VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
1818 advisories across 32 monitored vendors.
Fix inconsistent plane dimension calculation in drm_gem_fb_init_with_funcs(). Red Hat rates this moderate (CVSS 7.1). Weakness: CWE-190. Affected package(s): kernel. Resolved in Red Hat advisory RHSA-2026:34911 — update the affected packages (`sudo dnf update`).
use safe list iteration in radar detect work. Red Hat rates this important (CVSS 7). Weakness: CWE-825. Affected package(s): kernel. Resolved in Red Hat advisory RHSA-2026:27288 — update the affected packages (`sudo dnf update`).
Privilege escalation via chained application credential impersonation and trust misuse. Red Hat rates this important (CVSS 8.4). Weakness: CWE-266. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Unauthorized access and privilege escalation via arbitrary policy attribute injection. Red Hat rates this important (CVSS 8.3). Weakness: CWE-639. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
validate dacloffset before building DACL pointers. Red Hat rates this important (CVSS 7.5). Weakness: CWE-787. Affected package(s): kernel, kernel-rt. Resolved in Red Hat advisory RHSA-2026:21745 — update the affected packages (`sudo dnf update`).
fix race between ICReq handling and queue teardown. Red Hat rates this moderate (CVSS 7.1). Weakness: CWE-1341. Affected package(s): kernel, kernel-rt. Resolved in Red Hat advisory RHSA-2026:27354 — update the affected packages (`sudo dnf update`).
Command injection via NetworkManager connection profile name. Red Hat rates this important (CVSS 7.8). Weakness: CWE-78. Affected package(s): rhdh/rhdh-hub-rhel9:1782761244. Resolved in Red Hat advisory RHSA-2026:33574 — update the affected packages (`sudo dnf update`).
Path traversal via malicious entry point name in pip wheel installation allows arbitrary file overwrite. Red Hat rates this important (CVSS 8). Weakness: CWE-22. Affected package(s): rhoai/odh-th06-cuda130-torch210-py312-rhel9:1782136276, rhoai/odh-training-rocm62-torch25-py311-rhel9:1782132236, rhoai/odh-th06-cpu-torch210-py312-rhel9:1782135464, rhoai/odh-training-cuda128-torch29-py312-rhel9:1782132240, rhai/base-image-rocm-rhel9:1782914721, rhai/base-image-spyre-rhel9:1782916020. Resolved in Red Hat advisory RHSA-2026:34748 — update the affected packages (`sudo dnf update`).
Erlang OTP public_key: Certificate validation bypass allows hostname spoofing. Red Hat rates this important (CVSS 7.4). Weakness: CWE-295. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Erlang OTP public_key: Certificate chain forgery via improper trust chain validation. Red Hat rates this important (CVSS 8). Weakness: CWE-295. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Missing access check on reparse point operations. Red Hat rates this important (CVSS 7.1). Weakness: CWE-284. Affected package(s): samba, rhcos. Resolved in Red Hat advisory RHSA-2026:29863 — update the affected packages (`sudo dnf update`).
group policy certificate enrollment uses http:// without validation. Red Hat rates this important (CVSS 8). Weakness: CWE-345. Affected package(s): samba, rhcos. Resolved in Red Hat advisory RHSA-2026:29863 — update the affected packages (`sudo dnf update`).
HTTP::Daemon: Arbitrary code execution via OS command injection in send_file(). Red Hat rates this important (CVSS 8.1). Weakness: CWE-78. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Arbitrary code execution via attacker-controlled output glob. Red Hat rates this important (CVSS 7.8). Weakness: CWE-94. Affected package(s): perl:5.32, perl-IO-Compress. Resolved in Red Hat advisory RHSA-2026:30115 — update the affected packages (`sudo dnf update`).
don't zero the entire extent if EXT4_EXT_DATA_PARTIAL_VALID1. Red Hat rates this important (CVSS 7). Weakness: CWE-909. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Use after free in WebAppInstalls. Red Hat rates this important (CVSS 8.8). Weakness: CWE-825. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Inappropriate implementation in V8. Red Hat rates this important (CVSS 8.8). Weakness: CWE-94. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Inappropriate implementation in USB. Red Hat rates this important (CVSS 8.8). Weakness: CWE-94. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Use after free in Skia. Red Hat rates this important (CVSS 8.8). Weakness: CWE-825. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Out of bounds write in Dawn. Red Hat rates this important (CVSS 8.8). Weakness: CWE-787. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.