VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
3642 advisories across 32 monitored vendors.
Denial of Service via crafted archive with NUL bytes in metadata. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-170.
Arbitrary IPMI command execution via send_raw deployment step. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-862.
Remote code execution or denial of service via use-after-free race condition. Red Hat rates this moderate (CVSS 5.6). Weakness: CWE-364.
Brute-force attacks facilitated due to insufficient authentication delay. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-307. Red Hat lists fixing advisory RHSA-2026:37382 with package openssh-main-10.4p1-1.hum1.
Denial of Service via excessive GSSAPI authentication attempts. Red Hat rates this moderate (CVSS 5.9). Weakness: CWE-307. Red Hat lists fixing advisory RHSA-2026:37382 with package openssh-main-10.4p1-1.hum1.
OpenSSH sshd: Security bypass due to incorrect handling of forwarding and tunneling options. Red Hat rates this moderate (CVSS 5.9). Weakness: CWE-358. Red Hat lists fixing advisory RHSA-2026:37382 with package openssh-main-10.4p1-1.hum1.
Undocumented GSSAPIStrictAcceptorCheck behavior impacts security in Windows Active Directory. Red Hat rates this moderate (CVSS 4.8). Weakness: CWE-909. Red Hat lists fixing advisory RHSA-2026:37382 with package openssh-main-10.4p1-1.hum1.
SFTP security bypass due to command-line argument parsing flaw. Red Hat rates this moderate (CVSS 5.4). Weakness: CWE-88. Red Hat lists fixing advisory RHSA-2026:37382 with package openssh-main-10.4p1-1.hum1.
`scp` file misplacement vulnerability during remote copy. Red Hat rates this moderate (CVSS 4.6). Weakness: CWE-22.
sftp client allows attacker to control downloaded file location. Red Hat rates this moderate (CVSS 5.4). Weakness: CWE-22. Red Hat lists fixing advisory RHSA-2026:37382 with package openssh-main-10.4p1-1.hum1.
GLX contextTags Use-After-Free in CommonMakeCurrent(). Red Hat rates this important (CVSS 6.5). Weakness: CWE-825. Red Hat lists fixing advisory RHSA-2026:38490 with package xorg-x11-server-Xwayland-0:24.1.9-4.el9_8.3, xorg-x11-server-Xwayland-0:24.1.9-4.el10_2.3. Affected products named by the advisory: Red Hat Enterprise Linux 9; Red Hat Enterprise Linux 1.
Unauthenticated access to AI guardrails and orchestrator APIs. Red Hat rates this moderate (CVSS 6.3).
Gorch port bypass when auth IS enabled. Red Hat rates this moderate (CVSS 6.3). Weakness: CWE-306.
BLF file parser in Wireshark 4.6.0 to 4.6.6 and 4.4.0 to 4.4.16 allows possible information disclosure Affected product named by the advisory: GitLab.
BLF file parser in Wireshark 4.6.0 to 4.6.6 and 4.4.0 to 4.4.16 allows possible information disclosure A flaw was found in Wireshark. A remote attacker could exploit this vulnerability by enticing a user to open a specially crafted BLF file, leading to the disclosure of sensitive information. Red Hat severity: Low — CVSS 2.5 (CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N). Weakness: CWE-237. Affected Red Hat products: Red Hat Enterprise Linux 10; Red Hat Enterprise Linux 6; Red Hat Enterprise Linux 7; Red Hat Enterprise Linux 8; Red Hat Enterprise Linux 9. Will not fix / out of support: Red Hat Enterprise Linux 6; Red Hat Enterprise Linux 7. Red Hat does not currently list a fixing RHSA for this CVE.
GitLab has remediated an issue in GitLab EE affecting all versions from 18.2 before 18.11.7, 19.0 before 19.0.4, and 19.1 before 19.1.2 that under certain conditions could have allowed an authenticated user with auditor-level access to modify compliance violation records due to improper authorization on certain GraphQL operations.
GitLab has remediated an issue in GitLab EE affecting all versions from 16.10 before 18.11.7, 19.0 before 19.0.4, and 19.1 before 19.1.2 that under certain conditions could have allowed an authenticated user to modify group-level settings beyond their intended permissions due to improper authorization controls.
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.5 before 18.11.7, 19.0 before 19.0.4, and 19.1 before 19.1.2 that under certain conditions could have allowed an authenticated user to create a repository where the content displayed in the web interface differed from the content available for download, due to improper handling of Git reference name resolution.
Auditor-level users can modify compliance records via improper authorization in GraphQL. Red Hat rates this low (CVSS 2.7). Weakness: CWE-639.
Magick.NET-Q16-HDRI-x64: Magick.NET-Q16-HDRI-x86: Magick.NET-Q16-OpenMP-arm64: Magick.NET-Q16-OpenMP-x64: Magick.NET-Q16-OpenMP-x86: Magick.NET-Q16-arm64: Magick.NET-Q16-x64: Magick.NET-Q16-x86: Magick.NET-Q8-AnyCPU: Magick.NET-Q8-OpenMP-arm64: Magick.NET-Q8-OpenMP-x64: Magick.NET-Q8-arm64: Magick.NET-Q8-x64: Magick.NET-Q8-x86: ImageMagick: Information disclosure via heap-buffer-overflow read. Red Hat rates this low (CVSS 3.3). Weakness: CWE-125.