriate implementation in SVG","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11182.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"7.4"},{"CVE":"CVE-2026-11188","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485224","bugzilla_description":"chromium-browser: Use after free in USB","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11188.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11254","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485225","bugzilla_description":"chromium-browser: Inappropriate implementation in Permissions","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1021","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11254.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","cvss3_score":"4.3"},{"CVE":"CVE-2026-11229","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485226","bugzilla_description":"chromium-browser: Insufficient policy enforcement in Enterprise","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-266","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11229.json","cvss3_scoring_vector":"CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"6.6"},{"CVE":"CVE-2026-11014","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485227","bugzilla_description":"chromium-browser: Insufficient policy enforcement in Extensions","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-653","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11014.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"7.2"},{"CVE":"CVE-2026-11019","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485228","bugzilla_description":"chromium-browser: Inappropriate implementation in Payments","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1021","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11019.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:H/A:N","cvss3_score":"5.6"},{"CVE":"CVE-2026-11221","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485229","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in PointerLock","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1289","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11221.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N","cvss3_score":"3.5"},{"CVE":"CVE-2026-10980","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485230","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in DevTools","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10980.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"8.7"},{"CVE":"CVE-2026-11065","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485231","bugzilla_description":"chromium-browser: Use after free in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11065.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-10934","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485232","bugzilla_description":"chromium-browser: Use after free in Autofill","cvss_score":null,"cvss_scoring_vector":null,"CWE":null,"affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10934.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11167","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485233","bugzilla_description":"chromium-browser: Inappropriate implementation in WebView","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-501","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11167.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-10937","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485234","bugzilla_description":"chromium-browser: Inappropriate implementation in Passwords","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10937.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"9.3"},{"CVE":"CVE-2026-11199","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485235","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in WebRTC","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11199.json","cvss3_scoring_vector":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-10977","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485236","bugzilla_description":"chromium-browser: Uninitialized Use in Skia","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10977.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"6.8"},{"CVE":"CVE-2026-10883","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485237","bugzilla_description":"chromium-browser: Out of bounds write in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-843","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10883.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11017","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485238","bugzilla_description":"chromium-browser: Inappropriate implementation in Link Preview","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1021","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11017.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N","cvss3_score":"5.4"},{"CVE":"CVE-2026-10960","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485239","bugzilla_description":"chromium-browser: Uninitialized Use in Codecs","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10960.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"7.9"},{"CVE":"CVE-2026-11174","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485240","bugzilla_description":"chromium-browser: Insufficient policy enforcement in Site Isolation","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-501","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11174.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"7.9"},{"CVE":"CVE-2026-11178","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485241","bugzilla_description":"chromium-browser: Policy bypass in WebView","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11178.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"7.4"},{"CVE":"CVE-2026-10891","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485242","bugzilla_description":"chromium-browser: Use after free in GFX","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10891.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11126","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485243","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in DevTools","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-940","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11126.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"5.9"},{"CVE":"CVE-2026-10922","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485244","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in DevTools","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1173","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10922.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"7.4"},{"CVE":"CVE-2026-11142","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485245","bugzilla_description":"chromium-browser: Policy bypass in Paint","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-79","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11142.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N","cvss3_score":"8.1"},{"CVE":"CVE-2026-10897","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485246","bugzilla_description":"chromium-browser: Out of bounds write in GPU","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-653","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10897.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11223","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485247","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Network","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11223.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"6.8"},{"CVE":"CVE-2026-10895","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485248","bugzilla_description":"chromium-browser: Use after free in Ozone","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10895.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11258","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485249","bugzilla_description":"chromium-browser: Inappropriate implementation in File System Access","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-551","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11258.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N","cvss3_score":"4.3"},{"CVE":"CVE-2026-10903","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485250","bugzilla_description":"chromium-browser: Use after free in WebRTC","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10903.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11238","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485251","bugzilla_description":"chromium-browser: Inappropriate implementation in DevTools","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-201","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11238.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"5.0"},{"CVE":"CVE-2026-11020","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485252","bugzilla_description":"chromium-browser: Inappropriate implementation in Extensions","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11020.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"7.4"},{"CVE":"CVE-2026-11110","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485253","bugzilla_description":"chromium-browser: Uninitialized Use in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11110.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"7.4"},{"CVE":"CVE-2026-11261","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485254","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in PDF","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1021","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11261.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N","cvss3_score":"2.8"},{"CVE":"CVE-2026-11187","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485255","bugzilla_description":"chromium-browser: Insufficient policy enforcement in Glic","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1021","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11187.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N","cvss3_score":"5.4"},{"CVE":"CVE-2026-11265","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485256","bugzilla_description":"chromium-browser: Insufficient data validation in Autofill","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-940","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11265.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"7.4"},{"CVE":"CVE-2026-11022","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485257","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in DevTools","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11022.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"8.7"},{"CVE":"CVE-2026-11144","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485258","bugzilla_description":"chromium-browser: Use after free in Media","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11144.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-10992","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485259","bugzilla_description":"chromium-browser: Insufficient data validation in Animation","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1285","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10992.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11217","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485260","bugzilla_description":"chromium-browser: Insufficient policy enforcement in Fenced Frames","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-653","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11217.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"5.9"},{"CVE":"CVE-2026-11089","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485261","bugzilla_description":"chromium-browser: Uninitialized Use in Media","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11089.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"5.7"},{"CVE":"CVE-2026-11306","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485262","bugzilla_description":"chromium-browser: Use after free in PDFium","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11306.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11043","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485263","bugzilla_description":"chromium-browser: Out of bounds write in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-787","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11043.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-11073","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485264","bugzilla_description":"chromium-browser: Use after free in WebGL","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11073.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11023","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485266","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in WebAppInstalls","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11023.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"7.9"},{"CVE":"CVE-2026-11041","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485267","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Media","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1286","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11041.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.2"},{"CVE":"CVE-2026-10998","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485268","bugzilla_description":"chromium-browser: Out of bounds read in Media","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10998.json","cvss3_scoring_vector":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","cvss3_score":"4.3"},{"CVE":"CVE-2026-11275","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485269","bugzilla_description":"chromium-browser: Insufficient policy enforcement in Page Info","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1021","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11275.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N","cvss3_score":"3.9"},{"CVE":"CVE-2026-10966","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485270","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Codecs","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1286","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10966.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11304","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485271","bugzilla_description":"chromium-browser: Use after free in PDFium","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11304.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11278","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485272","bugzilla_description":"chromium-browser: Inappropriate implementation in CustomTabs","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-79","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11278.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N","cvss3_score":"3.3"},{"CVE":"CVE-2026-10912","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485273","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Extensions","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-79","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10912.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"8.7"},{"CVE":"CVE-2026-11169","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485274","bugzilla_description":"chromium-browser: Inappropriate implementation in XML","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-91","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11169.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N","cvss3_score":"8.1"},{"CVE":"CVE-2026-11123","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485275","bugzilla_description":"chromium-browser: Uninitialized Use in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11123.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11047","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485276","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Base","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-266","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11047.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.2"},{"CVE":"CVE-2026-10973","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485277","bugzilla_description":"chromium-browser: Uninitialized Use in Dawn","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10973.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11296","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485278","bugzilla_description":"chromium-browser: Inappropriate implementation in ImageCapture","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-648","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11296.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N"},{"CVE":"CVE-2026-10923","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485279","bugzilla_description":"chromium-browser: Use after free in WebAppInstalls","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10923.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"7.3"},{"CVE":"CVE-2026-11018","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485280","bugzilla_description":"chromium-browser: Insufficient policy enforcement in Actor","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-807","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11018.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N","cvss3_score":"5.4"},{"CVE":"CVE-2026-10970","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485281","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in InterestGroups","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1289","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10970.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-11103","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485282","bugzilla_description":"chromium-browser: Inappropriate implementation in Installer","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-266","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11103.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.2"},{"CVE":"CVE-2026-11282","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485283","bugzilla_description":"chromium-browser: Policy bypass in Sandbox","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-501","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11282.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:N/A:N"},{"CVE":"CVE-2026-11303","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485284","bugzilla_description":"chromium-browser: Use after free in PDFium","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11303.