VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
1151 advisories across 32 monitored vendors.
Stack overflow parsing XML with deeply nested DTD content models. Red Hat rates this moderate (CVSS 5.9). Weakness: CWE-805. Affected package(s): python3.12, python3, python3.14, rhui5/rhua-rhel9:1779798222, rhui5/installer-rhel9:1779798165. Resolved in Red Hat advisory RHSA-2026:19019 — update the affected packages (`sudo dnf update`).
Incomplete control character validation in http.cookies. Red Hat rates this moderate (CVSS 5.4). Weakness: CWE-791. Affected package(s): python3.12, python3, python3.14, rhui5/rhua-rhel9:1779798222, rhui5/installer-rhel9:1779798165. Resolved in Red Hat advisory RHSA-2026:19019 — update the affected packages (`sudo dnf update`).
Denial of Service via Use-After-Free in HTTP/2 server. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-416. Affected package(s): libsoup3. Resolved in Red Hat advisory RHSA-2026:17482 — update the affected packages (`sudo dnf update`).
FreeRDP has an out-of-bounds read in ADPCM decoders due to missing predictor/step_index bounds checks. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-125. Affected package(s): freerdp. Resolved in Red Hat advisory RHSA-2026:19142 — update the affected packages (`sudo dnf update`).
FreeRDP has a division-by-zero in ADPCM decoders when `nBlockAlign` is 0. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-369. Affected package(s): freerdp. Resolved in Red Hat advisory RHSA-2026:19142 — update the affected packages (`sudo dnf update`).
FreeRDP has a heap-buffer-overflow in bitmap_cache_put via OOB cacheId. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-787. Affected package(s): freerdp. Resolved in Red Hat advisory RHSA-2026:19142 — update the affected packages (`sudo dnf update`).
OpenSSL TLS 1.3 server may choose unexpected key agreement group. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-325. Affected package(s): openssl-main, jbcs-httpd24-openssl. Resolved in Red Hat advisory RHSA-2026:7261 — update the affected packages (`sudo dnf update`).
Excessive permissions of /etc could lead to escalation of privilege in the noobaa-core container. Red Hat rates this important (CVSS 6.4). Weakness: CWE-276. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Privilege escalation via improper access control in RegisterMachine D-Bus method. Red Hat rates this moderate (CVSS 6.7). Weakness: CWE-284. Affected package(s): systemd-main. Resolved in Red Hat advisory RHSA-2026:7299 — update the affected packages (`sudo dnf update`).
HTTP header injection and request smuggling vulnerability. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-93. Affected package(s): nodejs24, nodejs:24. Resolved in Red Hat advisory RHSA-2026:7350 — update the affected packages (`sudo dnf update`).
Denial of Service due to uncontrolled resource consumption. Red Hat rates this moderate (CVSS 5.9). Weakness: CWE-770. Affected package(s): nodejs24, nodejs:24. Resolved in Red Hat advisory RHSA-2026:7350 — update the affected packages (`sudo dnf update`).
@backstage/plugin-auth-backend: @backstage/plugin-auth-backend: OAuth redirect URI allowlist bypass. Red Hat rates this moderate (CVSS 5.9). Weakness: CWE-601. Affected package(s): rhdh/rhdh-hub-rhel9:1780930740. Resolved in Red Hat advisory RHSA-2026:24841 — update the affected packages (`sudo dnf update`).
Denial of Service vulnerability in zip file processing. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-193. Affected package(s): rhdh/rhdh-hub-rhel9:1780930740. Resolved in Red Hat advisory RHSA-2026:24841 — update the affected packages (`sudo dnf update`).
Denial of Service via large multipart bodies. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-770. Affected package(s): rhoai/odh-pipeline-runtime-pytorch-cuda-py312-rhel9:1780078429, rhoai/odh-llama-stack-core-rhel9:1775144403, python-tornado, rhoai/odh-workbench-codeserver-datascience-cpu-py312-rhel9:1780078388, rhoai/odh-workbench-jupyter-minimal-cuda-py312-rhel9:1780069224, pcs. Resolved in Red Hat advisory RHSA-2026:24342 — update the affected packages (`sudo dnf update`).
nscd client crash on x86_64 under high nscd load. Red Hat rates this moderate (CVSS 5.9). Weakness: CWE-366. Affected package(s): glibc-main. Resolved in Red Hat advisory RHSA-2026:7316 — update the affected packages (`sudo dnf update`).
Arbitrary code execution or Denial of Service via use-after-free in SMB request handling. Red Hat rates this moderate (CVSS 6.3). Weakness: CWE-825. Affected package(s): curl-main. Resolved in Red Hat advisory RHSA-2026:6893 — update the affected packages (`sudo dnf update`).
Unauthorized access due to improper HTTP proxy connection reuse. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-305. Affected package(s): curl-main. Resolved in Red Hat advisory RHSA-2026:6893 — update the affected packages (`sudo dnf update`).
Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect. Red Hat rates this moderate (CVSS 5.7). Weakness: CWE-201. Affected package(s): curl-main. Resolved in Red Hat advisory RHSA-2026:6893 — update the affected packages (`sudo dnf update`).
Authentication bypass due to incorrect connection reuse with Negotiate authentication. Red Hat rates this moderate (CVSS 6.8). Weakness: CWE-303. Affected package(s): curl-main. Resolved in Red Hat advisory RHSA-2026:6893 — update the affected packages (`sudo dnf update`).
Denial of Service via crafted QUIC Initial packet. Red Hat rates this important (CVSS 5.3). Weakness: CWE-248. Affected package(s): ansible-automation-platform, rhoai/odh-model-registry-job-async-upload-rhel9:1778596806, rhtas/tuffer-rhel9:1773307309, rhtas/tuftool-rhel9:1773307309, openshift-logging/vector-rhel9:1780052069. Resolved in Red Hat advisory RHSA-2026:19712 — update the affected packages (`sudo dnf update`).