VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
1162 advisories across 32 monitored vendors.
Broken Object Level Authorization Leading to Cross-User AI Conversation Context Injection in Ansible Lightspeed API. Red Hat rates this moderate (CVSS 4.2). Weakness: CWE-283. Affected package(s): ansible-automation-platform. Resolved in Red Hat advisory RHSA-2026:13545 — update the affected packages (`sudo dnf update`).
Quadratic parsing complexity in golang.org/x/net/html. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-400. Affected package(s): cluster-observability-operator/logging-console-plugin-pf4-rhel9:1782839279, cluster-observability-operator/monitoring-console-plugin-pf5-rhel9:1782844225, golang1, cluster-observability-operator/monitoring-console-plugin-pf6-rhel9:1782839658, cluster-observability-operator/distributed-tracing-console-plugin-pf4-rhel9:1782840519, cluster-observability-operator/logging-console-plugin-pf5-rhel9:1782840539. Resolved in Red Hat advisory RHSA-2026:7385 — update the affected packages (`sudo dnf update`).
Infinite parsing loop in golang.org/x/net. Red Hat rates this moderate (CVSS 4.3). Weakness: CWE-835. Affected package(s): cluster-observability-operator/logging-console-plugin-pf4-rhel9:1782839279, cluster-observability-operator/monitoring-console-plugin-pf5-rhel9:1782844225, golang1, cluster-observability-operator/monitoring-console-plugin-pf6-rhel9:1782839658, multicluster-engine/hive-rhel9:1770693331, cluster-observability-operator/distributed-tracing-console-plugin-pf4-rhel9:1782840519. Resolved in Red Hat advisory RHSA-2026:7385 — update the affected packages (`sudo dnf update`).
Information disclosure via path traversal using specially crafted filenames. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-22. Affected package(s): golang1. Resolved in Red Hat advisory RHSA-2026:7385 — update the affected packages (`sudo dnf update`).
Denial of Service via unbounded brace range expansion. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-409. Affected package(s): nodejs:22, nodejs22, nodejs24, nodejs:24. Resolved in Red Hat advisory RHSA-2026:7350 — update the affected packages (`sudo dnf update`).
Data injection via man-in-the-middle attack on TLS proxied connections. Red Hat rates this moderate (CVSS 5.9). Weakness: CWE-349. Affected package(s): nginx-main, nginx, nginx:1.24, discovery/discovery-ui-rhel9:1773273070, nginx:1.26, rhui5/rhua-rhel9:1776868842. Resolved in Red Hat advisory RHSA-2026:6408 — update the affected packages (`sudo dnf update`).
Linux kernel: Denial of Service in authencesn due to too-short AAD. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-1284. Affected package(s): kernel. Resolved in Red Hat advisory RHSA-2026:19074 — update the affected packages (`sudo dnf update`).
Cross-site scripting vulnerability allows information disclosure via improper input neutralization. Red Hat rates this important (CVSS 4.6). Weakness: CWE-79. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Memory Leak Leading to Local Denial of Service in xmllint Interactive Shell. Red Hat rates this moderate (CVSS 6.2). Weakness: CWE-401. Affected package(s): libxml2-main. Resolved in Red Hat advisory RHSA-2026:7519 — update the affected packages (`sudo dnf update`).
fast-xml-parser has RangeError DoS Numeric Entities Bug. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-248. Affected package(s): odf4/ocs-metrics-exporter-rhel9:1781557202, odf4/mcg-core-rhel9:1781555645, odf4/odf-rhel9-operator:1781556958, advanced-cluster-security/rhacs-main-rhel8:1775594119, odf4/cephcsi-rhel9-operator:1781554936, odf4/ocs-client-console-rhel9:1781558423. Resolved in Red Hat advisory RHSA-2026:7110 — update the affected packages (`sudo dnf update`).
alsa-lib Topology Decoder Heap-based Buffer Overflow. Red Hat rates this moderate (CVSS 4.3). Weakness: CWE-787. Affected package(s): alsa-lib-main. Resolved in Red Hat advisory RHSA-2026:7401 — update the affected packages (`sudo dnf update`).
Handshake messages may be processed at the incorrect encryption level in crypto/tls. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-325. Affected package(s): golang1. Resolved in Red Hat advisory RHSA-2026:7385 — update the affected packages (`sudo dnf update`).
