VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
1830 advisories across 32 monitored vendors.
Memory safety bugs fixed in Firefox 150.0.2. Red Hat rates this important (CVSS 7.5). Weakness: CWE-120. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Memory safety bugs fixed in Firefox ESR 115.35.2, Firefox ESR 140.10.2 and Firefox 150.0.2. Red Hat rates this important (CVSS 7.5). Weakness: CWE-787. Affected package(s): firefox. Resolved in Red Hat advisory RHSA-2026:24509 — update the affected packages (`sudo dnf update`).
Incorrect boundary conditions in the Audio/Video: Playback component. Red Hat rates this important (CVSS 7.5). Weakness: CWE-805. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Use-after-free in the DOM: Networking component. Red Hat rates this important (CVSS 7.5). Weakness: CWE-825. Affected package(s): firefox. Resolved in Red Hat advisory RHSA-2026:24509 — update the affected packages (`sudo dnf update`).
Denial of Service via crafted OOXML documents. Red Hat rates this moderate (CVSS 7.6). Weakness: CWE-787. Affected package(s): libreoffice. Resolved in Red Hat advisory RHSA-2026:28922 — update the affected packages (`sudo dnf update`).
Arbitrary code execution via expression parser. Red Hat rates this important (CVSS 8.8). Weakness: CWE-94. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Information disclosure and denial of service via malformed EXR files. Red Hat rates this important (CVSS 8.1). Weakness: CWE-130. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Arbitrary code execution via integer overflow in image resizing. Red Hat rates this important (CVSS 8.8). Weakness: CWE-190. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Information disclosure of secrets from unintended GCP projects. Red Hat rates this important (CVSS 7.5). Weakness: CWE-1220. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Arbitrary XML node injection via crafted processing instructions. Red Hat rates this important (CVSS 7.5). Weakness: CWE-91. Affected package(s): rhdh/rhdh-hub-rhel9:1781187342. Resolved in Red Hat advisory RHSA-2026:26234 — update the affected packages (`sudo dnf update`).
Directory traversal allows arbitrary file access. Red Hat rates this important (CVSS 8.2). Weakness: CWE-22. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Arbitrary XML markup injection. Red Hat rates this important (CVSS 7.5). Weakness: CWE-91. Affected package(s): rhdh/rhdh-hub-rhel9:1779841586, rhdh/rhdh-hub-rhel9:1781187342, openshift4/ose-agent-installer-ui-rhel9:1779864090, openshift4/ose-agent-installer-ui-rhel9:1779252093. Resolved in Red Hat advisory RHSA-2026:21703 — update the affected packages (`sudo dnf update`).
@xmldom/xmldom: xmldom: xmldom: Denial of Service via deeply nested XML documents. Red Hat rates this important (CVSS 7.5). Weakness: CWE-776. Affected package(s): rhdh/rhdh-hub-rhel9:1781187342. Resolved in Red Hat advisory RHSA-2026:26234 — update the affected packages (`sudo dnf update`).
@xmldom/xmldom: xmldom: Arbitrary XML Node Injection. Red Hat rates this important (CVSS 7.5). Weakness: CWE-91. Affected package(s): rhdh/rhdh-hub-rhel9:1781187342. Resolved in Red Hat advisory RHSA-2026:26234 — update the affected packages (`sudo dnf update`).
Overly Permissive Content Security Policy in Yelp Allows Host File Disclosure from Flatpak Applications. Red Hat rates this important (CVSS 7.1). Weakness: CWE-693. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
"Dirty Frag" ESP XFRM variant is a new universal Local Privilege Escalation (LPE) vulnerability in the Linux kernel. Red Hat rates this important (CVSS 7.8). Weakness: CWE-123. Affected package(s): rhcos, kernel, kernel-rt, kpatch-patch. Resolved in Red Hat advisory RHSA-2026:26542 — update the affected packages (`sudo dnf update`).
Regular Expression Denial of Service (ReDoS) via crafted Markdown input. Red Hat rates this important (CVSS 7.5). Weakness: CWE-1333. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Apache::Session::Generate::ModUniqueId: Perl: mod_unique_id: Apache HTTP Server: Apache::Session::Generate::ModUniqueId: Session ID predictability allows unauthorized access. Red Hat rates this important (CVSS 8.2). Weakness: CWE-341. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
ensure safe access to master conntrack. Red Hat rates this moderate (CVSS 7). Weakness: CWE-416. Affected package(s): kernel, kernel-rt. Resolved in Red Hat advisory RHSA-2026:26462 — update the affected packages (`sudo dnf update`).
validate bsscfg indices in IF events. Red Hat rates this moderate (CVSS 7.5). Weakness: CWE-1285. Affected package(s): kernel, kernel-rt. Resolved in Red Hat advisory RHSA-2026:26462 — update the affected packages (`sudo dnf update`).