VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
1836 advisories across 32 monitored vendors.
Use after free in Codecs. Red Hat rates this important (CVSS 8.8). Weakness: CWE-825. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Insufficient validation of untrusted input in Compositing. Red Hat rates this important (CVSS 8.7). Weakness: CWE-1173. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Inappropriate implementation in Tint. Red Hat rates this important (CVSS 8.8). Weakness: CWE-131. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Insufficient validation of untrusted input in Feedback. Red Hat rates this important (CVSS 8). Weakness: CWE-1286. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Weak pseudo-random number generation can lead to information disclosure.. Red Hat rates this important (CVSS 8.2). Weakness: CWE-338. Affected package(s): devspaces/openvsx-rhel9:1779528224, spring-boot, devspaces/pluginregistry-rhel9:1779359423. Resolved in Red Hat advisory RHSA-2026:25089 — update the affected packages (`sudo dnf update`).
Arbitrary Code Execution and Session Hijacking via predictable temporary directory. Red Hat rates this moderate (CVSS 7). Weakness: CWE-341. Affected package(s): devspaces/openvsx-rhel9:1779528224, spring-boot, devspaces/pluginregistry-rhel9:1779359423. Resolved in Red Hat advisory RHSA-2026:25089 — update the affected packages (`sudo dnf update`).
Remote code execution via timing attack in DevTools remote secret comparison. Red Hat rates this moderate (CVSS 7.5). Weakness: CWE-208. Affected package(s): devspaces/openvsx-rhel9:1779528224, spring-boot, devspaces/pluginregistry-rhel9:1779359423. Resolved in Red Hat advisory RHSA-2026:25089 — update the affected packages (`sudo dnf update`).
Apache Camel camel-consul: Arbitrary code execution via deserialization of untrusted data. Red Hat rates this important (CVSS 8.8). Weakness: CWE-502. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Apache Camel camel-coap: Remote code execution via CoAP URI query parameter injection. Red Hat rates this important (CVSS 8.1). Weakness: CWE-915. Affected package(s): camel-coap. Resolved in Red Hat advisory RHSA-2026:17668 — update the affected packages (`sudo dnf update`).
Information disclosure and authentication bypass in embedded HTTP/management servers. Red Hat rates this important (CVSS 8.2). Weakness: CWE-551. Affected package(s): camel-http-starter, camel-http-common, camel-http-base, camel-http. Resolved in Red Hat advisory RHSA-2026:17668 — update the affected packages (`sudo dnf update`).
Apache Camel camel-infinispan: Arbitrary code execution via deserialization of untrusted data. Red Hat rates this important (CVSS 8.8). Weakness: CWE-502. Affected package(s): camel-infinispan, camel-infinispan-common, camel-infinispan-embedded. Resolved in Red Hat advisory RHSA-2026:22453 — update the affected packages (`sudo dnf update`).
Remote Code Execution via deserialization of JMS ObjectMessage. Red Hat rates this important (CVSS 7.5). Weakness: CWE-502. Affected package(s): camel-jms, camel-amqp. Resolved in Red Hat advisory RHSA-2026:22453 — update the affected packages (`sudo dnf update`).
Arbitrary code execution via insecure deserialization of crafted key files. Red Hat rates this important (CVSS 7.8). Weakness: CWE-502. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Apache Camel camel-mina: Arbitrary code execution via insecure deserialization. Red Hat rates this important (CVSS 8.8). Weakness: CWE-502. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Local privilege escalation via race condition and kernel heap overflow. Red Hat rates this important (CVSS 7). Weakness: CWE-368. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
CCO Mint-mode CredentialsRequest manifests grant account-wide IAM access beyond cluster scope on AWS. Red Hat rates this important (CVSS 7.2). Weakness: CWE-250. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Remote Code Execution due to incomplete fix bypass. Red Hat rates this important (CVSS 8.8). Weakness: CWE-88. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
validate nested VLAN headers. Red Hat rates this moderate (CVSS 7.1). Weakness: CWE-1285. Affected package(s): kernel, kernel-rt. Resolved in Red Hat advisory RHSA-2026:21745 — update the affected packages (`sudo dnf update`).
tekton-scheduler-rolebinding grants system:authenticated write access to Kueue and cert-manager resources. Red Hat rates this important (CVSS 7.1). Weakness: CWE-732. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
reject invalid MAC header for all packets. Red Hat rates this moderate (CVSS 7.1). Weakness: CWE-1287. Affected package(s): kernel, kernel-rt. Resolved in Red Hat advisory RHSA-2026:26462 — update the affected packages (`sudo dnf update`).