Threats Tagged 'cve-2026-4427'
View all threats tagged with 'cve-2026-4427'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cve-2026-4427'
Click on any threat for detailed analysis and mitigation recommendations
GCVE Database | 06/02/2026, 13:10:36 UTC Added: 05/26/2026, 20:58:28 UTC | |
Red Hat Security Advisory: RHACS 4.9.7 security and bug fix updateCVE-2025-62718 0 See the release notes (link in the references section) for a description of the fixes and enhancements in this particular release. Join the discussion | GCVE Database | 05/26/2026, 14:29:00 UTC Added: 05/26/2026, 20:58:27 UTC |
Red Hat Security Advisory: Red Hat Web Terminal Operator 1.12.0 release.CVE-2025-61726 0 The Web Terminal provides a way to access a fully in-browser terminal emulator within the OpenShift Console. Command-line tools for interacting with the OpenShift cluster are pre-installed. Join the discussion | GCVE Database | 04/23/2026, 18:54:04 UTC Added: 05/26/2026, 20:58:21 UTC |
GCVE Database | 05/20/2026, 13:01:07 UTC Added: 05/26/2026, 20:58:20 UTC | |
Red Hat Security Advisory: golang security updateCVE-2025-61726 0 The golang packages provide the Go programming language compiler. Security Fix(es): * golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip (CVE-2025-61728) * golang: net/url: Memory exhaustion in query parameter parsing in net/url (CVE-2025-61726) * cmd/cgo: Potential code smuggling via doc comments in cmd/cgo (CVE-2025-61732) * crypto/tls: Unexpected session resumption in crypto/tls (CVE-2025-68121) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Join the discussion | GCVE Database | 02/16/2026, 09:40:31 UTC Added: 05/26/2026, 20:58:19 UTC |
Red Hat Security Advisory: A Subscription Management tool for finding and reporting Red Hat product usageCVE-2025-62718 0 Red Hat Discovery, also known as Discovery, is an inspection and reporting tool that finds, identifies, and reports environment data, or facts, such as the number of physical and virtual systems on a network, their operating systems, and relevant configuration data stored within them. Discovery also identifies and reports more detailed facts for some versions of key Red Hat packages and products that it finds in the network. Join the discussion | GCVE Database | 05/07/2026, 21:30:41 UTC Added: 05/26/2026, 20:58:09 UTC |
GCVE Database | 04/23/2026, 12:16:06 UTC Added: 05/26/2026, 20:57:58 UTC | |
GCVE Database | 04/29/2026, 17:11:19 UTC Added: 05/26/2026, 20:57:57 UTC | |
Red Hat Security Advisory: Submariner v0.22 security fixes and container updatesCVE-2025-61726 0 Submariner is a Kubernetes operator that enables cross-cluster connectivity for services and pods, implementing KEP-1645 (Multi-Cluster Services API). After deploying the Submariner operator, it can enable direct networking between pods and services across different Kubernetes clusters. For more information about Submariner, see the Submariner open source community website at: https://submariner.io/. Join the discussion | GCVE Database | 04/14/2026, 15:55:27 UTC Added: 05/26/2026, 20:57:56 UTC |
Red Hat Security Advisory: Kiali 2.11.9 for Red Hat OpenShift Service Mesh 3.1CVE-2025-62718 0 Kiali 2.11.9, for Red Hat OpenShift Service Mesh 3.1, provides observability for the service mesh by offering a visual representation of the mesh topology and metrics, helping users monitor, trace, and manage efficiently. Security Fix(es): * CVE-2025-62718 Axios: Server-Side Request Forgery and proxy bypass due to improper hostname normalization (OSSM-13231, OSSM-13234) * CVE-2026-25679 Incorrect parsing of IPv6 host literals in net/url (OSSM-12921) * CVE-2026-29074 SVGO: Denial of Service via XML entity expansion (OSSM-12897, OSSM-12898) * CVE-2026-29063 Immutable.js: Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') (OSSM-12977, OSSM-12978) * CVE-2026-33186 gRPC-Go: Authorization bypass due to improper HTTP/2 path validation (OSSM-13012) * CVE-2026-4800 lodash: Arbitrary code execution via untrusted input in template imports (OSSM-13119, OSSM-13120) * CVE-2026-34986 Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object (OSSM-13147) * CVE-2026-40175 Axios: Remote Code Execution via Prototype Pollution escalation (OSSM-13256, OSSM-13257) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Join the discussion | GCVE Database | 04/16/2026, 14:03:40 UTC Added: 05/26/2026, 20:57:54 UTC |
Showing 1 to 10 of 11 results