VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
1830 advisories across 32 monitored vendors.
Access token disclosure and implicit flow bypass via forged client data. Red Hat rates this moderate (CVSS 7.1). Weakness: CWE-472. Affected package(s): rhbk/keycloak-operator-bundle:26.4.12, rhbk/keycloak-rhel9-operator, rhbk/keycloak-rhel9:26.4, rhbk/keycloak-rhel9-operator:26.4. Resolved in Red Hat advisory RHSA-2026:19596 — update the affected packages (`sudo dnf update`).
Denial of Service via specially crafted SAML input. Red Hat rates this important (CVSS 7.5). Weakness: CWE-1286. Affected package(s): rhbk/keycloak-rhel9, rhbk/keycloak-operator-bundle:26.4.12, rhbk/keycloak-operator-bundle:26.2.16, rhbk/keycloak-rhel9-operator:26.2, rhbk/keycloak-rhel9:26.4, rhbk/keycloak-rhel9:26.2. Resolved in Red Hat advisory RHSA-2026:19594 — update the affected packages (`sudo dnf update`).
Arbitrary code execution via crafted configuration module. Red Hat rates this important (CVSS 8.1). Weakness: CWE-502. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Remote Code Execution via Insecure Deserialization. Red Hat rates this important (CVSS 8.8). Weakness: CWE-502. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Insufficient policy enforcement in ServiceWorker. Red Hat rates this important (CVSS 7.4). Weakness: CWE-346. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Type Confusion in GFX. Red Hat rates this important (CVSS 8.2). Weakness: CWE-843. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Use after free in GPU. Red Hat rates this important (CVSS 8.8). Weakness: CWE-825. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Authorization bypass via incorrect URI comparison. Red Hat rates this important (CVSS 8.1). Weakness: CWE-1025. Affected package(s): rhbk/keycloak-operator-bundle:26.4.13, rhbk/keycloak-rhel9-operator:26.4, rhbk/keycloak-rhel9, rhbk/keycloak-rhel9:26.6, rhbk/keycloak-rhel9:26.4, rhbk/keycloak-operator-bundle:26.6.4. Resolved in Red Hat advisory RHSA-2026:30049 — update the affected packages (`sudo dnf update`).
Linux kernel: Use-After-Free in net/gro due to improper handling of zerocopy skbs. Red Hat rates this important (CVSS 7.8). Weakness: CWE-123. Affected package(s): kernel. Resolved in Red Hat advisory RHSA-2026:27708 — update the affected packages (`sudo dnf update`).
Remote Code Execution via command injection in Git branch name processing. Red Hat rates this important (CVSS 8). Weakness: CWE-78. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Privilege escalation via Kubernetes Gateway API provider configuration bypass. Red Hat rates this important (CVSS 8.3). Weakness: CWE-15. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
command injection when decompressing .tgz archives. Red Hat rates this moderate (CVSS 7). Weakness: CWE-78. Affected package(s): vim. Resolved in Red Hat advisory RHSA-2026:28049 — update the affected packages (`sudo dnf update`).
Uninitialized memory disclosure via `websocket.close()` with `TypedArray`. Red Hat rates this important (CVSS 7.5). Weakness: CWE-824. Affected package(s): dotnet8, ansible-automation-platform, rhdh/rhdh-hub-rhel9:1782761244, dotnet10, discovery/discovery-ui-rhel9:1782166952, dotnet9. Resolved in Red Hat advisory RHSA-2026:34374 — update the affected packages (`sudo dnf update`).
Read root-owned files as an unprivileged user. Red Hat rates this important (CVSS 7.8). Weakness: CWE-269. Affected package(s): kernel, rhcos, kernel-rt, openshift, kpatch-patch, cri-o. Resolved in Red Hat advisory RHSA-2026:23470 — update the affected packages (`sudo dnf update`).
Privilege escalation via improper CPU cache isolation. Red Hat rates this important (CVSS 7). Weakness: CWE-1220. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
vorbis-tools ogg123: Arbitrary code execution via buffer underflow in remote control functionality. Red Hat rates this important (CVSS 8.2). Weakness: CWE-124. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Denial of Service or arbitrary code execution via maliciously crafted LYB binary blob. Red Hat rates this important (CVSS 7.5). Weakness: CWE-190. Affected package(s): libyang. Resolved in Red Hat advisory RHSA-2026:24758 — update the affected packages (`sudo dnf update`).
Integer overflow in Internationalization. Red Hat rates this important (CVSS 8.8). Weakness: CWE-190. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Use after free in GTK. Red Hat rates this important (CVSS 8.8). Weakness: CWE-825. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Use after free in Downloads. Red Hat rates this important (CVSS 8.8). Weakness: CWE-825. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.