Synced 18 Jun 2026 05:58 UTC Account
← Discourse

Discourse: 3.5.4 2026.1.4

Discourse · upgrade impact · Official site ↗
From3.5.434 known issues To2026.1.41 known issue

Fixed by upgrading to 2026.1.4 iVulnerabilities that affect 3.5.4 but no longer affect 2026.1.4 — the security gain from this upgrade, by exploited status then exploitation probability.

Exploited first, then by exploitation probability (EPSS).

CVE-2021-41082 HIGH EPSS 2% ✓ cleared in 2026.1.4 CVE-2026-45775 MEDIUM EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-27021 MEDIUM EPSS 0% ✓ cleared in 2026.1.4 CVE-2025-59337 MEDIUM EPSS 0% ✓ cleared in 2026.1.4 CVE-2025-61598 MEDIUM EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-44786 HIGH EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-26077 MEDIUM EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-26265 HIGH EPSS 0% ✓ cleared in 2026.1.4 CVE-2025-58055 MEDIUM EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-44784 MEDIUM EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-27162 MEDIUM EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-27149 MEDIUM EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-26078 HIGH EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-44779 MEDIUM EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-47264 MEDIUM EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-28219 MEDIUM EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-45085 MEDIUM EPSS 0% ✓ cleared in 2026.1.4 CVE-2025-58054 LOW EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-28227 LOW EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-47263 MEDIUM EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-44780 MEDIUM EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-44782 MEDIUM EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-44785 MEDIUM EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-26979 LOW EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-27154 MEDIUM EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-27152 LOW EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-27153 LOW EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-27151 LOW EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-27150 LOW EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-26973 MEDIUM EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-26207 MEDIUM EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-28218 MEDIUM EPSS 0% ✓ cleared in 2026.1.4 CVE-2026-44783 MEDIUM EPSS 0% ✓ cleared in 2026.1.4

Still open in 2026.1.4 iKnown vulnerabilities that affect 2026.1.4 too — upgrading to it does not clear these.

These affect 2026.1.4 as well — a later release may be needed.

CVE-2026-27166 MEDIUM EPSS 0% → fixed in 2026.3.0