Known exploitation or KEV-listed
Authenticated command execution via MCP stdio test endpoints. Red Hat rates this important (CVSS 8.8). Weakness: CWE-78. Affected package(s): rhoai/odh-llama-stack-core-rhel9:1781826406, rhoai/odh-llama-stack-core-rhel9:1782310008, rhoai/odh-trustyai-garak-lls-provider-dsp-rhel9:1781622627. Resolved in Red Hat advisory RHSA-2026:28960 — update the affected packages (`sudo dnf update`).
algif_aead - Revert to operating out-of-place. Red Hat rates this important (CVSS 7.8). Weakness: CWE-1288. Affected package(s): kernel, rhcos, kernel-rt, kpatch-patch. Resolved in Red Hat advisory RHSA-2026:13729 — update the affected packages (`sudo dnf update`).
RCE via crafted discovery URI in Jolokia JMX-HTTP bridge. Red Hat rates this important (CVSS 8.8). Weakness: CWE-78. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Processing maliciously crafted web content may lead to memory corruption. Red Hat rates this important (CVSS 8.8). Weakness: CWE-120. Affected package(s): webkit2gtk3, webkitgtk4. Resolved in Red Hat advisory RHSA-2025:19157 — update the affected packages (`sudo dnf update`).
Out of bounds write in Skia. Red Hat rates this important (CVSS 8.8). No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Inappropriate implementation in V8. Red Hat rates this important (CVSS 8.8). No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Use after free in CSS. Red Hat rates this important (CVSS 8.8). No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Discuss the latest advisories, swap patch-day notes with other infra teams, and get support — straight from the people who run VulniPulse.
Join the communityIf you want to support server/domain costs, please donate below — much love ❤️
Donate