Discourse: 2025.12.2 → 2026.1.4
Discourse · upgrade impact · Official site ↗
Fixed by upgrading to 2026.1.4 iVulnerabilities that affect 2025.12.2 but no longer affect 2026.1.4 — the security gain from this upgrade, by exploited status then exploitation probability.
Exploited first, then by exploitation probability (EPSS).
CVE-2026-45775 MEDIUM EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-44786 HIGH EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-44784 MEDIUM EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-44779 MEDIUM EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-47264 MEDIUM EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-45085 MEDIUM EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-47263 MEDIUM EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-44780 MEDIUM EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-44782 MEDIUM EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-44785 MEDIUM EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-44783 MEDIUM EPSS 0% ✓ cleared in 2026.1.4Still open in 2026.1.4 iKnown vulnerabilities that affect 2026.1.4 too — upgrading to it does not clear these.
These affect 2026.1.4 as well — a later release may be needed.
CVE-2026-27166 MEDIUM EPSS 0% → fixed in 2026.3.0