VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
304 advisories across 32 monitored vendors.
Integer overflow in Fonts. Red Hat rates this important (CVSS 9.6). Weakness: CWE-190. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Prototype pollution vulnerability allows arbitrary code execution via crafted JSON.. Red Hat rates this critical (CVSS 9.8). Weakness: CWE-915. Affected package(s): rhdh/rhdh-hub-rhel9:1777903262, cluster-observability-operator/logging-console-plugin-pf4-rhel9:1782839279, cluster-observability-operator/troubleshooting-panel-console-plugin-pf6-rhel9:1782839996, cluster-observability-operator/logging-console-plugin-pf5-rhel9:1782840539, rhdh/rhdh-hub-rhel9:1776784286. Resolved in Red Hat advisory RHSA-2026:13826 — update the affected packages (`sudo dnf update`).
Denial of Service or Information Disclosure via format string injection. Red Hat rates this important (CVSS 9.1). Weakness: CWE-134. Affected package(s): ruby4.0, ruby:4.0. Resolved in Red Hat advisory RHSA-2026:20606 — update the affected packages (`sudo dnf update`).
Authorization bypass due to improper HTTP/2 path validation. Red Hat rates this important (CVSS 9.1). Weakness: CWE-551. Affected package(s): rhoai/odh-pipeline-runtime-pytorch-cuda-py312-rhel9:1780078429, odf4/odf-csi-addons-sidecar-rhel9:1781550957, rhtas/trillian-logserver-rhel9:1776243434, openshift4/ose-cluster-olm-rhel9-operator:1779787336, rhdh/rhdh-rhel9-operator:1774544220, openshift4/ose-csi-driver-nfs-rhel9:1778242571. Resolved in Red Hat advisory RHSA-2026:27893 — update the affected packages (`sudo dnf update`).
Unauthenticated Arbitrary File Write. Red Hat rates this critical (CVSS 9.1). Weakness: CWE-862. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Unauthenticated certificate issuance via SCEP Update Request. Red Hat rates this critical (CVSS 10). Weakness: CWE-306. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Heap buffer overflow in CSS. Red Hat rates this important (CVSS 9.6). Weakness: CWE-131. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Out of bounds memory access in WebGL. Red Hat rates this critical (CVSS 9.6). Weakness: CWE-787. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Integer overflow in ANGLE. Red Hat rates this important (CVSS 9.6). Weakness: CWE-190. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Out of bounds read and write in WebGL. Red Hat rates this critical (CVSS 9.6). Weakness: CWE-125. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Use after free in Extensions. Red Hat rates this important (CVSS 9.6). Weakness: CWE-825. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Use after free in Blink. Red Hat rates this important (CVSS 9.6). Weakness: CWE-1341. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Stack buffer overflow in WebRTC. Red Hat rates this important (CVSS 9.6). Weakness: CWE-120. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Heap buffer overflow in WebAudio. Red Hat rates this important (CVSS 9.6). Weakness: CWE-120. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Out of bounds read and write in WebAudio. Red Hat rates this important (CVSS 9.6). Weakness: CWE-125. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Use after free in Digital Credentials API. Red Hat rates this important (CVSS 9). Weakness: CWE-825. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Heap buffer overflow in WebRTC. Red Hat rates this important (CVSS 9.6). Weakness: CWE-131. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Authentication bypass via forged OpenID Connect ID Tokens. Red Hat rates this important (CVSS 9.1). Weakness: CWE-325. Affected package(s): ansible-automation-platform, quay/quay-rhel9:1775069491, quay/quay-rhel8:1775169155, quay/quay-rhel8:1775253092, quay/quay-rhel9:1775169226, quay/quay-rhel8:1775169219. Resolved in Red Hat advisory RHSA-2026:6309 — update the affected packages (`sudo dnf update`).
Authentication bypass due to JWK Header Injection vulnerability. Red Hat rates this important (CVSS 9.1). Weakness: CWE-347. Affected package(s): quay/quay-rhel9:1779204086, quay/quay-rhel8:1773971077, quay/quay-rhel8:1775512163, quay/quay-rhel8:1780891395. Resolved in Red Hat advisory RHSA-2026:7314 — update the affected packages (`sudo dnf update`).
Security bypass allows privilege escalation via podSpecPatch field. Red Hat rates this important (CVSS 9.9). Weakness: CWE-807. Affected package(s): rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9:1776740351, rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9:1776740640, rhoai/odh-ml-pipelines-api-server-v2-rhel9:1776740726, rhoai/odh-data-science-pipelines-argo-argoexec-rhel9:1776740558, rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9:1776740366, rhoai/odh-ml-pipelines-driver-rhel9:1776740379. Resolved in Red Hat advisory RHSA-2026:10184 — update the affected packages (`sudo dnf update`).