VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
1801 advisories across 32 monitored vendors.
Denial of Service due to memory exhaustion in HTTP/3 codec. Red Hat rates this important (CVSS 7.5). Weakness: CWE-770. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Netty HAProxy PROXY protocol v2 codec: Denial of Service via memory leak from crafted PROXY protocol headers. Red Hat rates this important (CVSS 7.5). Weakness: CWE-1286. Affected package(s): netty-codec-haproxy. Resolved in Red Hat advisory RHSA-2026:26586 — update the affected packages (`sudo dnf update`).
Denial of Service due to resource leak. Red Hat rates this important (CVSS 7.5). Weakness: CWE-772. Affected package(s): netty-codec-http2. Resolved in Red Hat advisory RHSA-2026:26586 — update the affected packages (`sudo dnf update`).
Netty's Lack of Lifecycle Cleanup Leads to Pooled ByteBuf Leak in RedisArrayAggregator. Red Hat rates this important (CVSS 7.5). Weakness: CWE-772. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Netty has Insufficient Bailiwick Validation for NS Records. Red Hat rates this important (CVSS 8.7). Weakness: CWE-346. Affected package(s): netty-resolver-dns. Resolved in Red Hat advisory RHSA-2026:26586 — update the affected packages (`sudo dnf update`).
Denial of Service due to unbounded memory growth from SctpMessage fragments. Red Hat rates this important (CVSS 7.5). Weakness: CWE-770. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Information disclosure and data manipulation due to improper CNAME record validation. Red Hat rates this important (CVSS 8.7). Weakness: CWE-346. Affected package(s): netty-resolver-dns. Resolved in Red Hat advisory RHSA-2026:26586 — update the affected packages (`sudo dnf update`).
NodeVM observability builtins leak host process and HTTP request data. Red Hat rates this moderate (CVSS 8.6). Weakness: CWE-653. Affected package(s): rhdh/rhdh-hub-rhel9:1782761244. Resolved in Red Hat advisory RHSA-2026:33574 — update the affected packages (`sudo dnf update`).
Sandbox escape via internal HTTP built-ins leading to network restriction bypass. Red Hat rates this moderate (CVSS 8.6). Weakness: CWE-1100. Affected package(s): rhdh/rhdh-hub-rhel9:1782761244. Resolved in Red Hat advisory RHSA-2026:33574 — update the affected packages (`sudo dnf update`).
Sandbox escape allows arbitrary code execution on the host system. Red Hat rates this moderate (CVSS 8.7). Weakness: CWE-1100. Affected package(s): rhdh/rhdh-hub-rhel9:1782761244. Resolved in Red Hat advisory RHSA-2026:33574 — update the affected packages (`sudo dnf update`).
Integrity bypass via incorrect property assignment leading to potential arbitrary code execution. Red Hat rates this moderate (CVSS 8.6). Weakness: CWE-915. Affected package(s): rhdh/rhdh-hub-rhel9:1782761244. Resolved in Red Hat advisory RHSA-2026:33574 — update the affected packages (`sudo dnf update`).
Denial of Service due to eager buffer allocation in TLS handshake. Red Hat rates this important (CVSS 7.5). Weakness: CWE-770. Affected package(s): netty-handler, offline-knowledge-portal/rhokp-rhel9:1782239370. Resolved in Red Hat advisory RHSA-2026:26586 — update the affected packages (`sudo dnf update`).
Denial of Service amplification via improper QUIC token validation. Red Hat rates this important (CVSS 7.5). Weakness: CWE-346. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Denial of Service via malformed HAProxy message. Red Hat rates this important (CVSS 7.5). Weakness: CWE-805. Affected package(s): netty-codec-haproxy. Resolved in Red Hat advisory RHSA-2026:26586 — update the affected packages (`sudo dnf update`).
Arbitrary code execution via JNDI Injection. Red Hat rates this important (CVSS 8.1). Weakness: CWE-502. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Arbitrary code execution via untrusted JMS configuration. Red Hat rates this important (CVSS 8.8). Weakness: CWE-502. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Unauthorized access due to logic error in OAuthRequestFilter. Red Hat rates this important (CVSS 7.4). Weakness: CWE-358. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Token Confusion/Routing attacks due to improper validation of JWT audience claims. Red Hat rates this important (CVSS 8.1). Weakness: CWE-303. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Information disclosure via out-of-band external entity resolution due to missing JAXP hardening. Red Hat rates this important (CVSS 7.5). Weakness: CWE-611. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Heap buffer overflow in WavPack decoder via integer overflow. Red Hat rates this important (CVSS 7.6). Weakness: CWE-190. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.