Security Advisories

View the status of known vulnerabilities in a Chainguard Container along with daily updates on security patches. Learn more.

CGA ID	CVE ID	Severity	Affected package	Status
CGA-pr22-vrwm-385p	CVE-2026-31598	Unknown	linux-qemu-6.18	Under investigation
CGA-vfhv-6vxg-whqw	CVE-2026-22746	Unknown	apache-nifi	Under investigation
CGA-q8vj-qxmx-h894	CVE-2026-22746	Unknown	apache-nifi	Under investigation
CGA-jpjg-82vp-6748	CVE-2026-22747	Unknown	apache-nifi	Under investigation
CGA-w92r-xm68-hqcj	CVE-2026-22748	Unknown	apache-nifi	Under investigation
CGA-7g29-qpm6-j999	CVE-2026-22746	Unknown	apache-nifi	Under investigation
CGA-x93g-pp8v-q4v5	CVE-2026-22753	Unknown	apache-nifi	Under investigation
CGA-22cm-p32v-7jv5	CVE-2026-22754	Unknown	apache-nifi	Under investigation
CGA-6hg9-hq33-q6hp	CVE-2026-40542	Unknown	apache-nifi	Under investigation
CGA-g2x6-9c57-jjm2	CVE-2026-40542	Unknown	opensearch-fips-3-cross-cluster-replication	Under investigation
CGA-4x49-m3fq-rh5g	CVE-2026-40542	Unknown	opensearch-3-notifications	Under investigation
CGA-h7g2-rfwm-qvcg	CVE-2026-40542	Unknown	opensearch-3-notifications	Under investigation
CGA-2w3p-jcm8-483p	CGA-2w3p-jcm8-483p	Unknown	harbor-fips-2.15	Under investigation
CGA-24mw-v6jc-82wj	CVE-2026-32286	Unknown	harbor-fips-2.15	Pending upstream fix
CGA-8836-qgx7-pfr3	CVE-2026-35172	Unknown	harbor-fips-2.15	Pending upstream fix
CGA-pfxj-7pf6-32w4	CVE-2026-33540	Unknown	harbor-fips-2.15	Pending upstream fix

584,530 advisories

The trusted source for open source

Talk to an expert

Privacy

Terms

© 2026 Chainguard, Inc. All Rights Reserved.
Chainguard® and the Chainguard logo are registered trademarks of Chainguard, Inc. in the United States and/or other countries.
The other respective trademarks mentioned on this page are owned by the respective companies and use of them does not imply any affiliation or endorsement.

Security Advisories

The trusted source for open source

Product

Solutions

Customers

Resources

Company