Synced 17 Jun 2026 22:27 UTC Account
← All products

Ubuntu

Canonical · Operating System
↻ RSS feed
Monitors Ubuntu and tailors your dashboard to that exact version.
26.04 · latest cycle85/100 Good

Summary iPlain-English security verdict for Ubuntu, generated from its current health score, actively-exploited vulnerabilities, and latest supported version.

Ubuntu currently scores 85/100 — good. 25 actively-exploited vulnerabilities (CISA KEV) affect older releases (e.g. CVE-2014-6271) — staying on the latest supported version keeps you clear of them. The latest supported release is 26.04. It's largely safe; apply minor updates as they appear. Note: this product is assessed at the product level on recent (365-day) activity rather than an exact per-version match, so it is never marked a confident "healthy".

Disclosure trend iNew CVEs published for Ubuntu each year (NVD). A higher bar means more disclosures that year — more scrutiny, not necessarily less safe.

'19
'20
'21
'22
'23
'24
'25
'26

2 of its known vulnerabilities are linked to ransomware campaigns (CISA KEV).

Patch priority — what to act on iThe issues to fix first — actively exploited (CISA KEV) first, then by exploitation probability (EPSS), then severity. Each row's "→ fixed in" is the earliest version that patches it; "see advisory" means no fixed version is published.

Most urgent first — actively exploited, then likeliest to be exploited.

CVE-2014-6271 CRITICAL exploited OS command injection EPSS 100% → see advisory CVE-2014-0160 HIGH exploited Out-of-bounds read EPSS 100% → see advisory CVE-2017-12617 HIGH exploited Unrestricted file upload EPSS 100% → see advisory CVE-2014-7169 CRITICAL exploited OS command injection EPSS 100% → see advisory CVE-2013-0422 CRITICAL exploited ransomware Improper access control EPSS 98% → see advisory CVE-2016-3714 HIGH exploited Improper input validation EPSS 97% → see advisory CVE-2011-3544 CRITICAL exploited Improper access control EPSS 97% → see advisory CVE-2010-0840 CRITICAL exploited EPSS 96% → see advisory CVE-2016-3427 CRITICAL exploited Improper access control EPSS 92% → see advisory CVE-2016-8735 CRITICAL exploited EPSS 90% → see advisory CVE-2013-2423 LOW exploited Improper access control EPSS 85% → see advisory CVE-2016-5195 HIGH exploited CWE-362 EPSS 84% → see advisory

See all 2000 known Ubuntu CVEs & security history →

How to patch Ubuntu — step-by-step to the latest secure version →

Get alerted about Ubuntu

Be emailed the moment Ubuntu gets a newly exploited vulnerability (CISA KEV) or a release reaches end of life. Free · double opt-in · unsubscribe anytime.

We email only on real events for Ubuntu — no marketing, no sharing, and we never know what you run. Track your whole stack →

Monitor up to 200 products — freeHit ☆ Monitor on anything you run, then sign in (no password) to sync your stack across devices and unlock smart insights, risk history & CSV/JSON exports. Sign in free →

Versions & lifecycle iWhen each release line stops receiving security patches (end-of-life). After EOL there are no more fixes — plan upgrades before these dates.

How long each Ubuntu release line is supported — and when it sunsets. Select a line for its full report.

Apr30'31 Ubuntu 26.04EOL 2031-04-30
May31'29 Ubuntu 24.04EOL 2029-05-31
Apr1'27 Ubuntu 22.04EOL 2027-04-01
Jul1'26 Ubuntu 25.10EOL 2026-07-01
Jan17'26 Ubuntu 25.04ended 2026-01-17
Jul10'25 Ubuntu 24.10ended 2025-07-10
May31'25 Ubuntu 20.04ended 2025-05-31
Jul12'24 Ubuntu 23.10ended 2024-07-12
Jan20'24 Ubuntu 23.04ended 2024-01-20
Jul20'23 Ubuntu 22.10ended 2023-07-20
May31'23 Ubuntu 18.04ended 2023-05-31
Jul14'22 Ubuntu 21.10ended 2022-07-14

Full Ubuntu end-of-life dates & support timeline →

26.04 latest 26.04 Supported until 2031-04-30security notices → 25.10 latest 25.10 Supported until 2026-07-01security notices →
25.04 latest 25.04 End of life ended 2026-01-17
24.10 latest 24.10 End of life ended 2025-07-10
24.04 latest 24.04.4 Supported until 2029-05-31security notices →
23.10 latest 23.10 End of life ended 2024-07-12
23.04 latest 23.04 End of life ended 2024-01-20
22.10 latest 22.10 End of life ended 2023-07-20
22.04 latest 22.04.5 Supported until 2027-04-01security notices →
21.10 latest 21.10 End of life ended 2022-07-14
See all upcoming end-of-life dates →

Frequently asked

Is Ubuntu safe and patched?

Ubuntu currently scores 85/100 — good. 25 actively-exploited vulnerabilities (CISA KEV) affect older releases (e.g. CVE-2014-6271) — staying on the latest supported version keeps you clear of them. The latest supported release is 26.04. It's largely safe; apply minor updates as they appear. Note: this product is assessed at the product level on recent (365-day) activity rather than an exact per-version match, so it is never marked a confident "healthy".

What should I do about Ubuntu now?

Upgrade Ubuntu to the latest supported release (26.04) or later, which clears the actively-exploited issues affecting older versions, then confirm against Canonical's official advisory.

When does Ubuntu reach end-of-life?

The latest supported Ubuntu release is 26.04. After end-of-life a release no longer receives security patches.

Which versions of Ubuntu are still receiving security updates?

Supported Ubuntu release lines (latest 26.04): 26.04, 25.10, 24.04, 22.04. End-of-life releases no longer receive security patches.

product-level posture (last 365d); exact per-version verdict pending precise version mapping

Informational only, from public data (NVD · CISA KEV · EPSS · endoflife.date), and can lag or miss vendor-specific fixes. Always confirm against Canonical's official advisory before you patch or upgrade — Ubuntu official site ↗