VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
Critical/high still unreviewed, or CISA KEV listed
Out of bounds write in GPU. Red Hat rates this important (CVSS 9.6). Weakness: CWE-653. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Insufficient validation of untrusted input in Codecs. Red Hat rates this important (CVSS 9.6). Weakness: CWE-1286. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Insufficient validation of untrusted input in InterestGroups. Red Hat rates this important (CVSS 9). Weakness: CWE-1289. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Insufficient validation of untrusted input in DevTools. Red Hat rates this important (CVSS 9.3). Weakness: CWE-79. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Use after free in Network. Red Hat rates this important (CVSS 9). Weakness: CWE-825. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Out of bounds memory access in Skia. Red Hat rates this important (CVSS 9.6). Weakness: CWE-787. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Use after free in Chrome for iOS. Red Hat rates this important (CVSS 9.6). No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
golang crypto/x509: Denial of Service via excessive processing of DNS SAN entries. Red Hat rates this important (CVSS 7.5). Weakness: CWE-606. Affected package(s): golang-github-openprinting-ipp-usb, opentelemetry-collector, rhdh/rhdh-rhel9-operator:1782767215. Resolved in Red Hat advisory RHSA-2026:33574 — update the affected packages (`sudo dnf update`).
Arbitrary code execution via untrusted input to CookieJar.load(). Red Hat rates this important (CVSS 7.2). Weakness: CWE-502. Affected package(s): rhoai/odh-training-rocm62-torch25-py311-rhel9:1782132236, rhoai/odh-training-cuda128-torch29-py312-rhel9:1782132240, rhoai/odh-training-cuda121-torch24-py311-rhel9:1780078807, rhoai/odh-training-cuda121-torch24-py311-rhel9:1782132167, rhoai/odh-training-rocm64-torch29-py312-rhel9:1782132297, rhoai/odh-training-cuda128-torch28-py312-rhel9:1782132237. Resolved in Red Hat advisory RHSA-2026:24977 — update the affected packages (`sudo dnf update`).
JIT miscompilation in the JavaScript Engine: JIT component. Red Hat rates this important (CVSS 7.5). Weakness: CWE-733. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Incorrect boundary conditions in the Graphics: Text component. Red Hat rates this important (CVSS 7.5). Weakness: CWE-131. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Remote Code Execution Through HAProxy Configuration Injection. Red Hat rates this important (CVSS 8.8). Weakness: CWE-15. Affected package(s): openshift4/ose-cluster-ingress-rhel9-operator:1780988280, openshift4/ose-cluster-ingress-rhel9-operator:1780962617, openshift4/ose-cluster-ingress-rhel9-operator:1780444348, openshift4/ose-cluster-ingress-rhel9-operator:1780990977, openshift4/ose-cluster-ingress-operator:1781123014, openshift4/ose-cluster-ingress-rhel9-operator:1780043338. Resolved in Red Hat advisory RHSA-2026:28893 — update the affected packages (`sudo dnf update`).
Processing maliciously crafted web content may lead to an unexpected Safari crash. Red Hat rates this important (CVSS 8.8). Weakness: CWE-416. Affected package(s): webkit2gtk3, webkitgtk4. Resolved in Red Hat advisory RHSA-2026:25918 — update the affected packages (`sudo dnf update`).
Processing maliciously crafted web content may lead to an unexpected process crash. Red Hat rates this important (CVSS 8.8). Weakness: CWE-120. Affected package(s): webkit2gtk3, webkitgtk4. Resolved in Red Hat advisory RHSA-2026:25918 — update the affected packages (`sudo dnf update`).
Processing maliciously crafted web content may lead to an unexpected process crash. Red Hat rates this important (CVSS 8.8). Weakness: CWE-416. Affected package(s): webkit2gtk3, webkitgtk4. Resolved in Red Hat advisory RHSA-2026:25918 — update the affected packages (`sudo dnf update`).
Processing maliciously crafted web content may lead to an unexpected Safari crash. Red Hat rates this important (CVSS 8.8). Weakness: CWE-120. Affected package(s): webkit2gtk3, webkitgtk4. Resolved in Red Hat advisory RHSA-2026:25918 — update the affected packages (`sudo dnf update`).
Use after free in Cast. Red Hat rates this important (CVSS 8.8). Weakness: CWE-364. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Out of bounds read in Skia. Red Hat rates this important (CVSS 7.4). Weakness: CWE-125. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Use after free in WebRTC. Red Hat rates this important (CVSS 8.8). Weakness: CWE-825. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Out of bounds read in ANGLE. Red Hat rates this important (CVSS 8.2). Weakness: CWE-125. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.