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-10902","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485285","bugzilla_description":"chromium-browser: Use after free in Ozone","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10902.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11154","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485286","bugzilla_description":"chromium-browser: Use after free in Dawn","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11154.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.2"},{"CVE":"CVE-2026-11295","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485287","bugzilla_description":"chromium-browser: Inappropriate implementation in WebView","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-266","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11295.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L","cvss3_score":"6.3"},{"CVE":"CVE-2026-10920","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485288","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in WebShare","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-79","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10920.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.2"},{"CVE":"CVE-2026-10925","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485289","bugzilla_description":"chromium-browser: Out of bounds write in Skia","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-787","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10925.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.2"},{"CVE":"CVE-2026-11203","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485290","bugzilla_description":"chromium-browser: Policy bypass in GPU","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11203.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"7.4"},{"CVE":"CVE-2026-10916","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485291","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in DevTools","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-79","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10916.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"9.3"},{"CVE":"CVE-2026-11109","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485292","bugzilla_description":"chromium-browser: Uninitialized Use in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11109.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"7.4"},{"CVE":"CVE-2026-11269","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485293","bugzilla_description":"chromium-browser: Inappropriate implementation in Extensions","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-653","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11269.json","cvss3_scoring_vector":"CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-10906","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485294","bugzilla_description":"chromium-browser: Use after free in WebAuthentication","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10906.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11029","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485295","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Drag and Drop","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-807","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11029.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-10938","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485296","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Input","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-501","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10938.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"6.8"},{"CVE":"CVE-2026-11095","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485297","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Codecs","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1286","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11095.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-11246","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485298","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in IndexedDB","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1173","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11246.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"6.8"},{"CVE":"CVE-2026-10914","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485299","bugzilla_description":"chromium-browser: Use after free in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10914.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11138","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485300","bugzilla_description":"chromium-browser: Uninitialized Use in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11138.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-10905","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485301","bugzilla_description":"chromium-browser: Use after free in Network","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10905.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-10888","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485302","bugzilla_description":"chromium-browser: Use after free in Cast Streaming","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10888.json","cvss3_scoring_vector":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11051","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485303","bugzilla_description":"chromium-browser: Out of bounds read in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11051.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11132","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485304","bugzilla_description":"chromium-browser: Policy bypass in Paint","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11132.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"9.3"},{"CVE":"CVE-2026-11163","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485305","bugzilla_description":"chromium-browser: Use after free in Messages","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11163.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11061","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485306","bugzilla_description":"chromium-browser: Out of bounds read in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-843","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11061.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11012","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485307","bugzilla_description":"chromium-browser: Use after free in Serial","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11012.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-10964","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485308","bugzilla_description":"chromium-browser: Integer overflow in V8","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10964.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11064","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485309","bugzilla_description":"chromium-browser: Uninitialized Use in GPU","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-368","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11064.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"5.8"},{"CVE":"CVE-2026-11219","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485310","bugzilla_description":"chromium-browser: Insufficient data validation in Navigation","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-551","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11219.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N","cvss3_score":"5.4"},{"CVE":"CVE-2026-11225","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485311","bugzilla_description":"chromium-browser: Incorrect security UI in WebUI","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-368","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11225.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N","cvss3_score":"5.4"},{"CVE":"CVE-2026-11293","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485312","bugzilla_description":"chromium-browser: Use after free in Input","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11293.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11292","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485313","bugzilla_description":"chromium-browser: Policy bypass in Blink","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-280","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11292.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N","cvss3_score":"5.4"},{"CVE":"CVE-2026-10982","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485314","bugzilla_description":"chromium-browser: Use after free in WebXR","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10982.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11149","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485315","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Extensions","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-807","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11149.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-10927","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485316","bugzilla_description":"chromium-browser: Out of bounds read in Dawn","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10927.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"8.7"},{"CVE":"CVE-2026-11241","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485317","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Cast","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-807","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11241.json","cvss3_scoring_vector":"CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N","cvss3_score":"7.3"},{"CVE":"CVE-2026-10962","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485318","bugzilla_description":"chromium-browser: Type Confusion in Media","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-843","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10962.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-10979","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485319","bugzilla_description":"chromium-browser: Out of bounds read in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10979.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11216","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485320","bugzilla_description":"chromium-browser: Incorrect security UI in File Input","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1021","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11216.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","cvss3_score":"4.3"},{"CVE":"CVE-2026-11094","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485321","bugzilla_description":"chromium-browser: Use after free in Codecs","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11094.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"7.9"},{"CVE":"CVE-2026-11137","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485322","bugzilla_description":"chromium-browser: Uninitialized Use in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11137.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11252","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485323","bugzilla_description":"chromium-browser: Policy bypass in Content Settings","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-280","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11252.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N","cvss3_score":"5.4"},{"CVE":"CVE-2026-11079","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485324","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Codecs","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1285","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11079.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H","cvss3_score":"7.1"},{"CVE":"CVE-2026-11031","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485325","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Password Manager","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-79","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11031.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N","cvss3_score":"8.1"},{"CVE":"CVE-2026-11058","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485326","bugzilla_description":"chromium-browser: Integer overflow in CredentialProvider","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11058.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.2"},{"CVE":"CVE-2026-11230","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485327","bugzilla_description":"chromium-browser: Use after free in Extensions","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11230.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11224","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485328","bugzilla_description":"chromium-browser: Use after free in Chromoting","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11224.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L","cvss3_score":"7.3"},{"CVE":"CVE-2026-11213","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485329","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Reading Mode","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1286","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11213.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.2"},{"CVE":"CVE-2026-11071","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485330","bugzilla_description":"chromium-browser: Use after free in Base","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11071.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"5.7"},{"CVE":"CVE-2026-11139","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485331","bugzilla_description":"chromium-browser: Policy bypass in Paint","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11139.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11115","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485332","bugzilla_description":"chromium-browser: Use after free in Updater","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11115.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"7.3"},{"CVE":"CVE-2026-11257","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485333","bugzilla_description":"chromium-browser: Inappropriate implementation in Browser","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1220","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11257.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N","cvss3_score":"5.4"},{"CVE":"CVE-2026-11042","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485334","bugzilla_description":"chromium-browser: Use after free in Views","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11042.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11208","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485335","bugzilla_description":"chromium-browser: Use after free in Codecs","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11208.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11198","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485336","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Codecs","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1286","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11198.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11195","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485337","bugzilla_description":"chromium-browser: Inappropriate implementation in MHTML","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1021","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11195.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"7.4"},{"CVE":"CVE-2026-11068","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485338","bugzilla_description":"chromium-browser: Use after free in WebSockets","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11068.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11168","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485339","bugzilla_description":"chromium-browser: Insufficient policy enforcement in Extensions","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-497","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11168.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"5.0"},{"CVE":"CVE-2026-11193","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485340","bugzilla_description":"chromium-browser: Insufficient policy enforcement in Password Manager","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-280","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11193.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11249","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485341","bugzilla_description":"chromium-browser: Use after free in Network","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11249.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N","cvss3_score":"3.5"},{"CVE":"CVE-2026-11066","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485342","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in ANGLE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-807","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11066.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-10947","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485343","bugzilla_description":"chromium-browser: Use after free in WebRTC","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10947.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-11045","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485344","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in GPU","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1286","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11045.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"5.0"},{"CVE":"CVE-2026-11015","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485345","bugzilla_description":"chromium-browser: Out of bounds read in WebGPU","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11015.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L","cvss3_score":"7.1"},{"CVE":"CVE-2026-11155","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485346","bugzilla_description":"chromium-browser: Insufficient policy enforcement in CSS","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11155.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"7.4"},{"CVE":"CVE-2026-11063","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485347","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in WebNN","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1286","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11063.