VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
1151 advisories across 32 monitored vendors.
Privilege escalation via TOCTOU race condition in cap_set_file(). Red Hat rates this important (CVSS 6.7). Weakness: CWE-367. Affected package(s): rhaiis/model-opt-cuda-rhel9:1782352950, rhaiis/vllm-spyre-rhel9:1782352919, libcap, rhui5/haproxy-rhel9:1779798164, rhcos, libcap-main. Resolved in Red Hat advisory RHSA-2026:26542 — update the affected packages (`sudo dnf update`).
Heap Over-Read in ICMP Error Response Generation. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-130. Affected package(s): ovn25.03, ovn25.09, ovn, ovn23.09, ovn24.03, ovn23.06. Resolved in Red Hat advisory RHSA-2026:11702 — update the affected packages (`sudo dnf update`).
Denial of Service via D-Bus method call. Red Hat rates this moderate (CVSS 5.5). Weakness: CWE-1288. Affected package(s): avahi-main. Resolved in Red Hat advisory RHSA-2026:11316 — update the affected packages (`sudo dnf update`).
TOCTOU in the mount program when setting up loop devices. Red Hat rates this moderate (CVSS 4.7). Weakness: CWE-367. Affected package(s): util-linux-main. Resolved in Red Hat advisory RHSA-2026:7180 — update the affected packages (`sudo dnf update`).
Shared PostScript queue lets anonymous Print-Job requests reach `lp` code execution over the network. Red Hat rates this moderate (CVSS 6.4). Weakness: CWE-78. Affected package(s): cups-main. Resolved in Red Hat advisory RHSA-2026:8814 — update the affected packages (`sudo dnf update`).
Denial of Service via heap-based buffer overflow in job attribute processing. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-120. Affected package(s): cups-main. Resolved in Red Hat advisory RHSA-2026:8814 — update the affected packages (`sudo dnf update`).
Denial of Service via path traversal in RSS notifier. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-22. Affected package(s): cups-main. Resolved in Red Hat advisory RHSA-2026:8814 — update the affected packages (`sudo dnf update`).
Privilege escalation via arbitrary file overwrite due to coerced authentication. Red Hat rates this moderate (CVSS 5.2). Weakness: CWE-73. Affected package(s): cups-main. Resolved in Red Hat advisory RHSA-2026:8814 — update the affected packages (`sudo dnf update`).
Authorization bypass via case-insensitive username comparison. Red Hat rates this moderate (CVSS 6.4). Weakness: CWE-178. Affected package(s): cups-main. Resolved in Red Hat advisory RHSA-2026:8814 — update the affected packages (`sudo dnf update`).
Cookie attribute injection due to improper handling of cookie arguments. Red Hat rates this moderate (CVSS 5.4). Weakness: CWE-88. Affected package(s): python-tornado. Resolved in Red Hat advisory RHSA-2026:24342 — update the affected packages (`sudo dnf update`).
Denial of Service via buffer overflow in index decoding. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-131. Affected package(s): xz-main. Resolved in Red Hat advisory RHSA-2026:7647 — update the affected packages (`sudo dnf update`).
Security bypass via mishandling of authorized_keys principals option. Red Hat rates this moderate (CVSS 4.8). Weakness: CWE-168. Affected package(s): openssh, rhaiis/model-opt-cuda-rhel9:1780681984, rhui5/rhua-rhel9:1779798222, discovery/discovery-server-rhel9:1778101579, rhui5/installer-rhel9:1779798165. Resolved in Red Hat advisory RHSA-2026:14937 — update the affected packages (`sudo dnf update`).
Replay of action tokens via improper handling of single-use entries. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-653. Affected package(s): rhbk/keycloak-rhel9-operator:26.2, rhbk/keycloak-rhel9, rhbk/keycloak-operator-bundle:26.4.11, rhbk/keycloak-rhel9:26.2, rhbk/keycloak-operator-bundle:26.2.15, rhbk/keycloak-rhel9-operator:26.4. Resolved in Red Hat advisory RHSA-2026:6478 — update the affected packages (`sudo dnf update`).
Prototype pollution allows deletion of built-in prototype properties via array path bypass. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-915. Affected package(s): nodejs20-main, rhdh/rhdh-hub-rhel9:1780930740, nodejs25-main, yarnpkg-main. Resolved in Red Hat advisory RHSA-2026:7655 — update the affected packages (`sudo dnf update`).
Denial of Service via specially crafted array-like object serialization. Red Hat rates this moderate (CVSS 5.9). Weakness: CWE-835. Affected package(s): openshift4/ose-networking-console-plugin-rhel9:1778256287, dotnet8.0, openshift4/ose-networking-console-plugin-rhel9:1778644858, openshift4/ose-networking-console-plugin-rhel9:1779256322, openshift4/ose-networking-console-plugin-rhel9:1782211435, openshift4/ose-networking-console-plugin-rhel9:1778532500. Resolved in Red Hat advisory RHSA-2026:21291 — update the affected packages (`sudo dnf update`).
Out of bounds read in WebCodecs. Red Hat rates this important (CVSS 6.5). Weakness: CWE-125. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Insufficient policy enforcement in WebUSB. Red Hat rates this important (CVSS 6.5). Weakness: CWE-280. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Information disclosure via heap memory out of bounds read. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-125. Affected package(s): freerdp. Resolved in Red Hat advisory RHSA-2026:19142 — update the affected packages (`sudo dnf update`).
Information disclosure and denial of service via heap-buffer-overflow read. Red Hat rates this moderate (CVSS 6.6). Weakness: CWE-125. Affected package(s): freerdp. Resolved in Red Hat advisory RHSA-2026:16014 — update the affected packages (`sudo dnf update`).
Unauthorized inter-process communication due to missing Unix Domain Socket permission checks. Red Hat rates this moderate (CVSS 5.2). Weakness: CWE-940. Affected package(s): nodejs24, nodejs:24. Resolved in Red Hat advisory RHSA-2026:7350 — update the affected packages (`sudo dnf update`).