Local code execution and arbitrary file write via malicious module version strings. Red Hat rates this moderate (CVSS 6.7). Weakness: CWE-78. Affected package(s): golang1. Resolved in Red Hat advisory RHSA-2026:7385 — update the affected packages (`sudo dnf update`).
Arbitrary code execution or denial of service through crafted PKCS#12 file. Red Hat rates this moderate (CVSS 6.1). Weakness: CWE-233. Affected package(s): openssl, discovery/discovery-ui-rhel9:1769111774, costmanagement/costmanagement-metrics-rhel9-operator:1770836349, insights-proxy/insights-proxy-container-rhel9:1770740405, rhui5/rhua-rhel9:1773670137, rhui5/cds-rhel9:1773670073. Resolved in Red Hat advisory RHSA-2026:3228 — update the affected packages (`sudo dnf update`).
Denial of Service via NULL pointer dereference in QUIC protocol handling. Red Hat rates this low (CVSS 5.9). Weakness: CWE-476. Affected package(s): openssl, discovery/discovery-ui-rhel9:1769111774, costmanagement/costmanagement-metrics-rhel9-operator:1770836349, insights-proxy/insights-proxy-container-rhel9:1770740405, rhui5/rhua-rhel9:1773670137, rhui5/cds-rhel9:1773670073. Resolved in Red Hat advisory RHSA-2026:3228 — update the affected packages (`sudo dnf update`).
Data integrity bypass in `openssl dgst` command due to silent truncation. Red Hat rates this low (CVSS 5.5). Weakness: CWE-1284. Affected package(s): openssl, discovery/discovery-ui-rhel9:1769111774, costmanagement/costmanagement-metrics-rhel9-operator:1770836349, insights-proxy/insights-proxy-container-rhel9:1770740405, rhui5/rhua-rhel9:1773670137, rhui5/cds-rhel9:1773670073. Resolved in Red Hat advisory RHSA-2026:3228 — update the affected packages (`sudo dnf update`).
Denial of Service due to excessive memory allocation in TLS 1.3 certificate compression. Red Hat rates this low (CVSS 5.9). Weakness: CWE-770. Affected package(s): openssl, discovery/discovery-ui-rhel9:1769111774, costmanagement/costmanagement-metrics-rhel9-operator:1770836349, insights-proxy/insights-proxy-container-rhel9:1770740405, rhui5/rhua-rhel9:1773670137, rhui5/cds-rhel9:1773670073. Resolved in Red Hat advisory RHSA-2026:3228 — update the affected packages (`sudo dnf update`).
Denial of Service due to out-of-bounds write in BIO filter. Red Hat rates this low (CVSS 4.7). Weakness: CWE-787. Affected package(s): openssl, discovery/discovery-ui-rhel9:1769111774, costmanagement/costmanagement-metrics-rhel9-operator:1770836349, insights-proxy/insights-proxy-container-rhel9:1770740405, rhui5/rhua-rhel9:1773670137, rhui5/cds-rhel9:1773670073. Resolved in Red Hat advisory RHSA-2026:3228 — update the affected packages (`sudo dnf update`).
Information disclosure and data tampering via specific low-level OCB encryption/decryption calls. Red Hat rates this low (CVSS 4). Weakness: CWE-325. Affected package(s): openssl, discovery/discovery-ui-rhel9:1769111774, costmanagement/costmanagement-metrics-rhel9-operator:1770836349, insights-proxy/insights-proxy-container-rhel9:1770740405, rhui5/rhua-rhel9:1773670137, rhui5/cds-rhel9:1773670073. Resolved in Red Hat advisory RHSA-2026:3228 — update the affected packages (`sudo dnf update`).
Denial of Service via malformed PKCS#12 file processing. Red Hat rates this low (CVSS 6.5). Weakness: CWE-476. Affected package(s): openssl, discovery/discovery-ui-rhel9:1769111774, costmanagement/costmanagement-metrics-rhel9-operator:1770836349, insights-proxy/insights-proxy-container-rhel9:1770740405, rhui5/rhua-rhel9:1773670137, rhui5/cds-rhel9:1773670073. Resolved in Red Hat advisory RHSA-2026:3228 — update the affected packages (`sudo dnf update`).