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.2"},{"CVE":"CVE-2026-11236","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485348","bugzilla_description":"chromium-browser: Insufficient policy enforcement in Web Bluetooth","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-280","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11236.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.2"},{"CVE":"CVE-2026-11052","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485349","bugzilla_description":"chromium-browser: Type Confusion in GPU","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-843","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11052.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.0"},{"CVE":"CVE-2026-11161","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485350","bugzilla_description":"chromium-browser: Insufficient data validation in DataTransfer","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-346","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11161.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","cvss3_score":"7.4"},{"CVE":"CVE-2026-11146","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485351","bugzilla_description":"chromium-browser: Insufficient validation of untrusted input in Chromoting","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-349","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11146.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"8.2"},{"CVE":"CVE-2026-10941","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485352","bugzilla_description":"chromium-browser: Out of bounds memory access in Skia","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-787","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10941.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-50256","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485380","bugzilla_description":"xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: stack buffer overflow in font alias resolution due to libXfont2 name length mismatch","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-121","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50256.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.8"},{"CVE":"CVE-2026-50257","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485382","bugzilla_description":"xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: use-after-free in miSyncDestroyFence()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-416","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50257.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.8"},{"CVE":"CVE-2026-50258","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485383","bugzilla_description":"xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: stack buffer overflow in XKB key types due to unchecked shift levels","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-121","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50258.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.8"},{"CVE":"CVE-2026-50259","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485384","bugzilla_description":"xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: stack buffer overflow in XKB SetMap request via mapWidths indexing","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-121","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50259.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.8"},{"CVE":"CVE-2026-50260","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485385","bugzilla_description":"xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: use-after-free in FreeCounter()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-416","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50260.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.8"},{"CVE":"CVE-2026-50261","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485386","bugzilla_description":"xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: use-after-free in SyncChangeCounter()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-416","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50261.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.8"},{"CVE":"CVE-2026-50262","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485387","bugzilla_description":"xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: out-of-bounds read/write in GLX ChangeDrawableAttributes","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50262.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","cvss3_score":"5.5"},{"CVE":"CVE-2026-50263","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485388","bugzilla_description":"xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: use-after-free information disclosure in CreateSaverWindow()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-416","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50263.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","cvss3_score":"5.5"},{"CVE":"CVE-2026-50264","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485389","bugzilla_description":"xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: out-of-bounds heap write in DRI2 DRIGetBuffers/DRIGetBuffersWithFormat","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-787","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50264.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.8"},{"CVE":"CVE-2026-10885","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485628","bugzilla_description":"chromium-browser: chromium-browser: Use after free in Chrome for iOS","cvss_score":null,"cvss_scoring_vector":null,"CWE":null,"affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10885.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-10896","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485629","bugzilla_description":"chromium-browser: chromium-browser: Use after free in Chrome for iOS","cvss_score":null,"cvss_scoring_vector":null,"CWE":null,"affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10896.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","cvss3_score":"9.6"},{"CVE":"CVE-2026-10915","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485630","bugzilla_description":"chromium-browser: chromium-browser: Use after free in Core","cvss_score":null,"cvss_scoring_vector":null,"CWE":null,"affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10915.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-10944","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485631","bugzilla_description":"chromium-browser: chromium-browser: Insufficient policy enforcement in Autofill","cvss_score":null,"cvss_scoring_vector":null,"CWE":null,"affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10944.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-10950","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485632","bugzilla_description":"chromium-browser: chromium-browser: Insufficient policy enforcement in Autofill","cvss_score":null,"cvss_scoring_vector":null,"CWE":null,"affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10950.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-10951","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485633","bugzilla_description":"chromium-browser: chromium-browser: Use after free in Autofill","cvss_score":null,"cvss_scoring_vector":null,"CWE":null,"affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10951.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-10952","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485634","bugzilla_description":"chromium-browser: chromium-browser: Use after free in Chrome for iOS","cvss_score":null,"cvss_scoring_vector":null,"CWE":null,"affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10952.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-10958","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485635","bugzilla_description":"chromium-browser: chromium-browser: Use after free in Chrome for iOS","cvss_score":null,"cvss_scoring_vector":null,"CWE":null,"affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10958.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-10961","severity":"important","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485636","bugzilla_description":"chromium-browser: chromium-browser: Use after free in Chrome for iOS","cvss_score":null,"cvss_scoring_vector":null,"CWE":null,"affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10961.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-11053","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485637","bugzilla_description":"chromium-browser: chromium-browser: VULNERABILITY in WebRTC","cvss_score":null,"cvss_scoring_vector":null,"CWE":null,"affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11053.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11099","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485638","bugzilla_description":"chromium-browser: chromium-browser: Vulnerability in Skia","cvss_score":null,"cvss_scoring_vector":null,"CWE":null,"affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11099.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11165","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485639","bugzilla_description":"chromium-browser: chromium-browser: Use after free in WebMIDI","cvss_score":null,"cvss_scoring_vector":null,"CWE":null,"affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11165.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11202","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485640","bugzilla_description":"chromium-browser: chromium-browser: Insufficient validation of untrusted input in Chrome for iOS","cvss_score":null,"cvss_scoring_vector":null,"CWE":null,"affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11202.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11204","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485641","bugzilla_description":"chromium-browser: chromium-browser: Inappropriate implementation in Signin","cvss_score":null,"cvss_scoring_vector":null,"CWE":null,"affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11204.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11205","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485642","bugzilla_description":"chromium-browser: chromium-browser: Insufficient validation of untrusted input in Chrome for iOS","cvss_score":null,"cvss_scoring_vector":null,"CWE":null,"affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11205.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11214","severity":"moderate","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485643","bugzilla_description":"chromium-browser: chromium-browser: Inappropriate implementation in Chrome for iOS","cvss_score":null,"cvss_scoring_vector":null,"CWE":null,"affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11214.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-11272","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485645","bugzilla_description":"chromium-browser: chromium-browser: Insufficient validation of untrusted input in Reading List","cvss_score":null,"cvss_scoring_vector":null,"CWE":null,"affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11272.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L","cvss3_score":"4.3"},{"CVE":"CVE-2026-11274","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485646","bugzilla_description":"chromium-browser: chromium-browser: Inappropriate implementation in DOM Distiller","cvss_score":null,"cvss_scoring_vector":null,"CWE":null,"affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11274.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L","cvss3_score":"4.3"},{"CVE":"CVE-2026-11277","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485647","bugzilla_description":"chromium-browser: chromium-browser: Insufficient policy enforcement in Chrome for iOS","cvss_score":null,"cvss_scoring_vector":null,"CWE":null,"affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11277.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L","cvss3_score":"4.3"},{"CVE":"CVE-2026-11280","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485648","bugzilla_description":"chromium-browser: chromium-browser: Insufficient validation of untrusted input in Signin","cvss_score":null,"cvss_scoring_vector":null,"CWE":null,"affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11280.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L","cvss3_score":"4.3"},{"CVE":"CVE-2026-11285","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485649","bugzilla_description":"chromium-browser: chromium-browser: Insufficient policy enforcement in Chrome for iOS","cvss_score":null,"cvss_scoring_vector":null,"CWE":null,"affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11285.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L","cvss3_score":"4.3"},{"CVE":"CVE-2026-11298","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485650","bugzilla_description":"chromium-browser: chromium-browser: Insufficient policy enforcement in Chrome for iOS","cvss_score":null,"cvss_scoring_vector":null,"CWE":null,"affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11298.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L","cvss3_score":"4.3"},{"CVE":"CVE-2026-11302","severity":"low","public_date":"2026-06-02T00:00:00Z","advisories":[],"bugzilla":"2485651","bugzilla_description":"chromium-browser: chromium-browser: Insufficient policy enforcement in Chrome for iOS","cvss_score":null,"cvss_scoring_vector":null,"CWE":null,"affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11302.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L","cvss3_score":"4.3"},{"CVE":"CVE-2024-52011","severity":"important","public_date":"2026-06-01T17:17:43Z","advisories":[],"bugzilla":"2483853","bugzilla_description":"launch-editor: vite: launch-editor: Arbitrary command execution via insufficient file argument sanitization","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-88","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-52011.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L","cvss3_score":"8.3"},{"CVE":"CVE-2026-43958","severity":"moderate","public_date":"2026-06-01T17:04:30Z","advisories":[],"bugzilla":"2460932","bugzilla_description":"rrdtool: rrdtool: Stack buffer overflow allows local code execution or denial of service","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-121","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-43958.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.8"},{"CVE":"CVE-2026-10118","severity":"important","public_date":"2026-06-01T15:25:35Z","advisories":["RHSA-2026:24985","RHSA-2026:25058","RHSA-2026:24984"],"bugzilla":"2460428","bugzilla_description":"poppler: Integer overflow in Poppler SplashOutputDev::tilingPatternFill leads to heap buffer overflow via unchecked dimension multiplication","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":["poppler-0:24.02.0-7.el10_2.2","poppler-0:20.11.0-14.el8_10","poppler-0:21.01.0-24.el9_8.1"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10118.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"7.8"},{"CVE":"CVE-2026-48827","severity":"moderate","public_date":"2026-06-01T08:37:41Z","advisories":[],"bugzilla":"2483783","bugzilla_description":"org.apache.sshd/sshd-git: Apache MINA SSHD: Path Traversal Vulnerability Allows Access to Unauthorized Git Repositories","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-22","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-48827.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-10233","severity":"low","public_date":"2026-06-01T06:45:08Z","advisories":[],"bugzilla":"2486786","bugzilla_description":"assimp: Assimp: Out-of-bounds read in Half-Life 1 MDL Loader allows information disclosure","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10233.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N","cvss3_score":"3.3"},{"CVE":"CVE-2026-10232","severity":"moderate","public_date":"2026-06-01T06:30:10Z","advisories":[],"bugzilla":"2486783","bugzilla_description":"assimp: Assimp: Use-after-free vulnerability allows local impact","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10232.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L","cvss3_score":"5.3"},{"CVE":"CVE-2026-10231","severity":"moderate","public_date":"2026-06-01T06:15:09Z","advisories":[],"bugzilla":"2486304","bugzilla_description":"assimp: Assimp: Local heap-based buffer overflow allows denial of service or arbitrary code execution","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-131","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10231.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L","cvss3_score":"5.3"},{"CVE":"CVE-2026-10230","severity":"moderate","public_date":"2026-06-01T06:00:12Z","advisories":[],"bugzilla":"2483759","bugzilla_description":"assimp: Assimp: Local heap-based buffer overflow in Half-Life 1 MDL Loader","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-120","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10230.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:L","cvss3_score":"5.6"},{"CVE":"CVE-2026-10229","severity":"moderate","public_date":"2026-06-01T05:45:07Z","advisories":[],"bugzilla":"2486785","bugzilla_description":"assimp: Assimp: Heap-based buffer overflow in Half-Life 1 MDL Loader","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-120","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10229.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L","cvss3_score":"4.8"},{"CVE":"CVE-2026-10201","severity":"moderate","public_date":"2026-05-31T23:00:12Z","advisories":[],"bugzilla":"2483758","bugzilla_description":"assimp: Assimp: Denial of Service via divide-by-zero in FBXExporter","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-369","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10201.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-10200","severity":"moderate","public_date":"2026-05-31T22:45:10Z","advisories":[],"bugzilla":"2483757","bugzilla_description":"assimp: Assimp: Heap-based buffer overflow in glTFCommon::CopyValue function","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-120","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10200.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L","cvss3_score":"5.3"},{"CVE":"CVE-2026-10199","severity":"moderate","public_date":"2026-05-31T22:30:11Z","advisories":[],"bugzilla":"2483753","bugzilla_description":"assimp: Assimp: Denial of Service via null pointer dereference in glTF2::LazyDict","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-476","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10199.