VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
1121 advisories across 32 monitored vendors.
Object corruption in Compositing. Red Hat rates this important (CVSS 6.8). Weakness: CWE-386. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Out of bounds read in UI. Red Hat rates this important (CVSS 6.8). Weakness: CWE-125. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Out of bounds read in FileSystem. Red Hat rates this important (CVSS 6.5). Weakness: CWE-125. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Insufficient validation of untrusted input in GPU. Red Hat rates this important (CVSS 5.9). Weakness: CWE-1173. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Out of bounds read in Media. Red Hat rates this important (CVSS 4.4). Weakness: CWE-125. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Insufficient validation of untrusted input in DataTransfer. Red Hat rates this critical (CVSS 6.5). Weakness: CWE-1286. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Information disclosure via buffer over-read in pg_restore_attribute_stats(). Red Hat rates this moderate (CVSS 4.3). Weakness: CWE-805. Affected package(s): postgresql17-main, postgresql18-main. Resolved in Red Hat advisory RHSA-2026:22878 — update the affected packages (`sudo dnf update`).
Operating system account hijack via symlink following in pg_basebackup and pg_rewind. Red Hat rates this moderate (CVSS 6.7). Weakness: CWE-59. Affected package(s): postgresql, postgresql:12, postgresql:18, postgresql:15, libpq, postgresql16. Resolved in Red Hat advisory RHSA-2026:26561 — update the affected packages (`sudo dnf update`).
Information disclosure via externally-controlled format string in timeofday() function. Red Hat rates this moderate (CVSS 4.3). Weakness: CWE-134. Affected package(s): postgresql18-main. Resolved in Red Hat advisory RHSA-2026:22878 — update the affected packages (`sudo dnf update`).
PostgreSQL CREATE TYPE does not check multirange schema CREATE privilege. Red Hat rates this moderate (CVSS 5.4). Weakness: CWE-862. Affected package(s): postgresql17-main, postgresql18-main. Resolved in Red Hat advisory RHSA-2026:22878 — update the affected packages (`sudo dnf update`).
Information disclosure via cross-origin redirects forwarding sensitive headers. Red Hat rates this moderate (CVSS 5.9). Weakness: CWE-201. Affected package(s): rhaiis/model-opt-cuda-rhel9:1782352950, rhaiis/vllm-spyre-rhel9:1782352919, satellite/iop-yuptoo-rhel9:1782380482, satellite/iop-insights-engine-rhel9:1782448455, satellite/iop-host-inventory-rhel9:1780414237, satellite/iop-puptoo-rhel9:1779792651. Resolved in Red Hat advisory RHSA-2026:26221 — update the affected packages (`sudo dnf update`).
Authorization bypass via IP spoofing in HTTP/3 QUIC module. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-290. Affected package(s): nginx-main. Resolved in Red Hat advisory RHSA-2026:20351 — update the affected packages (`sudo dnf update`).
Information disclosure via incorrect Proxy-Authorization header reuse. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-201. Affected package(s): curl-main. Resolved in Red Hat advisory RHSA-2026:19106 — update the affected packages (`sudo dnf update`).
Improper Authorization allows security bypass. Red Hat rates this moderate (CVSS 5.4). Weakness: CWE-551. Affected package(s): tomcat11-main. Resolved in Red Hat advisory RHSA-2026:13745 — update the affected packages (`sudo dnf update`).
Authentication bypass via digest authentication. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-303. Affected package(s): tomcat10-main, tomcat11-main, devspaces/server-rhel9:1780694994. Resolved in Red Hat advisory RHSA-2026:25123 — update the affected packages (`sudo dnf update`).
Information disclosure due to HTTP Authentication Header exposure during WebSocket authentication.. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-201. Affected package(s): tomcat10-main, tomcat11-main. Resolved in Red Hat advisory RHSA-2026:13745 — update the affected packages (`sudo dnf update`).
stack overflow in recursive object merge. Red Hat rates this moderate (CVSS 5.5). Weakness: CWE-674. Affected package(s): jq-main. Resolved in Red Hat advisory RHSA-2026:29986 — update the affected packages (`sudo dnf update`).
embedded NUL in jq import paths causes local redaction-policy bypass and preserves sensitive fields in published artifacts. Red Hat rates this moderate (CVSS 4.4). Weakness: CWE-20. Affected package(s): jq-main. Resolved in Red Hat advisory RHSA-2026:29986 — update the affected packages (`sudo dnf update`).
Arbitrary Code Execution or Denial of Service via Signed Integer Overflow. Red Hat rates this moderate (CVSS 6.2). Weakness: CWE-190. Affected package(s): jq-main. Resolved in Red Hat advisory RHSA-2026:29986 — update the affected packages (`sudo dnf update`).
embedded NUL truncates top-level jq programs loaded with -f. Red Hat rates this moderate (CVSS 5.5). Weakness: CWE-158. Affected package(s): jq-main. Resolved in Red Hat advisory RHSA-2026:29986 — update the affected packages (`sudo dnf update`).