VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
Critical/high still unreviewed, or CISA KEV listed
bpf, sockmap: Fix af_unix null-ptr-deref in proto update. Red Hat rates this moderate (CVSS 7). Weakness: CWE-367.
bpf, arm64: Fix off-by-one in check_imm signed range check. Red Hat rates this moderate (CVSS 7). Weakness: CWE-839.
Fix potential out-of-bounds access in __ceph_x_decrypt(). Red Hat rates this moderate (CVSS 7). Weakness: CWE-125.
Drop all SCM attributes for SOCKMAP. Red Hat rates this moderate (CVSS 7). Weakness: CWE-772.
don't use simple_strtoul. Red Hat rates this moderate (CVSS 7). Weakness: CWE-170.
fix locking in hci_conn_request_evt() with HCI_PROTO_DEFER. Red Hat rates this moderate (CVSS 7). Weakness: CWE-364.
fix missing expect put in obj eval. Red Hat rates this moderate (CVSS 7). Weakness: CWE-772.
fix refcount saturation and potential UAF in qrtr_port_remove. Red Hat rates this moderate (CVSS 7). Weakness: CWE-911.
Fix potential use-after-free in get_timestamp. Red Hat rates this moderate (CVSS 7). Weakness: CWE-825.
Clear HCI_UART_PROTO_INIT on error. Red Hat rates this moderate (CVSS 7). Weakness: CWE-825.
fix nfs4_file access extra count in nfsd4_add_rdaccess_to_wrdeleg. Red Hat rates this moderate (CVSS 7). Weakness: CWE-911.
IKEv1 Denial of Service via RSA-SHA1 (PKCS#1 Version 1.5 Encrypted) authentication payload. Red Hat rates this moderate (CVSS 7.5). Weakness: CWE-347.
IKEv2 Denial of Service via RSA-SHA1 (PKCS#1 RSASSA-PKCS1-v1_5) authentication payload. Red Hat rates this moderate (CVSS 7.5). Weakness: CWE-347.
IKEv2 Denial of Service via malformed fragmentation. Red Hat rates this important (CVSS 7.5). Weakness: CWE-193.
Spring Statemachine's Kryo-based persistence backends (JPA, MongoDB, Redis and ZooKeeper) deserialise persisted state-machine contexts without enforcing a class allowlist (CWE-502, deserialisation of untrusted data), which can lead to remote code execution inside the application JVM. Affected versions: Spring Statemachine 4.0.0 through 4.0.1 Spring Statemachine 3.2.0 through 3.2.4
Denial of Service via deeply nested JSON processing. Red Hat rates this important (CVSS 7.5). Weakness: CWE-1050.
Arbitrary code execution via PolymorphicTypeValidator bypass. Red Hat rates this important (CVSS 8.1). Weakness: CWE-502. Red Hat lists fixing advisory RHSA-2026:36839 with package jackson-databind.
Security bypass allows arbitrary code execution. Red Hat rates this important (CVSS 8.1). Weakness: CWE-184. Red Hat lists fixing advisory RHSA-2026:36839 with package jackson-databind.
Remote client can inject or override identity headers via header normalization. Red Hat rates this important (CVSS 8.1). Weakness: CWE-444.
Buffer performs incorrect byte length calculations resulting in heap buffer under/overflow. Red Hat rates this important (CVSS 7.1). Weakness: CWE-131.