VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
Critical/high still unreviewed, or CISA KEV listed
Use after free in File Input. Red Hat rates this important (CVSS 8.8). Weakness: CWE-825. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Use after free in Bluetooth. Red Hat rates this important (CVSS 8.8). Weakness: CWE-1341. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Use after free in Network. Red Hat rates this important (CVSS 8.8). Weakness: CWE-825. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Race in Network. Red Hat rates this important (CVSS 7.3). Weakness: CWE-368. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Object lifecycle issue in SVG. Red Hat rates this important (CVSS 8.8). Weakness: CWE-823. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Insufficient validation of untrusted input in Passwords. Red Hat rates this important (CVSS 8.7). Weakness: CWE-1100. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Inappropriate implementation in Plugins. Red Hat rates this important (CVSS 8.7). Weakness: CWE-653. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Use after free in ServiceWorker. Red Hat rates this important (CVSS 8.2). Weakness: CWE-825. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Use after free in Compositing. Red Hat rates this important (CVSS 8.8). Weakness: CWE-825. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Unprotected DELETE Endpoint Wipes All Tenant Data. Red Hat rates this important (CVSS 9.1). Weakness: CWE-306. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
GetSourceDownloadURL Missing Organization Check. Red Hat rates this important (CVSS 9.6). Weakness: CWE-639. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Agent API Ignores JWT source_id Claim. Red Hat rates this important (CVSS 9.6). Weakness: CWE-639. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Second-Order SQL Injection via RVTools Upload. Red Hat rates this important (CVSS 9.6). Weakness: CWE-89. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
TLS Verification Disabled on All vCenter Connections. Red Hat rates this important (CVSS 9.3). Weakness: CWE-295. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
VDDK Tarball Chained-Symlink Arbitrary File Write. Red Hat rates this important (CVSS 9.6). Weakness: CWE-59. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Type confusion vulnerability in Shared Pointer Handler. Red Hat rates this important (CVSS 7.3). Weakness: CWE-843. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Stored XSS via javascript: URL in Agent Credential Link. Red Hat rates this important (CVSS 7.3). Weakness: CWE-79. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
argument injection in ansible-galaxy role install leads to arbitrary code execution. Red Hat rates this important (CVSS 7.8). Weakness: CWE-88. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Arbitrary file write leading to remote code execution via crafted ZIP archive (Zip Slip). Red Hat rates this important (CVSS 7.5). Weakness: CWE-22. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Moby/Docker Engine: Arbitrary Code Execution via malicious container image and compressed archive upload. Red Hat rates this important (CVSS 7.5). Weakness: CWE-427. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.