VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
1811 advisories across 32 monitored vendors.
Insufficient policy enforcement in Autofill. Red Hat rates this important (CVSS 8.8). No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Use after free in Chrome for iOS. Red Hat rates this important (CVSS 8.8). No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Arbitrary command execution via insufficient file argument sanitization. Red Hat rates this important (CVSS 8.3). Weakness: CWE-88. Affected package(s): cluster-observability-operator/logging-console-plugin-pf4-rhel9:1782839279, cluster-observability-operator/logging-console-plugin-pf5-rhel9:1782840539. Resolved in Red Hat advisory RHSA-2026:34342 — update the affected packages (`sudo dnf update`).
AI Tensor Engine for ROCm (AITER): Remote Code Execution via Unauthenticated Pickle Deserialization. Red Hat rates this important (CVSS 8.1). Weakness: CWE-502. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Stack buffer overflow allows local code execution or denial of service. Red Hat rates this moderate (CVSS 7.8). Weakness: CWE-121. Affected package(s): rrdtool. Resolved in Red Hat advisory RHSA-2026:34155 — update the affected packages (`sudo dnf update`).
Denial of Service via crafted input due to insufficient validation. Red Hat rates this important (CVSS 7.5). Weakness: CWE-606. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Integer overflow in Poppler SplashOutputDev::tilingPatternFill leads to heap buffer overflow via unchecked dimension multiplication. Red Hat rates this important (CVSS 7.8). Weakness: CWE-190. Affected package(s): rhaiis/model-opt-cuda-rhel9:1782352950, rhaiis/vllm-spyre-rhel9:1782352919, poppler, rhaiis/vllm-rocm-rhel9:1782353093, rhaiis/vllm-cuda-rhel9:1782352847, poppler-main. Resolved in Red Hat advisory RHSA-2026:29952 — update the affected packages (`sudo dnf update`).
Arbitrary Code Execution via crafted discovery URI bypass. Red Hat rates this important (CVSS 8.8). Weakness: CWE-502. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Unauthorized Broker Management via Incorrect Default Permissions. Red Hat rates this important (CVSS 8.1). Weakness: CWE-276. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Information disclosure via unauthenticated BrokerInfo command. Red Hat rates this important (CVSS 7.5). Weakness: CWE-306. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
CPU Exhaustion in Avro Decoder via Unbounded Block-Count Iteration. Red Hat rates this important (CVSS 7.5). Weakness: CWE-835. Affected package(s): rhacm2/acm-grafana-rhel9:1782383730. Resolved in Red Hat advisory RHSA-2026:30651 — update the affected packages (`sudo dnf update`).
Integer Overflow in Avro Decoder. Red Hat rates this important (CVSS 7.5). Weakness: CWE-190. Affected package(s): rhacm2/acm-grafana-rhel9:1782383730. Resolved in Red Hat advisory RHSA-2026:30651 — update the affected packages (`sudo dnf update`).
Out-of-bounds write in planar bitmap decoder allows arbitrary code execution. Red Hat rates this important (CVSS 8.8). Weakness: CWE-787. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Arbitrary code execution and denial of service via heap-buffer-overflow. Red Hat rates this important (CVSS 8.8). Weakness: CWE-131. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Arbitrary code execution or denial of service via heap use-after-free in RDPEAR NDR parser. Red Hat rates this important (CVSS 7.5). Weakness: CWE-825. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Arbitrary code execution via crafted RDPGFX PDUs. Red Hat rates this important (CVSS 8.8). Weakness: CWE-787. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
org.keycloak:keycloak-services: Keycloak: Authentication bypass via JWT algorithm confusion. Red Hat rates this important (CVSS 8.1). Weakness: CWE-347. Affected package(s): rhbk/keycloak-rhel9:26.6, rhbk/keycloak-operator-bundle:26.6.4, rhbk/keycloak-rhel9-operator:26.6. Resolved in Red Hat advisory RHSA-2026:30083 — update the affected packages (`sudo dnf update`).
Denial of Service due to unbounded memory allocation when parsing oversized baggage. Red Hat rates this important (CVSS 7.5). Weakness: CWE-770. Affected package(s): offline-knowledge-portal/rhokp-rhel9:1782239370. Resolved in Red Hat advisory RHSA-2026:28573 — update the affected packages (`sudo dnf update`).
Metrics exporter allows privilege escalation to PostgreSQL superuser and OS RCE. Red Hat rates this important (CVSS 8.8). Weakness: CWE-250. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Authentication bypass due to forged JSON Web Tokens. Red Hat rates this important (CVSS 7.4). Weakness: CWE-347. Affected package(s): ansible-automation-platform, quay/quay-rhel8:1782487717, python3.12-pyjwt, quay/quay-rhel8:1781878070, fence-agents, quay/quay-rhel8:1781937357. Resolved in Red Hat advisory RHSA-2026:35837 — update the affected packages (`sudo dnf update`).