VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
1794 advisories across 32 monitored vendors.
Authorization bypass in V1 collection-level endpoints. Red Hat rates this important (CVSS 8.1). Weakness: CWE-551. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Denial of Service via malicious Redis array header. Red Hat rates this important (CVSS 7.5). Weakness: CWE-770. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Improper trust manager handling leads to hostname verification bypass. Red Hat rates this important (CVSS 7.5). Weakness: CWE-347. Affected package(s): netty-handler, offline-knowledge-portal/rhokp-rhel9:1782239370. Resolved in Red Hat advisory RHSA-2026:26586 — update the affected packages (`sudo dnf update`).
Unauthorized data manipulation due to improper authorization validation. Red Hat rates this important (CVSS 8.1). Weakness: CWE-266. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Denial of Service due to memory exhaustion in HTTP/3 codec. Red Hat rates this important (CVSS 7.5). Weakness: CWE-770. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Netty HAProxy PROXY protocol v2 codec: Denial of Service via memory leak from crafted PROXY protocol headers. Red Hat rates this important (CVSS 7.5). Weakness: CWE-1286. Affected package(s): netty-codec-haproxy. Resolved in Red Hat advisory RHSA-2026:26586 — update the affected packages (`sudo dnf update`).
Denial of Service due to resource leak. Red Hat rates this important (CVSS 7.5). Weakness: CWE-772. Affected package(s): netty-codec-http2. Resolved in Red Hat advisory RHSA-2026:26586 — update the affected packages (`sudo dnf update`).
Netty's Lack of Lifecycle Cleanup Leads to Pooled ByteBuf Leak in RedisArrayAggregator. Red Hat rates this important (CVSS 7.5). Weakness: CWE-772. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Netty has Insufficient Bailiwick Validation for NS Records. Red Hat rates this important (CVSS 8.7). Weakness: CWE-346. Affected package(s): netty-resolver-dns. Resolved in Red Hat advisory RHSA-2026:26586 — update the affected packages (`sudo dnf update`).
Denial of Service due to unbounded memory growth from SctpMessage fragments. Red Hat rates this important (CVSS 7.5). Weakness: CWE-770. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Information disclosure and data manipulation due to improper CNAME record validation. Red Hat rates this important (CVSS 8.7). Weakness: CWE-346. Affected package(s): netty-resolver-dns. Resolved in Red Hat advisory RHSA-2026:26586 — update the affected packages (`sudo dnf update`).
NodeVM observability builtins leak host process and HTTP request data. Red Hat rates this moderate (CVSS 8.6). Weakness: CWE-653. Affected package(s): rhdh/rhdh-hub-rhel9:1782761244. Resolved in Red Hat advisory RHSA-2026:33574 — update the affected packages (`sudo dnf update`).
Sandbox escape via internal HTTP built-ins leading to network restriction bypass. Red Hat rates this moderate (CVSS 8.6). Weakness: CWE-1100. Affected package(s): rhdh/rhdh-hub-rhel9:1782761244. Resolved in Red Hat advisory RHSA-2026:33574 — update the affected packages (`sudo dnf update`).
Sandbox escape allows arbitrary code execution on the host system. Red Hat rates this moderate (CVSS 8.7). Weakness: CWE-1100. Affected package(s): rhdh/rhdh-hub-rhel9:1782761244. Resolved in Red Hat advisory RHSA-2026:33574 — update the affected packages (`sudo dnf update`).
Integrity bypass via incorrect property assignment leading to potential arbitrary code execution. Red Hat rates this moderate (CVSS 8.6). Weakness: CWE-915. Affected package(s): rhdh/rhdh-hub-rhel9:1782761244. Resolved in Red Hat advisory RHSA-2026:33574 — update the affected packages (`sudo dnf update`).
Denial of Service due to eager buffer allocation in TLS handshake. Red Hat rates this important (CVSS 7.5). Weakness: CWE-770. Affected package(s): netty-handler, offline-knowledge-portal/rhokp-rhel9:1782239370. Resolved in Red Hat advisory RHSA-2026:26586 — update the affected packages (`sudo dnf update`).
Denial of Service amplification via improper QUIC token validation. Red Hat rates this important (CVSS 7.5). Weakness: CWE-346. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Multiple NetApp products incorporate Golang. Golang versions prior to 1.25.10 and 1.26.0 prior to 1.26.3 are susceptible to a vulnerability which when successfully exploited could lead to Denial of Service (DoS). Successful exploitation of this vulnerability could lead to Denial of Service (DoS). Affected products: Astra Control Center, Trident Protect. NetApp reports that one or more additional products remain under investigation; review the canonical advisory for current status. NetApp states there is no workaround available at this time.
A local privilege escalation vulnerability exists in Check Point Identity Agent Full for Windows OS. An authenticated local user may be able to execute arbitrary code with SYSTEM privileges due to improper handling of executable resolution during the log collection process. Successful exploitation could allow an attacker to gain elevated privileges on the affected Windows endpoint.
GitLab has remediated an issue in GitLab EE affecting all versions from 13.1.4 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authenticated user to add unauthorized email addresses to a targeted user's account due to improper sanitization of user-supplied input in certain group setting fields.