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-10198","severity":"moderate","public_date":"2026-05-31T22:15:12Z","advisories":[],"bugzilla":"2483754","bugzilla_description":"assimp: Assimp: Denial of Service via null pointer dereference in glTFImporter","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-476","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10198.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H","cvss3_score":"5.0"},{"CVE":"CVE-2026-10197","severity":"moderate","public_date":"2026-05-31T22:00:12Z","advisories":[],"bugzilla":"2483755","bugzilla_description":"assimp: Assimp: Denial of Service via null pointer dereference in glTF2Importer","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-476","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10197.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46242","severity":"moderate","public_date":"2026-05-30T00:00:00Z","advisories":[],"bugzilla":"2483519","bugzilla_description":"kernel: eventpoll: fix ep_remove struct eventpoll / struct file UAF","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46242.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46344","severity":"moderate","public_date":"2026-05-29T18:08:02Z","advisories":[],"bugzilla":"2483418","bugzilla_description":"liboqs: liboqs: Denial of Service due to out-of-bounds read in XMSS/XMSS^MT signature verification","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46344.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","cvss3_score":"5.3"},{"CVE":"CVE-2026-44518","severity":"moderate","public_date":"2026-05-29T18:07:07Z","advisories":[],"bugzilla":"2483392","bugzilla_description":"liboqs: liboqs: Denial of Service due to out-of-bounds read in XMSS/XMSS^MT signature verification","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1284","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-44518.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","cvss3_score":"5.3"},{"CVE":"CVE-2026-41150","severity":"moderate","public_date":"2026-05-29T13:54:52Z","advisories":[],"bugzilla":"2483296","bugzilla_description":"mermaid: Mermaid: Denial of Service via specially crafted gantt charts","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-835","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-41150.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H","cvss3_score":"6.5"},{"CVE":"CVE-2026-10101","severity":"moderate","public_date":"2026-05-29T12:00:00Z","advisories":[],"bugzilla":"2483298","bugzilla_description":"assisted-service: assisted-service: InfraEnv status leaks referenced pull-secret contents to namespace view users","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-201","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10101.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:N","cvss3_score":"6.3"},{"CVE":"CVE-2026-10028","severity":"low","public_date":"2026-05-28T22:27:36Z","advisories":[],"bugzilla":"2465152","bugzilla_description":"glib-networking: Infinite loop in glib-networking GnuTLS backend allows remote denial of service via circular certificate chain","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-835","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10028.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L","cvss3_score":"4.3"},{"CVE":"CVE-2026-45292","severity":"important","public_date":"2026-05-28T16:37:29Z","advisories":[],"bugzilla":"2482785","bugzilla_description":"opentelemetry-java: opentelemetry-api: opentelemetry-extension-trace-propagators: OpenTelemetry Java: Denial of Service due to unbounded memory allocation when parsing oversized baggage","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-770","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45292.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"7.5"},{"CVE":"CVE-2026-44477","severity":"important","public_date":"2026-05-28T15:46:12Z","advisories":[],"bugzilla":"2482763","bugzilla_description":"github.com/cloudnative-pg/cloudnative-pg: CloudNativePG: Metrics exporter allows privilege escalation to PostgreSQL superuser and OS RCE","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-250","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-44477.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-48525","severity":"moderate","public_date":"2026-05-28T15:11:12Z","advisories":[],"bugzilla":"2482752","bugzilla_description":"python-pyjwt: PyJWT: Denial of Service via processing of crafted detached JWS tokens","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-770","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-48525.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","cvss3_score":"5.3"},{"CVE":"CVE-2026-48523","severity":"moderate","public_date":"2026-05-28T15:10:19Z","advisories":[],"bugzilla":"2482743","bugzilla_description":"python-pyjwt: PyJWT: Verifier-side algorithm bypass leads to unauthorized information access","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-347","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-48523.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N","cvss3_score":"5.4"},{"CVE":"CVE-2026-48526","severity":"important","public_date":"2026-05-28T15:09:09Z","advisories":[],"bugzilla":"2482734","bugzilla_description":"python-pyjwt: PyJWT: Authentication bypass due to forged JSON Web Tokens","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-347","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-48526.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N","cvss3_score":"7.4"},{"CVE":"CVE-2026-48524","severity":"moderate","public_date":"2026-05-28T15:07:35Z","advisories":[],"bugzilla":"2482733","bugzilla_description":"python-pyjwt: PyJWT: Denial of Service via unverified JSON Web Token key IDs","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-770","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-48524.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.9"},{"CVE":"CVE-2026-48522","severity":"moderate","public_date":"2026-05-28T15:00:30Z","advisories":[],"bugzilla":"2482753","bugzilla_description":"python-pyjwt: PyJWT: Server-Side Request Forgery (SSRF) via uncontrolled URL fetching in PyJWKClient","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-918","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-48522.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N","cvss3_score":"4.2"},{"CVE":"CVE-2026-48155","severity":"moderate","public_date":"2026-05-28T14:51:49Z","advisories":[],"bugzilla":"2482748","bugzilla_description":"pypdf: pypdf: Denial of Service via crafted PDF with large character offsets","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-770","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-48155.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-48156","severity":"low","public_date":"2026-05-28T14:50:41Z","advisories":[],"bugzilla":"2482739","bugzilla_description":"pypdf: pypdf: Denial of Service via crafted PDF","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-606","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-48156.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L","cvss3_score":"3.3"},{"CVE":"CVE-2026-48735","severity":"moderate","public_date":"2026-05-28T14:49:11Z","advisories":[],"bugzilla":"2482741","bugzilla_description":"pypdf: pypdf: Denial of Service via crafted PDF with large XMP metadata","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-770","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-48735.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-41565","severity":"important","public_date":"2026-05-28T14:13:19Z","advisories":[],"bugzilla":"2482740","bugzilla_description":"perl-CryptX: perl-CryptX: Stack buffer overflow allows arbitrary code execution via a crafted authentication tag.","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-120","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-41565.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"9.8"},{"CVE":"CVE-2026-42250","severity":"moderate","public_date":"2026-05-28T13:15:19Z","advisories":[],"bugzilla":"2482704","bugzilla_description":"bzip2: bzip2: Denial of Service in bzip2recover via a specially crafted file","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-193","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-42250.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H","cvss3_score":"5.0"},{"CVE":"CVE-2026-9804","severity":"important","public_date":"2026-05-28T06:00:00Z","advisories":[],"bugzilla":"2482487","bugzilla_description":"kubevirt: kubevirt: VMExport directory symlink escape enables exporter pod file read","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-59","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-9804.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N","cvss3_score":"7.7"},{"CVE":"CVE-2026-44604","severity":"moderate","public_date":"2026-05-28T05:52:00Z","advisories":[],"bugzilla":"2460967","bugzilla_description":"rpm: Command injection in rpmuncompress doUntar() via unescaped archive top-level directory name in popen() shell command","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-78","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-44604.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-9673","severity":"moderate","public_date":"2026-05-28T05:00:02Z","advisories":[],"bugzilla":"2482486","bugzilla_description":"json-2-csv: json-2-csv: CSV Injection vulnerability allows arbitrary code execution via `preventCsvInjection` bypass.","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1236","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-9673.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N","cvss3_score":"6.1"},{"CVE":"CVE-2026-9801","severity":"moderate","public_date":"2026-05-28T04:18:25Z","advisories":["RHSA-2026:25098","RHSA-2026:25097"],"bugzilla":"2482473","bugzilla_description":"keycloak: Keycloak: Denial of Service via malformed LDAP password policy response","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1284","affected_packages":["rhbk/keycloak-rhel9","rhbk/keycloak-operator-bundle:26.6.3-3","rhbk/keycloak-rhel9:26.6-6","rhbk/keycloak-rhel9-operator:26.6-6"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-9801.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"4.9"},{"CVE":"CVE-2026-9802","severity":"moderate","public_date":"2026-05-28T04:10:26Z","advisories":["RHSA-2026:25098","RHSA-2026:25097"],"bugzilla":"2482467","bugzilla_description":"keycloak: Keycloak: Unauthorized account access via replayed refresh tokens after cluster restart","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-613","affected_packages":["rhbk/keycloak-rhel9","rhbk/keycloak-operator-bundle:26.6.3-3","rhbk/keycloak-rhel9:26.6-6","rhbk/keycloak-rhel9-operator:26.6-6"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-9802.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N","cvss3_score":"6.8"},{"CVE":"CVE-2026-9803","severity":"moderate","public_date":"2026-05-28T04:03:01Z","advisories":["RHSA-2026:25098","RHSA-2026:25097"],"bugzilla":"2482465","bugzilla_description":"keycloak: Keycloak: Denial of Service via malformed Authorization header","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":["rhbk/keycloak-rhel9","rhbk/keycloak-operator-bundle:26.6.3-3","rhbk/keycloak-rhel9:26.6-6","rhbk/keycloak-rhel9-operator:26.6-6"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-9803.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L","cvss3_score":"5.3"},{"CVE":"CVE-2026-9798","severity":"moderate","public_date":"2026-05-28T03:53:01Z","advisories":[],"bugzilla":"2482470","bugzilla_description":"keycloak: Keycloak: Brute-force protection bypass in CIBA flow","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-305","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-9798.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N","cvss3_score":"4.3"},{"CVE":"CVE-2026-9796","severity":"moderate","public_date":"2026-05-28T03:32:50Z","advisories":[],"bugzilla":"2482464","bugzilla_description":"keycloak: Keycloak: Privilege escalation via Time-of-Check to Time-of-Use (TOCTOU) vulnerability","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-367","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-9796.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-9795","severity":"important","public_date":"2026-05-28T03:16:49Z","advisories":[],"bugzilla":"2482462","bugzilla_description":"keycloak: Keycloak: Privilege escalation via improper scope mapping enforcement","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-266","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-9795.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"7.3"},{"CVE":"CVE-2026-9794","severity":"moderate","public_date":"2026-05-28T03:15:43Z","advisories":["RHSA-2026:25098","RHSA-2026:25097"],"bugzilla":"2482461","bugzilla_description":"keycloak: Keycloak: Information disclosure via SAML ECP endpoint","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-209","affected_packages":["rhbk/keycloak-rhel9","rhbk/keycloak-operator-bundle:26.6.3-3","rhbk/keycloak-rhel9:26.6-6","rhbk/keycloak-rhel9-operator:26.6-6"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-9794.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","cvss3_score":"5.3"},{"CVE":"CVE-2026-9793","severity":"moderate","public_date":"2026-05-28T03:12:28Z","advisories":[],"bugzilla":"2482460","bugzilla_description":"keycloak: Keycloak: Security policy bypass in JWE-encrypted request object processing","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-347","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-9793.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N","cvss3_score":"5.9"},{"CVE":"CVE-2026-9792","severity":"moderate","public_date":"2026-05-28T03:10:21Z","advisories":["RHSA-2026:25098","RHSA-2026:25097"],"bugzilla":"2482459","bugzilla_description":"keycloak: Keycloak: Security restriction bypass allows unauthorized ROPC token acquisition","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-280","affected_packages":["rhbk/keycloak-rhel9","rhbk/keycloak-operator-bundle:26.6.3-3","rhbk/keycloak-rhel9:26.6-6","rhbk/keycloak-rhel9-operator:26.6-6"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-9792.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-9791","severity":"moderate","public_date":"2026-05-28T03:08:53Z","advisories":["RHSA-2026:25098","RHSA-2026:25097"],"bugzilla":"2482458","bugzilla_description":"keycloak-rhel9: Organization Data Leak After Feature Disabled in Keycloak","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-863","affected_packages":["rhbk/keycloak-rhel9","rhbk/keycloak-operator-bundle:26.6.3-3","rhbk/keycloak-rhel9:26.6-6","rhbk/keycloak-rhel9-operator:26.6-6"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-9791.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N","cvss3_score":"4.3"},{"CVE":"CVE-2026-46190","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482519","bugzilla_description":"kernel: mtd: spi-nor: debugfs: fix out-of-bounds read in spi_nor_params_show()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-788","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46190.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46154","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482520","bugzilla_description":"kernel: sched_ext: Read scx_root under scx_cgroup_ops_rwsem in cgroup setters","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46154.json"},{"CVE":"CVE-2026-46187","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482521","bugzilla_description":"kernel: wifi: rsi: fix kthread lifetime race between self-exit and external-stop","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-366","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46187.json"},{"CVE":"CVE-2026-46157","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482522","bugzilla_description":"kernel: ALSA: pcm: oss: Fix data race at accessing runtime.oss.trigger","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-820","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46157.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46116","severity":"important","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482523","bugzilla_description":"kernel: xfrm: defensively unhash xfrm_state lists in __xfrm_state_delete","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-763","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46116.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46148","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482524","bugzilla_description":"kernel: spi: microchip-core-qspi: control built-in cs manually","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-372","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46148.json"},{"CVE":"CVE-2026-46193","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482525","bugzilla_description":"kernel: xfrm: ah: account for ESN high bits in async callbacks","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-823","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46193.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46146","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482526","bugzilla_description":"kernel: ALSA: usb-audio: Avoid potential endless loop in convert_chmap_v3()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-606","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46146.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46159","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482527","bugzilla_description":"kernel: btrfs: fix btrfs_ioctl_space_info() slot_count TOCTOU which can lead to info-leak","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-367","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46159.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46207","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482528","bugzilla_description":"kernel: vsock/virtio: fix empty payload in tap skb for non-linear buffers","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46207.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46118","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482529","bugzilla_description":"kernel: pseries/papr-hvpipe: Fix null ptr deref in papr_hvpipe_dev_create_handle()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-476","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46118.json"},{"CVE":"CVE-2026-46206","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482530","bugzilla_description":"kernel: batman-adv: reject new tp_meter sessions during teardown","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-372","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46206.json"},{"CVE":"CVE-2026-46111","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482531","bugzilla_description":"kernel: Bluetooth: hci_conn: fix potential UAF in create_big_sync","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46111.