VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
Advisories the vendor has revised
Denial of Service via integer overflow and buffer overrun on 32-bit systems. Red Hat rates this moderate (CVSS 5.5). Weakness: CWE-190. Red Hat lists fixing advisory RHSA-2026:29986 with package jq-main-1.8.2-0.1.hum1.
pnpm and pacquet: Information disclosure of environment secrets via improper environment variable expansion. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-15.
Information disclosure of authentication credentials via malicious .npmrc file. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-201.
Arbitrary Code Execution via Malicious Lockfile. Red Hat rates this moderate (CVSS 6.4). Weakness: CWE-78.
Package integrity check bypass allows installation of malicious content. Red Hat rates this moderate (CVSS 6.8). Weakness: CWE-494.
Denial of Service due to improper handling of malicious package manifest bin keys. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-22.
Attacker can re-enable and take over disabled clients via Registration Access Token. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-613. Red Hat lists fixing advisory RHSA-2026:30049 with package rhbk/keycloak-operator-bundle:26.4.13-1, rhbk/keycloak-rhel9-operator:26.4-19, rhbk/keycloak-rhel9, rhbk/keycloak-rhel9:26.6-8.
Information disclosure through arbitrary filesystem path probing. Red Hat rates this moderate (CVSS 4.9). Weakness: CWE-22. Red Hat lists fixing advisory RHSA-2026:30049 with package rhbk/keycloak-operator-bundle:26.4.13-1, rhbk/keycloak-rhel9-operator:26.4-19, rhbk/keycloak-rhel9, rhbk/keycloak-rhel9:26.6-8.
Denial of Service via crafted spell file. Red Hat rates this moderate (CVSS 5.5). Weakness: CWE-787. Red Hat lists fixing advisory RHSA-2026:35387 with package vim-main-9.2.780-1.hum1.
Denial of service via crafted undo file. Red Hat rates this moderate (CVSS 5.5). Weakness: CWE-125.
Out-of-bounds Read with libsodium-encrypted Files. Red Hat rates this moderate (CVSS 4.7). Weakness: CWE-125. Red Hat lists fixing advisory RHSA-2026:30267 with package vim-main-9.2.725-1.hum1.
Arbitrary code execution via crafted zip archive entry names. Red Hat rates this moderate (CVSS 5.8). Weakness: CWE-78.
Out-of-bounds Read with Text Properties. Red Hat rates this moderate. Weakness: CWE-125.
Denial of Service via stack out-of-bounds write in spell_soundfold_sofo(). Red Hat rates this moderate (CVSS 4.7). Weakness: CWE-787. Red Hat lists fixing advisory RHSA-2026:30267 with package vim-main-9.2.725-1.hum1.
Memory corruption due to XInclude substitution. Red Hat rates this moderate (CVSS 6.2). Weakness: CWE-825.
Denial of Service due to improper XPathContext garbage collection. Red Hat rates this low (CVSS 4.7). Weakness: CWE-771.
Denial of Service via out-of-bounds read. Red Hat rates this moderate (CVSS 5.9). Weakness: CWE-125.
A vulnerability in Cisco Finesse could allow an unauthenticated, remote attacker to load arbitrary files from remote locations into an active user session on an affected device, possibly leading to browser-based attacks. This vulnerability is due to insufficient validation of user-supplied input for HTTP requests that are sent to an affected device. An attacker who has knowledge of the address of the affected device could exploit this vulnerability by persuading a user to click a crafted link that contains the affected device address. A successful exploit could allow the attacker to conduct browser-based attacks and execute arbitrary script code in the context of the affected interface or access sensitive information on the affected device. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. This advisory is available at the following link:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-finesse-rfi-gwpkdc89 <br/>Security Impact Rating: Medium <br/>CVE: CVE-2026-20175
Server-Side Request Forgery (SSRF) and XML External Entity (XXE) via improper enforcement of NONET parse option. Red Hat rates this low (CVSS 4.8). Weakness: CWE-611.
Denial of Service or Information Disclosure via invalid encoding handling. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-825.