VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
Advisories the vendor has revised
Kerberos pre-authentication bypass via unrecognized PA-DATA. Red Hat rates this important (CVSS 7.3). Weakness: CWE-358.
DisableTLS migration setting removes authentication, exposing unauthenticated virtqemud proxy on all interfaces. Red Hat rates this moderate (CVSS 8.5). Weakness: CWE-306.
Authentication bypass due to TLS hostname handling and unicode dot separator mismatch. Red Hat rates this important (CVSS 7.7). Weakness: CWE-289. Red Hat lists fixing advisory RHSA-2026:39246 with package nodejs20-main-20.20.2-1.hum1, nodejs22-main-22.23.1-1.hum1, nodejs24-main-24.18.0-0.1.hum1, nodejs26-main-26.4.0-1.2.hum1. Affected product named by the advisory: Red Hat Enterprise Linux 1.
Denial of Service via large input to subtle.encrypt(). Red Hat rates this important (CVSS 7.5). Weakness: CWE-770. Red Hat lists fixing advisory RHSA-2026:39246 with package nodejs20-main-20.20.2-1.hum1, nodejs22-main-22.23.1-1.hum1, nodejs24-main-24.18.0-0.1.hum1, nodejs26-main-26.4.0-1.2.hum1. Affected product named by the advisory: Red Hat Enterprise Linux 1.
Avoid NULL pointer dereference or refcount corruption. Red Hat rates this important (CVSS 7).
Clean up DMABUFs before disabling function. Red Hat rates this important (CVSS 7). Weakness: CWE-826.
Fix drm_dev_put called before stream disable in close. Red Hat rates this moderate (CVSS 7). Weakness: CWE-825.
fix off-by-one in dlm_match_regions() region comparison. Red Hat rates this important (CVSS 7.1). Weakness: CWE-125.
`nx graph` dev server permissive CORS policy. Red Hat rates this moderate (CVSS 5.9). Weakness: CWE-346.
OAuth2 filter late async token completion after stream teardown (UAF / crash risk). Red Hat rates this moderate (CVSS 5.9). Weakness: CWE-416.
ext_authz Use-After-Free during Stream Teardown with Per-Route Overrides. Red Hat rates this moderate (CVSS 5.9). Weakness: CWE-416.
PROXY Protocol v2 header generator emits "skipped" TLVs, causing 65 KB attacker-controlled spillover into the upstream application stream. Red Hat rates this moderate (CVSS 4.8). Weakness: CWE-130.
Envoy Heap Buffer Overflow in TcpStatsdSink. Red Hat rates this moderate (CVSS 5.9). Weakness: CWE-787.
Denial of Service via Connect protocol request. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-476.
Null pointer deref in internal redirects. Red Hat rates this moderate (CVSS 5.9). Weakness: CWE-476.
Information disclosure via malicious certificate with NUL byte in DNS Subject Alternative Name (SAN). Red Hat rates this moderate (CVSS 4.4). Weakness: CWE-170.
Host filesystem modification via malicious container image WORKDIR symlink. Red Hat rates this moderate (CVSS 5.8). Weakness: CWE-59. Red Hat lists fixing advisory RHSA-2026:29954 with package podman-main-6.0.0-1.hum1.
Denial of Service via crafted document archives. Red Hat rates this moderate (CVSS 5.5). Weakness: CWE-611.
Denial of Service via deeply nested ASN.1 structure. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-776.
Cross-site Scripting via unsanitized Mermaid output in HTML exports. Red Hat rates this moderate (CVSS 5.4). Weakness: CWE-79.