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46181","severity":"important","public_date":"2026-05-28T00:00:00Z","advisories":["RHSA-2026:25120","RHSA-2026:25121","RHSA-2026:25217"],"bugzilla":"2482532","bugzilla_description":"kernel: RDMA/mlx4: Fix mis-use of RCU in mlx4_srq_event()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-366","affected_packages":["kernel-rt-0:4.18.0-553.132.1.rt7.473.el8_10","kernel-0:4.18.0-553.132.1.el8_10","kernel-0:5.14.0-687.15.1.el9_8"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46181.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46230","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482533","bugzilla_description":"kernel: drm/amdgpu/vcn3: Prevent OOB reads when parsing dec msg","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46230.json"},{"CVE":"CVE-2026-46201","severity":"low","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482534","bugzilla_description":"kernel: drm/xe: Fix dma-buf attachment leak in xe_gem_prime_import()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-772","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46201.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46121","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482535","bugzilla_description":"kernel: mm/damon/sysfs-schemes: protect memcg_path kfree() with damon_sysfs_lock","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-367","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46121.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46132","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482536","bugzilla_description":"kernel: net: rtnetlink: zero ifla_vf_broadcast to avoid stack infoleak in rtnl_fill_vfinfo","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-908","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46132.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46104","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482537","bugzilla_description":"kernel: selinux: use sk blob accessor in socket permission helpers","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1083","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46104.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46232","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482538","bugzilla_description":"kernel: HID: playstation: Clamp num_touch_reports","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-805","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46232.json"},{"CVE":"CVE-2026-46177","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482539","bugzilla_description":"kernel: ipmi: Add limits to event and receive message requests","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-835","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46177.json"},{"CVE":"CVE-2026-46143","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482540","bugzilla_description":"kernel: ASoC: qcom: q6apm-lpass-dai: Fix multiple graph opens","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-772","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46143.json"},{"CVE":"CVE-2026-46115","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482541","bugzilla_description":"kernel: block: add pgmap check to biovec_phys_mergeable","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-372","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46115.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46170","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482542","bugzilla_description":"kernel: mptcp: pm: ADD_ADDR rtx: free sk if last","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-911","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46170.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46204","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482543","bugzilla_description":"kernel: drm/amdgpu/vcn4: Prevent OOB reads when parsing IB","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46204.json"},{"CVE":"CVE-2026-46205","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482544","bugzilla_description":"kernel: staging: media: atomisp: Disallow all private IOCTLs","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-267","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46205.json"},{"CVE":"CVE-2026-46237","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482545","bugzilla_description":"kernel: drm/amdgpu/vcn3: Avoid overflow on msg bound check","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46237.json"},{"CVE":"CVE-2026-46106","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482546","bugzilla_description":"kernel: eventfs: Hold eventfs_mutex and SRCU when remount walks events","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-367","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46106.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46162","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482547","bugzilla_description":"kernel: ice: fix double free in ice_sf_eth_activate() error path","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1341","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46162.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46216","severity":"low","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482548","bugzilla_description":"kernel: drm/xe/hdcp: Add NULL check for media_gt in intel_hdcp_gsc_check_status()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-476","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46216.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46174","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482549","bugzilla_description":"kernel: x86/CPU/AMD: Prevent improper isolation of shared resources in Zen2's op cache","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-653","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46174.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46133","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482550","bugzilla_description":"kernel: RDMA/rxe: Reject unknown opcodes before ICRC processing","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-191","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46133.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46165","severity":"low","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482551","bugzilla_description":"kernel: openvswitch: vport: fix self-deadlock on release of tunnel ports","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-833","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46165.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46224","severity":"low","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482552","bugzilla_description":"kernel: drm/xe: Fix bo leak in xe_dma_buf_init_obj() on allocation failure","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-772","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46224.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46194","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482553","bugzilla_description":"kernel: f2fs: fix node_cnt race between extent node destroy and writeback","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-367","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46194.json"},{"CVE":"CVE-2026-46123","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482554","bugzilla_description":"kernel: Bluetooth: virtio_bt: clamp rx length before skb_put","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46123.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46131","severity":"low","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482555","bugzilla_description":"kernel: KVM: x86: check for nEPT/nNPT in slow flush hypercalls","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-266","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46131.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46188","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482557","bugzilla_description":"kernel: octeon_ep_vf: add NULL check for napi_build_skb()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-476","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46188.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46185","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482558","bugzilla_description":"kernel: smb/client: fix out-of-bounds read in symlink_data()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46185.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46197","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482559","bugzilla_description":"kernel: drm/amdkfd: validate SVM ioctl nattr against buffer size","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1284","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46197.json"},{"CVE":"CVE-2026-46184","severity":"low","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482560","bugzilla_description":"kernel: sound: ua101: fix division by zero at probe","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-369","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46184.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46233","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482561","bugzilla_description":"kernel: batman-adv: bla: only purge non-released claims","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-476","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46233.json"},{"CVE":"CVE-2026-46231","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482562","bugzilla_description":"kernel: batman-adv: bla: put backbone reference on failed claim hash insert","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-911","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46231.json"},{"CVE":"CVE-2026-46152","severity":"important","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482563","bugzilla_description":"kernel: wifi: mac80211: drop stray 'static' from fast-RX rx_result","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1058","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46152.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46227","severity":"important","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482564","bugzilla_description":"kernel: sctp: revalidate list cursor after sctp_sendmsg_to_asoc() in SCTP_SENDALL","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-367","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46227.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46239","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482565","bugzilla_description":"kernel: media: i2c: ov5647: Fix runtime PM refcount leak in s_ctrl","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-911","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46239.json"},{"CVE":"CVE-2026-46149","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482566","bugzilla_description":"kernel: scsi: target: configfs: Bound snprintf() return in tg_pt_gp_members_show()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-120","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46149.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46218","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482567","bugzilla_description":"kernel: drm/amdgpu: Add bounds checking to ib_{get,set}_value","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-131","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46218.json"},{"CVE":"CVE-2026-46139","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482568","bugzilla_description":"kernel: smb: client: use kzalloc to zero-initialize security descriptor buffer","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-909","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46139.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46153","severity":"low","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482569","bugzilla_description":"kernel: 8021q: delete cleared egress QoS mappings","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-772","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46153.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46222","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482570","bugzilla_description":"kernel: media: rockchip: rkcif: Add missing MUST_CONNECT flag to pads","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-166","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46222.json"},{"CVE":"CVE-2026-46168","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482571","bugzilla_description":"kernel: mptcp: fix scheduling with atomic in timestamp sockopt","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-821","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46168.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46142","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482572","bugzilla_description":"kernel: net: libwx: fix VF illegal register access","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1220","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46142.json"},{"CVE":"CVE-2026-46236","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482573","bugzilla_description":"kernel: media: rc: xbox_remote: heed DMA restrictions","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-131","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46236.json"},{"CVE":"CVE-2026-46171","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482574","bugzilla_description":"kernel: riscv: kvm: fix vector context allocation leak","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-772","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46171.json"},{"CVE":"CVE-2026-46221","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482575","bugzilla_description":"kernel: EDAC/versalnet: Fix device name memory leak","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-772","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46221.json"},{"CVE":"CVE-2026-46117","severity":"important","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482576","bugzilla_description":"kernel: RDMA/mana: Remove user triggerable WARN_ON() in mana_ib_create_qp_rss()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1288","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46117.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46240","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482577","bugzilla_description":"kernel: media: iris: Fix use-after-free in iris_release_internal_buffers()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46240.json"},{"CVE":"CVE-2026-46182","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482578","bugzilla_description":"kernel: pseries/papr-hvpipe: Prevent kernel stack memory leak to userspace","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-908","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46182.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46151","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482579","bugzilla_description":"kernel: usb: usblp: fix heap leak in IEEE 1284 device ID via short response","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46151.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46112","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482580","bugzilla_description":"kernel: RDMA/hns: Fix unlocked call to hns_roce_qp_remove()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-413","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46112.json"},{"CVE":"CVE-2026-46145","severity":"important","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482581","bugzilla_description":"kernel: RDMA/mana: Validate rx_hash_key_len","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-787","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46145.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46127","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482582","bugzilla_description":"kernel: RDMA/ocrdma: Don't NULL deref uctx on errors in ocrdma_copy_pd_uresp()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46127.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46175","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482583","bugzilla_description":"kernel: f2fs: fix fsck inconsistency caused by FGGC of node block","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-911","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46175.json"},{"CVE":"CVE-2026-46235","severity":"low","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482584","bugzilla_description":"kernel: media: saa7164: add ioremap return checks and cleanups","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-252","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46235.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46208","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482585","bugzilla_description":"kernel: batman-adv: stop tp_meter sessions during mesh teardown","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-366","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46208.json"},{"CVE":"CVE-2026-46178","severity":"low","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482586","bugzilla_description":"kernel: RDMA/mlx4: Fix resource leak on error in mlx4_ib_create_srq()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-772","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46178.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46113","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482587","bugzilla_description":"kernel: KVM: x86: Fix shadow paging use-after-free due to unexpected GFN","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-416","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46113.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H","cvss3_score":"5.8"},{"CVE":"CVE-2026-46189","severity":"important","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482588","bugzilla_description":"kernel: RDMA/vmw_pvrdma: Fix double free on pvrdma_alloc_ucontext() error path","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1341","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46189.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46213","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482589","bugzilla_description":"kernel: HID: appletb-kbd: fix UAF in inactivity-timer cleanup path","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-364","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46213.json"},{"CVE":"CVE-2026-46196","severity":"low","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482590","bugzilla_description":"kernel: tracepoint: balance regfunc() on func_add() failure in tracepoint_add_func()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-459","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46196.