VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
1836 advisories across 32 monitored vendors.
Use after free in Aura. Red Hat rates this important (CVSS 8). Weakness: CWE-825. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Use after free in Chromoting. Red Hat rates this important (CVSS 8.2). Weakness: CWE-825. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Integer overflow in GPU. Red Hat rates this important (CVSS 8). Weakness: CWE-190. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Type Confusion in Runtime. Red Hat rates this important (CVSS 8.8). Weakness: CWE-843. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Path traversal vulnerability allows bypass of security policies. Red Hat rates this important (CVSS 7.5). Weakness: CWE-22. Affected package(s): odf4/odf-multicluster-rhel9-operator:1778577548, network-observability/network-observability-console-plugin-rhel9:1780556069, cluster-observability-operator/troubleshooting-panel-console-plugin-pf6-rhel9:1782839996, cluster-observability-operator/distributed-tracing-console-plugin-pf4-rhel9:1782840519, odf4/odf-cli-rhel9:1781557189, satellite/iop-advisor-frontend-rhel9:1781181673. Resolved in Red Hat advisory RHSA-2026:25089 — update the affected packages (`sudo dnf update`).
Denial of Service via uncontrolled memory allocation in remote read endpoint. Red Hat rates this important (CVSS 7.5). Weakness: CWE-770. Affected package(s): opentelemetry-collector, jaeger-main, rhacm2/prometheus-rhel9:1782374537, opentelemetry-collector-main, openshift-logging/logging-loki-rhel9:1782405469, opentelemetry-collector-contrib-main. Resolved in Red Hat advisory RHSA-2026:29770 — update the affected packages (`sudo dnf update`).
Information disclosure of Azure OAuth client secret via config API. Red Hat rates this important (CVSS 7.5). Weakness: CWE-256. Affected package(s): opentelemetry-collector, opentelemetry-collector-contrib-main, jaeger-main, opentelemetry-collector-main. Resolved in Red Hat advisory RHSA-2026:25504 — update the affected packages (`sudo dnf update`).
buffer over-read via malformed enhanced status code. Red Hat rates this important (CVSS 7.5). Weakness: CWE-193. Affected package(s): postfix. Resolved in Red Hat advisory RHSA-2026:25932 — update the affected packages (`sudo dnf update`).
Arbitrary Code Execution via DHCPv6 Client Heap Buffer Overflow. Red Hat rates this important (CVSS 8.8). Weakness: CWE-131. Affected package(s): busybox-main. Resolved in Red Hat advisory RHSA-2026:30652 — update the affected packages (`sudo dnf update`).
XML External Entity (XXE) vulnerability via crafted dictionary parsing. Red Hat rates this important (CVSS 7.5). Weakness: CWE-611. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Arbitrary Class Loading via Model Manifest. Red Hat rates this important (CVSS 7.5). Weakness: CWE-502. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Denial of Service via unbounded array allocation in crafted model files. Red Hat rates this important (CVSS 7.5). Weakness: CWE-770. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Arbitrary code execution via sandbox breakout through inspect function. Red Hat rates this important (CVSS 8.1). Weakness: CWE-653. Affected package(s): rhdh/rhdh-hub-rhel9:1781187342. Resolved in Red Hat advisory RHSA-2026:26234 — update the affected packages (`sudo dnf update`).
NULL pointer dereference via specially crafted request. Red Hat rates this low (CVSS 7.5). Weakness: CWE-476. Affected package(s): jbcs-httpd24-httpd, httpd, httpd-main, mod_dav_lock.so. Resolved in Red Hat advisory RHSA-2026:27200 — update the affected packages (`sudo dnf update`).
Remote Code Execution via Double Free in HTTP/2 Protocol. Red Hat rates this important (CVSS 8.8). Weakness: CWE-1341. Affected package(s): httpd-main. Resolved in Red Hat advisory RHSA-2026:13938 — update the affected packages (`sudo dnf update`).
Account hijacking and unauthorized access via unverified email linking. Red Hat rates this important (CVSS 8.3). Weakness: CWE-305. Affected package(s): automation-gateway, automation-controller, python3.12-django-ansible-base, ansible-automation-platform. Resolved in Red Hat advisory RHSA-2026:13508 — update the affected packages (`sudo dnf update`).
off-by-one out-of-bounds reads in AJP getter functions. Red Hat rates this moderate (CVSS 7.5). Weakness: CWE-125. Affected package(s): httpd, httpd:2.4, jbcs-httpd24-httpd, httpd-main, mod_proxy_ajp.so. Resolved in Red Hat advisory RHSA-2026:27200 — update the affected packages (`sudo dnf update`).
heap-based buffer over-read due to missing null-termination check. Red Hat rates this moderate (CVSS 8.2). Weakness: CWE-170. Affected package(s): httpd, httpd:2.4, jbcs-httpd24-httpd, httpd-main, mod_proxy_ajp.so. Resolved in Red Hat advisory RHSA-2026:27200 — update the affected packages (`sudo dnf update`).
heap-based buffer over-read and memory disclosure in ajp_parse_data(). Red Hat rates this moderate (CVSS 8.2). Weakness: CWE-126. Affected package(s): httpd, httpd:2.4, jbcs-httpd24-httpd, httpd-main, mod_proxy_ajp.so. Resolved in Red Hat advisory RHSA-2026:27200 — update the affected packages (`sudo dnf update`).
Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly. Red Hat rates this important (CVSS 7.5). Weakness: CWE-130. Affected package(s): rhui5/installer-rhel9:1781525693, libtasn1, gnutls, rhui5/cds-rhel9:1781525684, discovery/discovery-ui-rhel9:1782166952, discovery/discovery-server-rhel9:1782159791. Resolved in Red Hat advisory RHSA-2026:29197 — update the affected packages (`sudo dnf update`).