VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
1151 advisories across 32 monitored vendors.
Denial of Service via specially crafted glob patterns. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-1333. Affected package(s): openshift4/ose-console-rhel9:1780365421, quay/quay-rhel9:1775069491, nodejs:20, nodejs:22, rhoai/odh-workbench-codeserver-datascience-cpu-py312-rhel9:1776336652, devspaces/openvsx-rhel9:1779528224. Resolved in Red Hat advisory RHSA-2026:13508 — update the affected packages (`sudo dnf update`).
Information disclosure via unauthorized access to build parameters. Red Hat rates this moderate (CVSS 4.3). Weakness: CWE-551. Affected package(s): ocp-tools. Resolved in Red Hat advisory RHSA-2026:10209 — update the affected packages (`sudo dnf update`).
Stored Cross-site Scripting (XSS) via unescaped user-provided offline cause description. Red Hat rates this moderate (CVSS 4.6). Weakness: CWE-79. Affected package(s): ocp-tools. Resolved in Red Hat advisory RHSA-2026:10209 — update the affected packages (`sudo dnf update`).
security constraint bypass with HTTP/0.9. Red Hat rates this low (CVSS 5.3). Weakness: CWE-20. Affected package(s): tomcat, jws6-tomcat, tomcat10-main, tomcat11-main. Resolved in Red Hat advisory RHSA-2026:12195 — update the affected packages (`sudo dnf update`).
Client certificate verification bypass due to virtual host mapping. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-1289. Affected package(s): tomcat, jws6-tomcat, tomcat10-main, tomcat11-main. Resolved in Red Hat advisory RHSA-2026:12195 — update the affected packages (`sudo dnf update`).
Denial of Service via crafted RPM file during signature verification. Red Hat rates this moderate (CVSS 4). Weakness: CWE-347. Affected package(s): rust-rpm-sequoia-main. Resolved in Red Hat advisory RHSA-2026:12682 — update the affected packages (`sudo dnf update`).
Denial of Service due to excessive SAMLRequest decompression. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-409. Affected package(s): rhbk/keycloak-rhel9, rhbk/keycloak-operator-bundle:26.4.10, rhbk/keycloak-rhel9-operator:26.4, rhbk/keycloak-rhel9:26.4. Resolved in Red Hat advisory RHSA-2026:3947 — update the affected packages (`sudo dnf update`).
Fix early read unlock of page with EOF in middle. Red Hat rates this moderate (CVSS 4.7). Weakness: CWE-826. Affected package(s): kernel. Resolved in Red Hat advisory RHSA-2025:20095 — update the affected packages (`sudo dnf update`).
cancel mlo_scan_start_wk. Red Hat rates this important (CVSS 6.7). Weakness: CWE-772. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Linux kernel: Denial of Service in Bluetooth HCI UART driver via null pointer dereference. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-476. Affected package(s): kernel. Resolved in Red Hat advisory RHSA-2025:20095 — update the affected packages (`sudo dnf update`).
fix memory leak in smb2_open_file(). Red Hat rates this low (CVSS 5.5). Weakness: CWE-772. Affected package(s): kernel. Resolved in Red Hat advisory RHSA-2025:20095 — update the affected packages (`sudo dnf update`).
Code injection on Java generated code. Red Hat rates this moderate (CVSS 5.6). Weakness: CWE-94. Affected package(s): avro. Resolved in Red Hat advisory RHSA-2026:7109 — update the affected packages (`sudo dnf update`).
PostgreSQL oidvector discloses a few bytes of memory. Red Hat rates this moderate (CVSS 4.3). Weakness: CWE-1287. Affected package(s): postgresql:16, postgresql, postgresql:15, postgresql18-main, rhui5/rhua-rhel9:1773670137, postgresql16. Resolved in Red Hat advisory RHSA-2026:3896 — update the affected packages (`sudo dnf update`).
Information disclosure via arbitrary file read in model loading mechanism. Red Hat rates this important (CVSS 6.5). Weakness: CWE-73. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Denial of Service via zero-length input in ssh_get_hexa(). Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-124. Affected package(s): libssh, libssh-main. Resolved in Red Hat advisory RHSA-2026:18160 — update the affected packages (`sudo dnf update`).
Improper sanitation of paths received from SCP servers. Red Hat rates this moderate (CVSS 5). Weakness: CWE-22. Affected package(s): libssh. Resolved in Red Hat advisory RHSA-2026:18160 — update the affected packages (`sudo dnf update`).
Incorrect ownership checks in /uma-policy/. Red Hat rates this moderate (CVSS 5.4). Weakness: CWE-266. Affected package(s): rhbk/keycloak-rhel9-operator, rhbk/keycloak-operator-bundle:26.2.13, rhbk/keycloak-operator-bundle:26.4.9, rhbk/keycloak-rhel9-operator:26.4, rhbk/keycloak-rhel9:26.2, rhbk/keycloak-rhel9:26.4. Resolved in Red Hat advisory RHSA-2026:2366 — update the affected packages (`sudo dnf update`).
FreeRDP has a Heap-use-after-free in play_thread. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-131. Affected package(s): freerdp. Resolved in Red Hat advisory RHSA-2026:6958 — update the affected packages (`sudo dnf update`).
FreeRDP has a heap-use-after-free in ainput_send_input_event. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-825. Affected package(s): freerdp. Resolved in Red Hat advisory RHSA-2026:6958 — update the affected packages (`sudo dnf update`).
FreeRDP has a Heap-buffer-overflow in audio_formats_free. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-131. Affected package(s): freerdp. Resolved in Red Hat advisory RHSA-2026:19033 — update the affected packages (`sudo dnf update`).