VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
1151 advisories across 32 monitored vendors.
Apache Artemis and Apache ActiveMQ Artemis: Unauthorized address creation due to incorrect authorization during JMS topic subscription.. Red Hat rates this moderate (CVSS 4.3). Affected package(s): artemis-server. Resolved in Red Hat advisory RHSA-2026:8509 — update the affected packages (`sudo dnf update`).
Denial of Service via large scientific notation strings. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-770. Affected package(s): rubygem-activesupport. Resolved in Red Hat advisory RHSA-2026:14835 — update the affected packages (`sudo dnf update`).
Denial of Service due to uncontrolled recursion via crafted CBOR payloads. Red Hat rates this moderate (CVSS 5.5). Weakness: CWE-770. Affected package(s): rhaiis/vllm-rocm-rhel9:1779223651, rhaiis/vllm-rocm-rhel9:1778244531, rhaiis/vllm-cuda-rhel9:1779223654, rhaiis/vllm-cuda-rhel9:1778274666, rhaiis/vllm-spyre-rhel9:1778244546. Resolved in Red Hat advisory RHSA-2026:19724 — update the affected packages (`sudo dnf update`).
Out-of-Bounds Read in XCOFF Relocation Processing in GNU Binutils BFD Library. Red Hat rates this moderate (CVSS 6.1). Weakness: CWE-125. Affected package(s): binutils-main. Resolved in Red Hat advisory RHSA-2026:33527 — update the affected packages (`sudo dnf update`).
Out of bounds read in CSS. Red Hat rates this important (CVSS 6.5). Weakness: CWE-125. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Heap buffer overflow in WebGL. Red Hat rates this important (CVSS 6.5). Weakness: CWE-787. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Out of bounds read in WebAudio. Red Hat rates this important (CVSS 6.5). Weakness: CWE-125. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Invalid DNS hostname returned via gethostbyaddr functions. Red Hat rates this low (CVSS 4). Weakness: CWE-838. Affected package(s): glibc-main, rhui5/haproxy-rhel9:1781525671, insights-proxy/insights-proxy-container-rhel9:1780420428, glibc, rhui5/installer-rhel9:1781525693, costmanagement/costmanagement-metrics-rhel9-operator:1780946239. Resolved in Red Hat advisory RHSA-2026:19061 — update the affected packages (`sudo dnf update`).
Incorrect DNS response parsing via crafted DNS server response. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-1286. Affected package(s): glibc-main, rhui5/haproxy-rhel9:1781525671, insights-proxy/insights-proxy-container-rhel9:1780420428, glibc, rhui5/installer-rhel9:1781525693, costmanagement/costmanagement-metrics-rhel9-operator:1780946239. Resolved in Red Hat advisory RHSA-2026:19061 — update the affected packages (`sudo dnf update`).
Denial of Service via long resolver names. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-130. Affected package(s): openshift-pipelines/pipelines-controller-rhel9:1775707731, openshift-pipelines/pipelines-operator-bundle:1776925111, openshift-pipelines/pipelines-operator-bundle:1774871390, openshift-pipelines/pipelines-controller-rhel9:1774556221. Resolved in Red Hat advisory RHSA-2026:6170 — update the affected packages (`sudo dnf update`).
XML::Parser for Perl: Heap corruption and denial of service from crafted XML input. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-131. Affected package(s): perl-XML-Parser. Resolved in Red Hat advisory RHSA-2026:8608 — update the affected packages (`sudo dnf update`).
Denial of Service via malformed ISO file processing. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-1335. Affected package(s): libarchive-main. Resolved in Red Hat advisory RHSA-2026:8944 — update the affected packages (`sudo dnf update`).
Unbounded next/image disk cache growth can exhaust storage. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-770. Affected package(s): com.github.streamshub-console. Resolved in Red Hat advisory RHSA-2026:13571 — update the affected packages (`sudo dnf update`).
Blind Server-Side Request Forgery (SSRF) via HTTP Redirect Handling in Keycloak. Red Hat rates this moderate (CVSS 5.8). Weakness: CWE-918. Affected package(s): rhbk/keycloak-operator-bundle:26.4.12, rhbk/keycloak-rhel9:26.4, rhbk/keycloak-rhel9-operator:26.4. Resolved in Red Hat advisory RHSA-2026:19596 — update the affected packages (`sudo dnf update`).
Processing maliciously crafted web content may disclose internal states of the app. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-909. Affected package(s): webkit2gtk3, webkitgtk4. Resolved in Red Hat advisory RHSA-2026:19206 — update the affected packages (`sudo dnf update`).
A website may be able to track users through Safari web extensions. Red Hat rates this moderate (CVSS 4.3). Weakness: CWE-201. Affected package(s): webkit2gtk3, webkitgtk4. Resolved in Red Hat advisory RHSA-2026:19206 — update the affected packages (`sudo dnf update`).
Out of bounds read in Blink. Red Hat rates this important (CVSS 6.5). Weakness: CWE-125. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Out of bounds read in Skia. Red Hat rates this important (CVSS 6.5). Weakness: CWE-125. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
TLS connection bypass via unhandled callback exception in set_tlsext_servername_callback. Red Hat rates this moderate (CVSS 5.4). Weakness: CWE-636. Affected package(s): pyopenssl-main. Resolved in Red Hat advisory RHSA-2026:7224 — update the affected packages (`sudo dnf update`).
Denial of Service and potential information disclosure via SQL injection. Red Hat rates this moderate (CVSS 5.4). Weakness: CWE-89. Affected package(s): foreman, rubygem-katello, rubygem-fog-kubevirt, python-pulp-container, python-pulp-rpm, python-django. Resolved in Red Hat advisory RHSA-2026:5968 — update the affected packages (`sudo dnf update`).