VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
1121 advisories across 32 monitored vendors.
Unauthorized access to resources via UMA permission ticket bypass. Red Hat rates this moderate (CVSS 4.6). Weakness: CWE-639. Affected package(s): rhbk/keycloak-operator-bundle:26.4.13, rhbk/keycloak-rhel9-operator:26.4, rhbk/keycloak-rhel9, rhbk/keycloak-rhel9:26.6, rhbk/keycloak-rhel9:26.4, rhbk/keycloak-operator-bundle:26.6.4. Resolved in Red Hat advisory RHSA-2026:30049 — update the affected packages (`sudo dnf update`).
Memory safety bugs fixed in Firefox ESR 140.11 and Firefox 151. Red Hat rates this moderate (CVSS 6.1). Weakness: CWE-787. Affected package(s): thunderbird, firefox. Resolved in Red Hat advisory RHSA-2026:26551 — update the affected packages (`sudo dnf update`).
Sandbox escape due to incorrect boundary conditions in the Widget: Win32 component. Red Hat rates this moderate (CVSS 6.1). Weakness: CWE-653. Affected package(s): thunderbird. Resolved in Red Hat advisory RHSA-2026:21381 — update the affected packages (`sudo dnf update`).
Information disclosure, sandbox escape in the Security: Process Sandboxing component. Red Hat rates this moderate (CVSS 6.1). Weakness: CWE-403. Affected package(s): thunderbird, firefox. Resolved in Red Hat advisory RHSA-2026:26551 — update the affected packages (`sudo dnf update`).
Privilege escalation in the Enterprise Policies component. Red Hat rates this moderate (CVSS 6.1). Weakness: CWE-266. Affected package(s): thunderbird, firefox. Resolved in Red Hat advisory RHSA-2026:26551 — update the affected packages (`sudo dnf update`).
Integer overflow in the Networking: JAR component. Red Hat rates this moderate (CVSS 6.1). Weakness: CWE-190. Affected package(s): thunderbird, firefox. Resolved in Red Hat advisory RHSA-2026:26551 — update the affected packages (`sudo dnf update`).
Privilege escalation in the DOM: Workers component. Red Hat rates this moderate (CVSS 6.1). Weakness: CWE-266. Affected package(s): thunderbird, firefox. Resolved in Red Hat advisory RHSA-2026:26551 — update the affected packages (`sudo dnf update`).
Incorrect boundary conditions, integer overflow in the Audio/Video component. Red Hat rates this moderate (CVSS 6.1). Weakness: CWE-190. Affected package(s): thunderbird, firefox. Resolved in Red Hat advisory RHSA-2026:26551 — update the affected packages (`sudo dnf update`).
Sandbox escape due to use-after-free in the Disability Access APIs component. Red Hat rates this moderate (CVSS 6.1). Weakness: CWE-825. Affected package(s): thunderbird, firefox. Resolved in Red Hat advisory RHSA-2026:26551 — update the affected packages (`sudo dnf update`).
Same-origin policy bypass in the Networking: HTTP component. Red Hat rates this moderate (CVSS 6.1). Affected package(s): thunderbird, firefox. Resolved in Red Hat advisory RHSA-2026:26551 — update the affected packages (`sudo dnf update`).
Information Disclosure via evaluate-scopes Admin API. Red Hat rates this moderate (CVSS 4.9). Weakness: CWE-639. Affected package(s): rhbk/keycloak-rhel9, rhbk/keycloak-operator-bundle:26.4.12, rhbk/keycloak-rhel9:26.4, rhbk/keycloak-rhel9-operator:26.4. Resolved in Red Hat advisory RHSA-2026:19596 — update the affected packages (`sudo dnf update`).
Information disclosure via broken access control in user lookup endpoint. Red Hat rates this moderate (CVSS 4.3). Weakness: CWE-1220. Affected package(s): rhbk/keycloak-rhel9, rhbk/keycloak-operator-bundle:26.4.12, rhbk/keycloak-rhel9:26.4, rhbk/keycloak-rhel9-operator:26.4. Resolved in Red Hat advisory RHSA-2026:19596 — update the affected packages (`sudo dnf update`).
Security flaw in org.keycloak/keycloak-services. Red Hat rates this moderate (CVSS 5.4). Weakness: CWE-303. Affected package(s): rhbk/keycloak-operator-bundle:26.4.13, rhbk/keycloak-rhel9-operator:26.4, rhbk/keycloak-rhel9-operator, rhbk/keycloak-rhel9:26.4, rhbk/keycloak-operator-bundle:26.6.3, rhbk/keycloak-rhel9:26.6. Resolved in Red Hat advisory RHSA-2026:30049 — update the affected packages (`sudo dnf update`).
Policy bypass during WebAuthn credential registration via client-side JavaScript manipulation. Red Hat rates this moderate (CVSS 4.3). Weakness: CWE-603. Affected package(s): rhbk/keycloak-operator-bundle:26.4.13, rhbk/keycloak-rhel9-operator:26.4, rhbk/keycloak-rhel9-operator, rhbk/keycloak-rhel9:26.4, rhbk/keycloak-operator-bundle:26.6.3, rhbk/keycloak-rhel9:26.6. Resolved in Red Hat advisory RHSA-2026:30049 — update the affected packages (`sudo dnf update`).
Information disclosure via OIDC token introspection endpoint audience bypass. Red Hat rates this moderate (CVSS 6.5). Affected package(s): rhbk/keycloak-rhel9, rhbk/keycloak-operator-bundle:26.4.12, rhbk/keycloak-rhel9:26.4, rhbk/keycloak-rhel9-operator:26.4. Resolved in Red Hat advisory RHSA-2026:19596 — update the affected packages (`sudo dnf update`).
Unauthorized account takeover via WebAuthn token replay. Red Hat rates this moderate (CVSS 6.8). Affected package(s): rhbk/keycloak-rhel9, rhbk/keycloak-operator-bundle:26.4.12, rhbk/keycloak-rhel9:26.4, rhbk/keycloak-rhel9-operator:26.4. Resolved in Red Hat advisory RHSA-2026:19596 — update the affected packages (`sudo dnf update`).
Out of bounds read in GPU. Red Hat rates this important (CVSS 6.5). Weakness: CWE-125. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
extend the writable skb range per key. Red Hat rates this important (CVSS 6.7). Weakness: CWE-787. Affected package(s): kernel, rhcos, kernel-rt, kpatch-patch. Resolved in Red Hat advisory RHSA-2026:27354 — update the affected packages (`sudo dnf update`).
Inappropriate implementation in ANGLE. Red Hat rates this important (CVSS 6.8). Weakness: CWE-346. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Use after free in Google Lens. Red Hat rates this important (CVSS 6.5). Weakness: CWE-825. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.