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46200","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482591","bugzilla_description":"kernel: spi: mpc52xx: fix controller deregistration","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-459","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46200.json"},{"CVE":"CVE-2026-46140","severity":"low","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482592","bugzilla_description":"kernel: Bluetooth: btmtk: validate WMT event SKB length before struct access","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46140.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46241","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482593","bugzilla_description":"kernel: spi: mpc52xx: fix use-after-free on registration failure","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46241.json"},{"CVE":"CVE-2026-46176","severity":"important","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482594","bugzilla_description":"kernel: RDMA/mlx5: Fix error path fall-through in mlx5_ib_dev_res_srq_init()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46176.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46169","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482595","bugzilla_description":"kernel: hfsplus: fix uninit-value by validating catalog record size","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1284","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46169.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46110","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482596","bugzilla_description":"kernel: net: stmmac: Prevent NULL deref when RX memory exhausted","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-476","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46110.json"},{"CVE":"CVE-2026-46202","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482597","bugzilla_description":"kernel: HID: appletb-kbd: run inactivity autodim from workqueues","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-413","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46202.json"},{"CVE":"CVE-2026-46210","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482599","bugzilla_description":"kernel: media: iris: fix use-after-free of fmt_src during MBPF check","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46210.json"},{"CVE":"CVE-2026-46137","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482600","bugzilla_description":"kernel: mptcp: pm: ADD_ADDR rtx: fix potential data-race","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-821","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46137.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46192","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482601","bugzilla_description":"kernel: spi: microchip-core-qspi: don't attempt to transmit during emulated read-only dual/quad operations","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-372","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46192.json"},{"CVE":"CVE-2026-46183","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482602","bugzilla_description":"kernel: mm/damon/sysfs-schemes: protect path kfree() with damon_sysfs_lock","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-413","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46183.json"},{"CVE":"CVE-2026-46228","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482603","bugzilla_description":"kernel: spi: ch341: fix devres lifetime","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-772","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46228.json"},{"CVE":"CVE-2026-46219","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482605","bugzilla_description":"kernel: spi: mpc52xx: fix use-after-free on unbind","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-364","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46219.json"},{"CVE":"CVE-2026-46195","severity":"important","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482606","bugzilla_description":"kernel: smb: client: validate dacloffset before building DACL pointers","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-787","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46195.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46220","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482607","bugzilla_description":"kernel: drm/amdgpu/sdma4: replace BUG_ON with WARN_ON in fence emission","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1285","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46220.json"},{"CVE":"CVE-2026-46125","severity":"important","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482608","bugzilla_description":"kernel: wifi: mac80211: remove station if connection prep fails","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46125.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46134","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482609","bugzilla_description":"kernel: platform/chrome: cros_ec_typec: Init mutex in Thunderbolt registration","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-909","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46134.json"},{"CVE":"CVE-2026-46161","severity":"low","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482610","bugzilla_description":"kernel: md/raid10: fix divide-by-zero in setup_geo() with zero far_copies","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-369","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46161.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46105","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482611","bugzilla_description":"kernel: scsi: mpt3sas: Limit NVMe request size to 2 MiB","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-131","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46105.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46150","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482612","bugzilla_description":"kernel: fanotify: fix false positive on permission events","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-280","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46150.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H","cvss3_score":"7.1"},{"CVE":"CVE-2026-46203","severity":"low","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482613","bugzilla_description":"kernel: spi: cadence-quadspi: fix unclocked access on unbind","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-826","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46203.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46120","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482614","bugzilla_description":"kernel: ip6_gre: Use cached t->net in ip6erspan_changelink()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-763","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46120.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H","cvss3_score":"7.1"},{"CVE":"CVE-2026-46215","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482615","bugzilla_description":"kernel: drm: Set old handle to NULL before prime swap in change_handle","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46215.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46180","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482616","bugzilla_description":"kernel: wifi: brcmfmac: Fix potential use-after-free issue when stopping watchdog task","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-364","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46180.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46167","severity":"low","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482617","bugzilla_description":"kernel: usb: usblp: fix uninitialized heap leak via LPGETSTATUS ioctl","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46167.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46114","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482618","bugzilla_description":"kernel: RDMA/rxe: Reject non-8-byte ATOMIC_WRITE payloads","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-130","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46114.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46126","severity":"low","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482619","bugzilla_description":"kernel: RDMA/mana: Fix mana_destroy_wq_obj() cleanup in mana_ib_create_qp_rss()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-459","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46126.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46147","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482620","bugzilla_description":"kernel: KVM: arm64: Fix pin leak and publication ordering in __pkvm_init_vcpu()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-772","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46147.json"},{"CVE":"CVE-2026-46119","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482621","bugzilla_description":"kernel: libceph: Fix slab-out-of-bounds access in auth message processing","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-131","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46119.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46144","severity":"low","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482622","bugzilla_description":"kernel: RDMA/mana: Fix error unwind in mana_ib_create_qp_rss()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-772","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46144.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46238","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482623","bugzilla_description":"kernel: batman-adv: stop caching unowned originator pointers in BAT IV","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46238.json"},{"CVE":"CVE-2026-46136","severity":"low","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482624","bugzilla_description":"kernel: wifi: mt76: mt7921: fix a potential clc buffer length underflow","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-124","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46136.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46141","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482625","bugzilla_description":"kernel: powerpc/xive: fix kmemleak caused by incorrect chip_data lookup","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-763","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46141.json"},{"CVE":"CVE-2026-46198","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482626","bugzilla_description":"kernel: batman-adv: fix integer overflow on buff_pos","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46198.json"},{"CVE":"CVE-2026-46179","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482627","bugzilla_description":"kernel: ASoC: SOF: Don't allow pointer operations on unconfigured streams","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-369","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46179.json"},{"CVE":"CVE-2026-46223","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482628","bugzilla_description":"kernel: cgroup: Defer css percpu_ref kill on rmdir until cgroup is depopulated","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-833","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46223.json"},{"CVE":"CVE-2026-46109","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482629","bugzilla_description":"kernel: usb: ulpi: fix memory leak on ulpi_register() error paths","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-772","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46109.json"},{"CVE":"CVE-2026-46211","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482630","bugzilla_description":"kernel: drm/msm/gem: fix error handling in msm_ioctl_gem_info_get_metadata()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-390","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46211.json"},{"CVE":"CVE-2026-46186","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482631","bugzilla_description":"kernel: Bluetooth: virtio_bt: validate rx pkt_type header length","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-805","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46186.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46212","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482632","bugzilla_description":"kernel: batman-adv: bla: prevent use-after-free when deleting claims","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-364","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46212.json"},{"CVE":"CVE-2026-46217","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482633","bugzilla_description":"kernel: drm/amdgpu/vcn4: Avoid overflow on msg bound check","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46217.json"},{"CVE":"CVE-2026-46173","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482634","bugzilla_description":"kernel: exit: prevent preemption of oopsing TASK_DEAD task","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1341","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46173.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46191","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482635","bugzilla_description":"kernel: fbcon: Avoid OOB font access if console rotation fails","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-787","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46191.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46209","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482636","bugzilla_description":"kernel: drm/gem: Fix inconsistent plane dimension calculation in drm_gem_fb_init_with_funcs()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46209.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H","cvss3_score":"7.1"},{"CVE":"CVE-2026-46107","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482637","bugzilla_description":"kernel: dm-thin: fix metadata refcount underflow","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-911","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46107.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46156","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482638","bugzilla_description":"kernel: LoongArch: Fix potential ADE in loongson_gpu_fixup_dma_hang()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-823","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46156.json"},{"CVE":"CVE-2026-46158","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482639","bugzilla_description":"kernel: mptcp: pm: ADD_ADDR rtx: always decrease sk refcount","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-911","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46158.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46234","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482640","bugzilla_description":"kernel: vsock: fix buffer size clamping order","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-179","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46234.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46163","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482641","bugzilla_description":"kernel: wifi: b43legacy: enforce bounds check on firmware key index in RX path","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1285","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46163.json"},{"CVE":"CVE-2026-46164","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482642","bugzilla_description":"kernel: btrfs: fix double free in create_space_info_sub_group() error path","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1341","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46164.json"},{"CVE":"CVE-2026-46229","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482643","bugzilla_description":"kernel: drm/amdkfd: Clear VRAM on allocation to prevent stale data exposure","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-909","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46229.json"},{"CVE":"CVE-2026-46172","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482644","bugzilla_description":"kernel: ipv6: xfrm6: release dst on error in xfrm6_rcv_encap()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-772","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46172.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46166","severity":"important","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482645","bugzilla_description":"kernel: wifi: mac80211: use safe list iteration in radar detect work","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46166.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46124","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482646","bugzilla_description":"kernel: isofs: validate block number from NFS file handle in isofs_export_iget","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1285","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46124.json"},{"CVE":"CVE-2026-46160","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482647","bugzilla_description":"kernel: btrfs: fix missing last_unlink_trans update when removing a directory","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-911","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46160.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46122","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482648","bugzilla_description":"kernel: wifi: b43: enforce bounds check on firmware key index in b43_rx()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46122.json"},{"CVE":"CVE-2026-46199","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482649","bugzilla_description":"kernel: drm/amdgpu/vcn4: Prevent OOB reads when parsing dec msg","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46199.json"},{"CVE":"CVE-2026-46225","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482651","bugzilla_description":"kernel: spi: rspi: fix controller deregistration","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-826","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46225.json"},{"CVE":"CVE-2026-46214","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482652","bugzilla_description":"kernel: vsock/virtio: fix accept queue count leak on transport mismatch","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-911","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46214.