VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
3464 advisories across 32 monitored vendors.
By sending a deeply nested ASN1 structure to a Apache Kerby client or service, it's possible to trigger a StackOverFlow Exception which can lead to denial of service issues. Users are recommended to upgrade to version 2.1.2, which fixes this issue. A remote attacker could send a deeply nested Abstract Syntax Notation One (ASN.1) structure to an Apache Kerby client or service, triggering a stack overflow exception. This could lead to a denial of service (DoS) condition, making the service unavailable to legitimate users. This Moderate flaw in Apache Kerby, as used in several Red Hat products, allows a remote attacker to trigger a denial of service. By sending a specially crafted, deeply nested ASN.1 structure to a vulnerable client or service, an attacker can cause a stack overflow, leading to service unavailability. This impact is considered Moderate due to the potential for disruption of critical services. Red Hat severity: Moderate — CVSS 6.5 (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H). Weakness: CWE-776. Affected Red Hat products: Red Hat AMQ Clients; Red Hat Build of Keycloak; Red Hat Data Grid 8; Red Hat Fuse 7; Red Hat JBoss Enterprise Application Platform Expansion Pack; Red Hat OpenShift AI (RHOAI); Red Hat Single Sign-On 7; streams for Apache Kafka 2; streams for Apache Kafka 3. Red Hat does not currently list a fixing RHSA for this CVE.
Cross-site Scripting via unsanitized Mermaid output in HTML exports. Red Hat rates this moderate (CVSS 5.4). Weakness: CWE-79.
Silent authority rebinding due to embedded-nul hostnames in TLS handling. Red Hat rates this moderate (CVSS 5.6). Weakness: CWE-170. Red Hat lists fixing advisory RHSA-2026:35272 with package nodejs20-main-20.20.2-1.hum1, nodejs:24-9080020260626074955.rhel9, nodejs:22-9080020260626075442.rhel9, nodejs25-main-25.9.0-1.1.hum1. Affected product named by the advisory: Red Hat Enterprise Linux 1.
Information disclosure of proxy credentials via proxy tunnel error handling. Red Hat rates this moderate (CVSS 5.9). Weakness: CWE-209. Red Hat lists fixing advisory RHSA-2026:39246 with package nodejs20-main-20.20.2-1.hum1, nodejs22-main-22.23.1-1.hum1, nodejs24-main-24.18.0-0.1.hum1, nodejs26-main-26.4.0-1.2.hum1. Affected product named by the advisory: Red Hat Enterprise Linux 1.
Denial of Service via unlimited HTTP/2 ORIGIN frames. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-770. Red Hat lists fixing advisory RHSA-2026:35272 with package nodejs20-main-20.20.2-1.hum1, nodejs:24-9080020260626074955.rhel9, nodejs:22-9080020260626075442.rhel9, nodejs25-main-25.9.0-1.1.hum1. Affected product named by the advisory: Red Hat Enterprise Linux 1.
Trust-policy bypass due to hostname matching inconsistency. Red Hat rates this moderate (CVSS 4.2). Weakness: CWE-289. Red Hat lists fixing advisory RHSA-2026:35272 with package nodejs20-main-20.20.2-1.hum1, nodejs:24-9080020260626074955.rhel9, nodejs:22-9080020260626075442.rhel9, nodejs25-main-25.9.0-1.1.hum1. Affected product named by the advisory: Red Hat Enterprise Linux 1.
Certification validation bypass in TLS host verification. Red Hat rates this moderate (CVSS 4.3). Weakness: CWE-295. Red Hat lists fixing advisory RHSA-2026:35272 with package nodejs20-main-20.20.2-1.hum1, nodejs:24-9080020260626074955.rhel9, nodejs:22-9080020260626075442.rhel9, nodejs25-main-25.9.0-1.1.hum1. Affected product named by the advisory: Red Hat Enterprise Linux 1.
Multus default-network annotation injection via unvalidated tenant networkName when ExternalNetResourceInjection is enabled. Red Hat rates this moderate (CVSS 4.9). Weakness: CWE-20.
remove redundant netdev_lock_ops() from conduit ethtool ops. Red Hat rates this moderate (CVSS 5.5). Weakness: CWE-764.
fix AMDGPU_INFO_READ_MMR_REG. Red Hat rates this moderate (CVSS 5.5). Weakness: CWE-833.
Fix NULL deref in ras_core_get_utc_second_timestamp(). Red Hat rates this low (CVSS 5.5).
Check whether the config array is allocated before destroying it. Red Hat rates this low (CVSS 5.5). Weakness: CWE-909.
Fix Oops at unbind. Red Hat rates this low (CVSS 5.5).
cap busy_poll_to 10 msec. Red Hat rates this moderate (CVSS 5.5). Weakness: CWE-835.
Put CPU offline callback in ONLINE section to allow failure. Red Hat rates this low (CVSS 5.5).
fix NULL pointer dereference in ice_reset_all_vfs(). Red Hat rates this low (CVSS 5.5). Weakness: CWE-476.
Bounds-check devid in __rlookup_amd_iommu(). Red Hat rates this moderate (CVSS 5.5). Weakness: CWE-1285.
Wrap DCN32 phantom-plane allocation in DC_RUN_WITH_PREEMPTION_ENABLED. Red Hat rates this low (CVSS 5.5). Weakness: CWE-663.
Place upper limit on station AID. Red Hat rates this moderate (CVSS 5.5). Weakness: CWE-1284.
prevent NULL pointer dereference in mt7925_tx_check_aggr(). Red Hat rates this moderate (CVSS 5.5). Weakness: CWE-476.