Security Advisories

View the status of known vulnerabilities in a Chainguard Container along with daily updates on security patches. Learn more.

CGA ID	CVE ID	Severity	Affected package	Status
CGA-h7hv-pjrr-rwcg	CVE-2026-12014	Unknown	chromium	Under investigation
CGA-9837-3vxx-v59q	CVE-2026-12012	Unknown	chromium	Under investigation
CGA-rqr9-q4c9-g235	CVE-2026-12010	Unknown	chromium	Under investigation
CGA-8hxg-p93g-p7x6	CVE-2026-12009	Unknown	chromium	Under investigation
CGA-fvjf-qc39-xhvf	CVE-2026-12008	Unknown	chromium	Under investigation
CGA-98vf-25rw-98fp	CGA-98vf-25rw-98fp	High	kubeflow-pipelines-frontend	Under investigation
CGA-mpf2-hf5w-wmw6	CGA-mpf2-hf5w-wmw6	Low	kubeflow-pipelines-frontend	Under investigation
CGA-8c97-pvw6-25rg	CGA-8c97-pvw6-25rg	High	vite	Under investigation
CGA-p6qp-gr7j-gwv5	CGA-p6qp-gr7j-gwv5	Low	vite	Under investigation
CGA-qcrp-xx7g-6q7c	CVE-2026-53441	High	jenkins-2.555-openjdk-21	Under investigation
CGA-j7vf-5x99-f379	CGA-j7vf-5x99-f379	High	langfuse-2	Under investigation
CGA-qvrq-xq4p-h9w9	CVE-2026-49854	Low	tensorflow-cpu-jupyter	Fixed
CGA-6cvh-pwpp-44hv	CVE-2026-53441	High	jenkins-2.555-openjdk-25	Under investigation
CGA-gq9c-766x-3w5j	CVE-2026-41889	Unknown	splunk-otel-collector	Fixed
CGA-mmwv-jff6-w5rw	CVE-2026-49854	Low	airflow-2	Fix not planned
CGA-mqg7-wgxq-35cp	CGA-mqg7-wgxq-35cp	High	argo-workflows-ui-3.7	Under investigation

822,686 advisories

The trusted source for open source

Talk to an expert

Privacy

Terms

© 2026 Chainguard, Inc. All Rights Reserved.
Chainguard® and the Chainguard logo are registered trademarks of Chainguard, Inc. in the United States and/or other countries.
The other respective trademarks mentioned on this page are owned by the respective companies and use of them does not imply any affiliation or endorsement.

Security Advisories

The trusted source for open source

Product

Solutions

Customers

Resources

Company