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46135","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482654","bugzilla_description":"kernel: nvmet-tcp: fix race between ICReq handling and queue teardown","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1341","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46135.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H","cvss3_score":"7.1"},{"CVE":"CVE-2026-46129","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482655","bugzilla_description":"kernel: btrfs: fix double free in create_space_info() error path","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-763","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46129.json"},{"CVE":"CVE-2026-46138","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482656","bugzilla_description":"kernel: Bluetooth: hci_event: Fix OOB read and infinite loop in hci_le_create_big_complete_evt","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46138.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46226","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482657","bugzilla_description":"kernel: spi: fsl: fix controller deregistration","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-826","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46226.json"},{"CVE":"CVE-2026-46128","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482659","bugzilla_description":"kernel: ipmi: Check event message buffer response for bad data","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-390","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46128.json"},{"CVE":"CVE-2026-46155","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482660","bugzilla_description":"kernel: smb/client: fix out-of-bounds read in smb2_compound_op()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-130","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46155.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H","cvss3_score":"7.1"},{"CVE":"CVE-2026-46108","severity":null,"public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482661","bugzilla_description":"kernel: ipmi:si: Return state to normal if message allocation fails","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-372","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46108.json"},{"CVE":"CVE-2026-46130","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482662","bugzilla_description":"kernel: dm-verity-fec: fix reading parity bytes split across blocks (take 3)","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-823","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46130.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-42998","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482825","bugzilla_description":"openstack-keystone: OpenStack Keystone: User impersonation and unauthorized access via insufficient application credential verification.","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-303","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-42998.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:N","cvss3_score":"4.9"},{"CVE":"CVE-2026-43000","severity":"important","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482826","bugzilla_description":"keystone: OpenStack Keystone: Privilege escalation via chained application credential impersonation and trust misuse","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-266","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-43000.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L","cvss3_score":"8.4"},{"CVE":"CVE-2026-42999","severity":"important","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482840","bugzilla_description":"openstack-keystone: OpenStack Keystone: Unauthorized access and privilege escalation via arbitrary policy attribute injection","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-639","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-42999.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L","cvss3_score":"8.3"},{"CVE":"CVE-2026-44394","severity":"moderate","public_date":"2026-05-28T00:00:00Z","advisories":[],"bugzilla":"2482842","bugzilla_description":"openstack-keystone: OpenStack Keystone: Federated token rescoping allows indefinite access","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-613","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-44394.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:N","cvss3_score":"4.9"},{"CVE":"CVE-2026-44660","severity":"moderate","public_date":"2026-05-27T20:42:59Z","advisories":[],"bugzilla":"2482406","bugzilla_description":"python-ujson: UltraJSON: Memory leak leading to Denial of Service","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-772","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-44660.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"7.5"},{"CVE":"CVE-2026-44724","severity":"important","public_date":"2026-05-27T19:26:28Z","advisories":[],"bugzilla":"2482416","bugzilla_description":"systeminformation: systeminformation: Command injection via NetworkManager connection profile name","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-78","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-44724.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.8"},{"CVE":"CVE-2026-9759","severity":"moderate","public_date":"2026-05-27T18:33:18Z","advisories":[],"bugzilla":"2482358","bugzilla_description":"wireshark: NULL Pointer Dereference in Wireshark","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-476","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-9759.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-8643","severity":"important","public_date":"2026-05-27T17:03:36Z","advisories":[],"bugzilla":"2460927","bugzilla_description":"python-pip: Path traversal via malicious entry point name in pip wheel installation allows arbitrary file overwrite","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-22","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-8643.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.0"},{"CVE":"CVE-2026-9704","severity":"moderate","public_date":"2026-05-27T12:45:59Z","advisories":["RHSA-2026:25098","RHSA-2026:25097"],"bugzilla":"2481877","bugzilla_description":"keycloak: Keycloak: Privilege escalation due to oversized subject_token JWT","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1284","affected_packages":["rhbk/keycloak-rhel9","rhbk/keycloak-operator-bundle:26.6.3-3","rhbk/keycloak-rhel9:26.6-6","rhbk/keycloak-rhel9-operator:26.6-6"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-9704.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N","cvss3_score":"6.8"},{"CVE":"CVE-2026-42789","severity":"important","public_date":"2026-05-27T12:23:06Z","advisories":[],"bugzilla":"2482093","bugzilla_description":"erlang: Erlang OTP public_key: Certificate chain forgery via improper trust chain validation","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-295","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-42789.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:N","cvss3_score":"8.0"},{"CVE":"CVE-2026-1933","severity":"important","public_date":"2026-05-27T12:08:33Z","advisories":["RHSA-2026:22963","RHSA-2026:25049"],"bugzilla":"2447317","bugzilla_description":"samba: Missing access check on reparse point operations","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-284","affected_packages":["samba-0:4.23.5-109.el10_2","samba-0:4.23.5-10.el9_8"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-1933.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H","cvss3_score":"7.1"},{"CVE":"CVE-2026-2340","severity":"moderate","public_date":"2026-05-27T10:35:47Z","advisories":["RHSA-2026:22963","RHSA-2026:25049"],"bugzilla":"2447318","bugzilla_description":"samba: vfs_worm does not block directory modification","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-280","affected_packages":["samba-0:4.23.5-109.el10_2","samba-0:4.23.5-10.el9_8"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2340.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N","cvss3_score":"6.5"},{"CVE":"CVE-2026-9689","severity":"moderate","public_date":"2026-05-27T10:18:25Z","advisories":[],"bugzilla":"2481845","bugzilla_description":"keycloak: org.keycloak.protocol.oidc: HTTP Parameter Pollution in OIDC redirect URI allows response parameter duplication - #GHI-604","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1288","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-9689.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N","cvss3_score":"4.2"},{"CVE":"CVE-2026-3012","severity":"important","public_date":"2026-05-27T09:17:49Z","advisories":["RHSA-2026:22963","RHSA-2026:22644","RHSA-2026:25049"],"bugzilla":"2447319","bugzilla_description":"samba: group policy certificate enrollment uses http:// without validation","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-345","affected_packages":["samba-0:4.23.5-109.el10_2","samba-0:4.19.4-16.el8_10","samba-0:4.23.5-10.el9_8"],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-3012.json","cvss3_scoring_vector":"CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N","cvss3_score":"8.0"},{"CVE":"CVE-2026-48962","severity":"important","public_date":"2026-05-27T03:12:38Z","advisories":[],"bugzilla":"2481767","bugzilla_description":"perl-IO-Compress: perl-IO-Compress: Arbitrary code execution via attacker-controlled output glob","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-94","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-48962.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.8"},{"CVE":"CVE-2026-10007","severity":"important","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":null,"bugzilla_description":null,"cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10007.json","cvss3_scoring_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss3_score":"8.8"},{"CVE":"CVE-2026-45981","severity":"moderate","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":null,"bugzilla_description":null,"cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-911","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45981.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-45840","severity":"moderate","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481862","bugzilla_description":"kernel: openvswitch: cap upcall PID array size and pre-size vport replies","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-131","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45840.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-45842","severity":"moderate","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481863","bugzilla_description":"kernel: slip: reject VJ receive packets on instances with no rstate array","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-476","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45842.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-45844","severity":"moderate","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481864","bugzilla_description":"kernel: netfilter: arp_tables: fix IEEE1394 ARP payload parsing","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45844.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-45839","severity":null,"public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481865","bugzilla_description":"kernel: bpf: reject negative CO-RE accessor indices in bpf_core_parse_spec()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45839.json"},{"CVE":"CVE-2026-45845","severity":"moderate","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481866","bugzilla_description":"kernel: net/sched: taprio: fix NULL pointer dereference in class dump","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-476","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45845.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-45841","severity":"moderate","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481867","bugzilla_description":"kernel: netfilter: nfnetlink_osf: fix divide-by-zero in OSF_WSS_MODULO","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-369","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45841.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-45846","severity":"moderate","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481868","bugzilla_description":"kernel: bareudp: fix NULL pointer dereference in bareudp_fill_metadata_dst()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-476","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45846.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-45843","severity":"moderate","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481869","bugzilla_description":"kernel: slip: bound decode() reads against the compressed packet length","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45843.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-45838","severity":"moderate","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481870","bugzilla_description":"kernel: bpf: fix end-of-list detection in cgroup_storage_get_next_key()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-125","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45838.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-45837","severity":"important","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481871","bugzilla_description":"kernel: bpf: Fix use-after-free in arena_vm_close on fork","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45837.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-45886","severity":"moderate","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481904","bugzilla_description":"kernel: bpf: Fix bpf_xdp_store_bytes proto for read-only arg","cvss_score":null,"cvss_scoring_vector":null,"CWE":null,"affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45886.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-45932","severity":"important","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481905","bugzilla_description":"kernel: bpf: Fix tcx/netkit detach permissions when prog fd isn't given","cvss_score":null,"cvss_scoring_vector":null,"CWE":null,"affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45932.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46001","severity":null,"public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481906","bugzilla_description":"kernel: hwmon: (pt5161l) Fix bugs in pt5161l_read_block_data()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-131","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46001.json"},{"CVE":"CVE-2026-46020","severity":null,"public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481907","bugzilla_description":"kernel: mm/damon/core: validate damos_quota_goal->nid for node_mem_{used,free}_bp","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1285","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46020.json"},{"CVE":"CVE-2026-45949","severity":"moderate","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481908","bugzilla_description":"kernel: hwrng: core - use RCU and work_struct to fix race condition","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-364","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45949.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-45869","severity":null,"public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481909","bugzilla_description":"kernel: power: supply: wm97xx: Fix NULL pointer dereference in power_supply_changed()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45869.json"},{"CVE":"CVE-2026-45924","severity":null,"public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481910","bugzilla_description":"kernel: ksmbd: call ksmbd_vfs_kern_path_end_removing() on some error paths","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-772","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45924.json"},{"CVE":"CVE-2026-45925","severity":"low","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481911","bugzilla_description":"kernel: thermal/of: Fix reference leak in thermal_of_cm_lookup()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-772","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45925.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46011","severity":null,"public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481912","bugzilla_description":"kernel: media: mtk-jpeg: fix use-after-free in release path due to uncancelled work","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46011.json"},{"CVE":"CVE-2026-45876","severity":"low","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481913","bugzilla_description":"kernel: arm64/gcs: Fix error handling in arch_set_shadow_stack_status()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-390","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45876.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-45963","severity":"low","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481914","bugzilla_description":"kernel: ASoC: nau8821: Cancel delayed work on component remove","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-364","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45963.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-45992","severity":"low","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481915","bugzilla_description":"kernel: ALSA: caiaq: Fix potentially leftover ep1_in_urb at error path","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-772","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45992.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46060","severity":"low","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481917","bugzilla_description":"kernel: crypto: qat - fix IRQ cleanup on 6xxx probe failure","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-459","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46060.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46035","severity":"moderate","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481918","bugzilla_description":"kernel: mm/page_alloc: return NULL early from alloc_frozen_pages_nolock() in NMI on UP","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-413","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46035.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-45853","severity":null,"public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481919","bugzilla_description":"kernel: drm/amdgpu: Use kvfree instead of kfree in amdgpu_gmc_get_nps_memranges()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-763","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45853.json"},{"CVE":"CVE-2026-46084","severity":"moderate","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481920","bugzilla_description":"kernel: RDMA/mana_ib: Disable RX steering on RSS QP destroy","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-459","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46084.