VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
1121 advisories across 32 monitored vendors.
Use-after-free vulnerability due to improper handler call depth tracking. Red Hat rates this moderate (CVSS 4.9). Weakness: CWE-911. Affected package(s): expat-main. Resolved in Red Hat advisory RHSA-2026:30647 — update the affected packages (`sudo dnf update`).
Golang net/textproto: Misleading error messages via input injection. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-117. Affected package(s): rhosdt/tempo-gateway-rhel9:1782501200, rhosdt/tempo-rhel9-operator:1782501195, golang1, golang, rhosdt/tempo-rhel9:1782501196, rhosdt/tempo-jaeger-query-rhel9:1782498923. Resolved in Red Hat advisory RHSA-2026:23262 — update the affected packages (`sudo dnf update`).
Cross-Site Scripting vulnerability via untrusted React Server Component redirects. Red Hat rates this moderate (CVSS 4.2). Weakness: CWE-79. Affected package(s): rhoai/odh-mod-arch-automl-rhel9:1782722421, rhoai/odh-mod-arch-mlflow-rhel9:1782132932, rhoai/odh-mod-arch-autorag-rhel9:1782722485, rhoai/odh-mod-arch-maas-rhel9:1782722695, rhoai/odh-mod-arch-model-registry-rhel9:1782722726, rhoai/odh-mod-arch-eval-hub-rhel9:1782722438. Resolved in Red Hat advisory RHSA-2026:34456 — update the affected packages (`sudo dnf update`).
Processing maliciously crafted web content may prevent Content Security Policy from being enforced. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-20. Affected package(s): webkit2gtk3, webkitgtk4. Resolved in Red Hat advisory RHSA-2026:25918 — update the affected packages (`sudo dnf update`).
An app may be able to access sensitive user data. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-200. Affected package(s): webkit2gtk3, webkitgtk4. Resolved in Red Hat advisory RHSA-2026:25918 — update the affected packages (`sudo dnf update`).
Processing maliciously crafted web content may prevent Content Security Policy from being enforced. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-693. Affected package(s): webkit2gtk3, webkitgtk4. Resolved in Red Hat advisory RHSA-2026:25918 — update the affected packages (`sudo dnf update`).
Inappropriate implementation in Accessibility. Red Hat rates this important (CVSS 4.3). Weakness: CWE-1021. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Uninitialized Use in Dawn. Red Hat rates this important (CVSS 6.5). Weakness: CWE-824. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Out of bounds read in ANGLE. Red Hat rates this important (CVSS 6.5). Weakness: CWE-125. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Insufficient validation of untrusted input in Codecs. Red Hat rates this important (CVSS 6.8). Weakness: CWE-346. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Uninitialized Use in Skia. Red Hat rates this important (CVSS 6.8). Weakness: CWE-824. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Insufficient validation of untrusted input in Input. Red Hat rates this important (CVSS 6.8). Weakness: CWE-501. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
out-of-bounds read/write in GLX ChangeDrawableAttributes. Red Hat rates this moderate (CVSS 5.5). Weakness: CWE-125. Affected package(s): xorg-x11-server, xorg-x11-server-Xwayland, tigervnc. Resolved in Red Hat advisory RHSA-2026:26562 — update the affected packages (`sudo dnf update`).
use-after-free information disclosure in CreateSaverWindow(). Red Hat rates this moderate (CVSS 5.5). Weakness: CWE-416. Affected package(s): xorg-x11-server, xorg-x11-server-Xwayland, tigervnc. Resolved in Red Hat advisory RHSA-2026:26562 — update the affected packages (`sudo dnf update`).
Denial of Service due to excessive memory allocation when expanding large numeric ranges. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-770. Affected package(s): nodejs20-main, rust-main, llvm21-main, nodejs26-main, nodejs25-main, yarnpkg-main. Resolved in Red Hat advisory RHSA-2026:22380 — update the affected packages (`sudo dnf update`).
Denial of Service in bzip2recover via a specially crafted file. Red Hat rates this moderate (CVSS 5). Weakness: CWE-193. Affected package(s): bzip2-main. Resolved in Red Hat advisory RHSA-2026:30268 — update the affected packages (`sudo dnf update`).
CSV Injection vulnerability allows arbitrary code execution via `preventCsvInjection` bypass.. Red Hat rates this moderate (CVSS 6.1). Weakness: CWE-1236. Affected package(s): rhdh/rhdh-hub-rhel9:1782761244. Resolved in Red Hat advisory RHSA-2026:33574 — update the affected packages (`sudo dnf update`).
Denial of Service via malformed LDAP password policy response. Red Hat rates this moderate (CVSS 4.9). Weakness: CWE-1284. Affected package(s): rhbk/keycloak-operator-bundle:26.4.13, rhbk/keycloak-rhel9-operator:26.4, rhbk/keycloak-rhel9, rhbk/keycloak-rhel9:26.4, rhbk/keycloak-operator-bundle:26.6.3, rhbk/keycloak-rhel9:26.6. Resolved in Red Hat advisory RHSA-2026:30049 — update the affected packages (`sudo dnf update`).
Unauthorized account access via replayed refresh tokens after cluster restart. Red Hat rates this moderate (CVSS 6.8). Weakness: CWE-613. Affected package(s): rhbk/keycloak-operator-bundle:26.4.13, rhbk/keycloak-rhel9-operator:26.4, rhbk/keycloak-rhel9, rhbk/keycloak-rhel9:26.4, rhbk/keycloak-operator-bundle:26.6.3, rhbk/keycloak-rhel9:26.6. Resolved in Red Hat advisory RHSA-2026:30049 — update the affected packages (`sudo dnf update`).
Denial of Service via malformed Authorization header. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-125. Affected package(s): rhbk/keycloak-operator-bundle:26.4.13, rhbk/keycloak-rhel9-operator:26.4, rhbk/keycloak-rhel9, rhbk/keycloak-rhel9:26.4, rhbk/keycloak-operator-bundle:26.6.3, rhbk/keycloak-rhel9:26.6. Resolved in Red Hat advisory RHSA-2026:30049 — update the affected packages (`sudo dnf update`).