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46068","severity":"low","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481921","bugzilla_description":"kernel: crypto: nx - fix bounce buffer leaks in nx842_crypto_{alloc,free}_ctx","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-763","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46068.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-45984","severity":"important","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481922","bugzilla_description":"kernel: gfs2: Fix use-after-free in iomap inline data write path","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-826","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45984.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46072","severity":null,"public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481923","bugzilla_description":"kernel: ntfs3: add buffer boundary checks to run_unpack()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1284","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46072.json"},{"CVE":"CVE-2026-45922","severity":"low","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481924","bugzilla_description":"kernel: RDMA/mlx5: Fix memory leak in GET_DATA_DIRECT_SYSFS_PATH handler","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-772","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45922.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46024","severity":"moderate","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481926","bugzilla_description":"kernel: libceph: Prevent potential null-ptr-deref in ceph_handle_auth_reply()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1287","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46024.json","cvss3_scoring_vector":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.7"},{"CVE":"CVE-2026-45996","severity":"moderate","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481927","bugzilla_description":"kernel: spi: imx: fix use-after-free on unbind","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-911","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45996.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46080","severity":null,"public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481928","bugzilla_description":"kernel: ocfs2: split transactions in dio completion to avoid credit exhaustion","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-770","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46080.json"},{"CVE":"CVE-2025-71311","severity":null,"public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481929","bugzilla_description":"kernel: fs/ntfs3: Initialize new folios before use","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-71311.json"},{"CVE":"CVE-2026-45918","severity":null,"public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481930","bugzilla_description":"kernel: ovpn: tcp - don't deref NULL sk_socket member after tcp_close()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-476","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45918.json"},{"CVE":"CVE-2026-46046","severity":"low","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481931","bugzilla_description":"kernel: ext4: fix missing brelse() in ext4_xattr_inode_dec_ref_all()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-911","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46046.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-45973","severity":"moderate","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481932","bugzilla_description":"kernel: RDMA/mlx5: Fix UMR hang in LAG error state unload","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-833","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45973.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-45864","severity":"moderate","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481933","bugzilla_description":"kernel: fs/ntfs3: prevent infinite loops caused by the next valid being the same","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-606","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45864.json"},{"CVE":"CVE-2026-46039","severity":"moderate","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481934","bugzilla_description":"kernel: rxgk: Fix potential integer overflow in length check","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46039.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-45975","severity":"important","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481935","bugzilla_description":"kernel: ublk: use READ_ONCE() to read struct ublksrv_ctrl_cmd","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-820","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45975.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46015","severity":"moderate","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481936","bugzilla_description":"kernel: tcp: call sk_data_ready() after listener migration","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-821","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46015.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-45952","severity":null,"public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481937","bugzilla_description":"kernel: eth: fbnic: Add validation for MTU changes","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1284","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45952.json"},{"CVE":"CVE-2026-46093","severity":"moderate","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481938","bugzilla_description":"kernel: mm/vmalloc: take vmap_purge_lock in shrinker","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-414","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46093.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46006","severity":null,"public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481939","bugzilla_description":"kernel: drm/nouveau: fix u32 overflow in pushbuf reloc bounds check","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-190","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46006.json"},{"CVE":"CVE-2026-45894","severity":"moderate","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481940","bugzilla_description":"kernel: iommu/vt-d: Clear Present bit before tearing down PASID entry","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-367","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45894.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2025-71305","severity":"moderate","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481941","bugzilla_description":"kernel: drm/display/dp_mst: Add protection against 0 vcpi","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1335","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-71305.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2025-71307","severity":null,"public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481942","bugzilla_description":"kernel: drm/panthor: Fix NULL pointer dereference on panthor_fw_unplug","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-824","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-71307.json"},{"CVE":"CVE-2026-45873","severity":"low","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481943","bugzilla_description":"kernel: netfilter: nft_set_rbtree: check for partial overlaps in anonymous sets","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1288","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45873.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46059","severity":"low","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481944","bugzilla_description":"kernel: KVM: nSVM: Always use NextRIP as vmcb02's NextRIP after first L2 VMRUN","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-841","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46059.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46079","severity":"moderate","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481945","bugzilla_description":"kernel: rbd: fix null-ptr-deref when device_add_disk() fails","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-476","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46079.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-45875","severity":null,"public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481946","bugzilla_description":"kernel: mfd: arizona: Fix regulator resource leak on wm5102_clear_write_sequencer() failure","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-772","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45875.json"},{"CVE":"CVE-2026-45896","severity":"low","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481947","bugzilla_description":"kernel: mtd: intel-dg: Fix accessing regions before setting nregions","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-909","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45896.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-45959","severity":"moderate","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481948","bugzilla_description":"kernel: crypto: ccp - Fix a crash due to incorrect cleanup usage of kfree","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-763","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45959.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-45934","severity":"moderate","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481949","bugzilla_description":"kernel: btrfs: fix EEXIST abort due to non-consecutive gaps in chunk allocation","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1285","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45934.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-45917","severity":"low","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481951","bugzilla_description":"kernel: ipvs: do not keep dest_dst if dev is going down","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-367","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45917.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-45905","severity":"low","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481952","bugzilla_description":"kernel: xfrm: fix ip_rt_bug race in icmp_route_lookup reverse path","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-367","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45905.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-45902","severity":null,"public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481953","bugzilla_description":"kernel: power: supply: bq256xx: Fix use-after-free in power_supply_changed()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-364","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45902.json"},{"CVE":"CVE-2026-46025","severity":null,"public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481954","bugzilla_description":"kernel: mm/damon/core: fix damon_call() vs kdamond_fn() exit race","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-366","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46025.json"},{"CVE":"CVE-2026-46022","severity":"moderate","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481955","bugzilla_description":"kernel: misc: ibmasm: fix OOB MMIO read in ibmasm_handle_mouse_interrupt()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1285","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46022.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-45956","severity":null,"public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481956","bugzilla_description":"kernel: drm/exynos: vidi: use priv->vidi_dev for ctx lookup in vidi_connection_ioctl()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-466","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45956.json"},{"CVE":"CVE-2026-46051","severity":"moderate","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481957","bugzilla_description":"kernel: md/raid5: fix soft lockup in retry_aligned_read()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-835","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46051.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-45962","severity":"moderate","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481958","bugzilla_description":"kernel: ublk: Validate SQE128 flag before accessing the cmd","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-1285","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45962.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-45966","severity":null,"public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481959","bugzilla_description":"kernel: apparmor: fix NULL pointer dereference in __unix_needs_revalidation","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-476","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45966.json"},{"CVE":"CVE-2026-46034","severity":null,"public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481960","bugzilla_description":"kernel: vfio/cdx: Fix NULL pointer dereference in interrupt trigger path","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-909","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46034.json"},{"CVE":"CVE-2026-45935","severity":null,"public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481961","bugzilla_description":"kernel: fs/ntfs3: Fix slab-out-of-bounds read in DeleteIndexEntryRoot","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-805","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45935.json"},{"CVE":"CVE-2026-45990","severity":null,"public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481962","bugzilla_description":"kernel: slub: fix data loss and overflow in krealloc()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-787","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45990.json"},{"CVE":"CVE-2026-46057","severity":null,"public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481963","bugzilla_description":"kernel: landlock: Fix LOG_SUBDOMAINS_OFF inheritance across fork()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-281","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46057.json"},{"CVE":"CVE-2026-45948","severity":"low","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481964","bugzilla_description":"kernel: ext4: fix memory leak in ext4_ext_shift_extents()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-772","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45948.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-45944","severity":"moderate","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481965","bugzilla_description":"kernel: iommu/vt-d: Clear Present bit before tearing down context entry","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-367","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45944.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46053","severity":"important","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481966","bugzilla_description":"kernel: net: rds: fix MR cleanup on copy error","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-763","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46053.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-45920","severity":"low","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481967","bugzilla_description":"kernel: ext4: fix dirtyclusters double decrement on fs shutdown","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-911","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45920.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46045","severity":"moderate","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481969","bugzilla_description":"kernel: md/md-llbitmap: skip reading rdevs that are not in_sync","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-821","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46045.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-45974","severity":"moderate","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481970","bugzilla_description":"kernel: btrfs: fix invalid leaf access in btrfs_quota_enable() if ref key not found","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-390","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45974.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-46100","severity":null,"public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481971","bugzilla_description":"kernel: fs: afs: revert mmap_prepare() change","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-911","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46100.json"},{"CVE":"CVE-2026-46099","severity":"important","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481972","bugzilla_description":"kernel: net: ipv6: fix NOREF dst use in seg6 and rpl lwtunnels","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-911","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46099.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-45972","severity":"important","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481973","bugzilla_description":"kernel: smb: client: fix potential UAF and double free in smb2_open_file()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-825","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45972.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss3_score":"7.0"},{"CVE":"CVE-2026-46077","severity":null,"public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481974","bugzilla_description":"kernel: crypto: atmel-tdes - fix DMA sync direction","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-821","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-46077.json"},{"CVE":"CVE-2026-45982","severity":"low","public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481975","bugzilla_description":"kernel: ACPICA: Fix NULL pointer dereference in acpi_ev_address_space_dispatch()","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-476","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45982.json","cvss3_scoring_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","cvss3_score":"5.5"},{"CVE":"CVE-2026-45928","severity":null,"public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481976","bugzilla_description":"kernel: media: chips-media: wave5: Fix memory leak on codec_info allocation failure","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-772","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45928.json"},{"CVE":"CVE-2026-45977","severity":null,"public_date":"2026-05-27T00:00:00Z","advisories":[],"bugzilla":"2481977","bugzilla_description":"kernel: fbnic: close fw_log race between users and teardown","cvss_score":null,"cvss_scoring_vector":null,"CWE":"CWE-364","affected_packages":[],"package_state":null,"resource_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-45977.json"}]