VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
1836 advisories across 32 monitored vendors.
Denial of service via malformed Content-ID URI in SIP multipart message. Red Hat rates this important (CVSS 7.5). Weakness: CWE-125. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Denial of Service via unbounded recursion in toFormData with deeply nested request data. Red Hat rates this important (CVSS 7.5). Weakness: CWE-770. Affected package(s): openshift-service-mesh/kiali-rhel9:1778164042, rhoai/odh-mod-arch-model-registry-rhel9:1780467147, openshift4/ose-agent-installer-ui-rhel9:1778539338, satellite/iop-advisor-frontend-rhel9:1781181673, openshift-service-mesh/kiali-rhel8:1778191378, rhacm2/console-rhel9:1780600823. Resolved in Red Hat advisory RHSA-2026:14937 — update the affected packages (`sudo dnf update`).
Authentication bypass due to prototype pollution of HTTP error handling. Red Hat rates this important (CVSS 8.2). Weakness: CWE-915. Affected package(s): openshift-service-mesh/kiali-rhel9:1778164042, rhoai/odh-mod-arch-model-registry-rhel9:1780467147, openshift4/ose-agent-installer-ui-rhel9:1778539338, satellite/iop-advisor-frontend-rhel9:1781181673, openshift-service-mesh/kiali-rhel8:1778191378, rhacm2/console-rhel9:1780600823. Resolved in Red Hat advisory RHSA-2026:14937 — update the affected packages (`sudo dnf update`).
NO_PROXY bypass via crafted URL. Red Hat rates this important (CVSS 7.2). Weakness: CWE-918. Affected package(s): openshift-service-mesh/kiali-rhel9:1778164042, rhoai/odh-mod-arch-model-registry-rhel9:1780467147, openshift4/ose-agent-installer-ui-rhel9:1778539338, satellite/iop-advisor-frontend-rhel9:1781181673, openshift-service-mesh/kiali-rhel8:1778191378, rhacm2/console-rhel9:1780600823. Resolved in Red Hat advisory RHSA-2026:14937 — update the affected packages (`sudo dnf update`).
Invisible JSON Response Tampering via Prototype Pollution Gadget. Red Hat rates this important (CVSS 7.4). Weakness: CWE-915. Affected package(s): openshift-service-mesh/kiali-rhel9:1778164042, network-observability/network-observability-console-plugin-rhel9:1780556069, satellite/iop-advisor-frontend-rhel9:1781181673, rhacm2/console-rhel9:1780600823, devspaces/code-rhel9:1779814592, multicluster-engine/console-mce-rhel9:1778383863. Resolved in Red Hat advisory RHSA-2026:26068 — update the affected packages (`sudo dnf update`).
Arbitrary HTTP header injection via prototype pollution. Red Hat rates this moderate (CVSS 7.4). Weakness: CWE-915. Affected package(s): openshift-service-mesh/kiali-rhel9:1778164042, cluster-observability-operator/monitoring-console-plugin-pf5-rhel9:1781116667, satellite/iop-advisor-frontend-rhel9:1781181673, rhacm2/console-rhel9:1780600823, cluster-observability-operator/distributed-tracing-console-plugin-pf6-rhel9:1781116387, quay/quay-rhel9:1779922205. Resolved in Red Hat advisory RHSA-2026:14937 — update the affected packages (`sudo dnf update`).
HTTP Transport Hijacking via Prototype Pollution. Red Hat rates this important (CVSS 7.4). Weakness: CWE-915. Affected package(s): openshift-service-mesh/kiali-rhel9:1778164042, rhoai/odh-mod-arch-model-registry-rhel9:1780467147, openshift4/ose-agent-installer-ui-rhel9:1778539338, satellite/iop-advisor-frontend-rhel9:1781181673, openshift-service-mesh/kiali-rhel8:1778191378, rhacm2/console-rhel9:1780600823. Resolved in Red Hat advisory RHSA-2026:14937 — update the affected packages (`sudo dnf update`).
Denial of Service via specific input sequence. Red Hat rates this moderate (CVSS 7.5). Weakness: CWE-835. Affected package(s): satellite/iop-advisor-frontend-rhel9:1781181673, satellite/iop-vulnerability-frontend-rhel9:1781032495. Resolved in Red Hat advisory RHSA-2026:26214 — update the affected packages (`sudo dnf update`).
Path traversal vulnerability allows arbitrary file write via malicious package extraction. Red Hat rates this important (CVSS 8.7). Weakness: CWE-22. Affected package(s): ansible-automation-platform. Resolved in Red Hat advisory RHSA-2026:24866 — update the affected packages (`sudo dnf update`).
Command injection allows arbitrary code execution via malicious tag files. Red Hat rates this moderate (CVSS 7.3). Weakness: CWE-78. Affected package(s): insights-proxy/insights-proxy-container-rhel9:1782890503, vim, discovery/discovery-ui-rhel9:1782756541. Resolved in Red Hat advisory RHSA-2026:28049 — update the affected packages (`sudo dnf update`).
Arbitrary code execution via expression parser. Red Hat rates this important (CVSS 8.8). Weakness: CWE-917. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Arbitrary code execution via improper input validation in admin console. Red Hat rates this important (CVSS 7.2). Weakness: CWE-94. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Arbitrary code execution via improper input validation in HTTP Discovery transport. Red Hat rates this important (CVSS 8.8). Weakness: CWE-94. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Denial of Service via large queries. Red Hat rates this important (CVSS 7.5). Weakness: CWE-770. Affected package(s): multicluster-globalhub/multicluster-globalhub-grafana-rhel9:1779925273, multicluster-globalhub/multicluster-globalhub-grafana-rhel9:1779212259, multicluster-globalhub/multicluster-globalhub-grafana-rhel9:1780167118, multicluster-globalhub/multicluster-globalhub-grafana-rhel9:1778867753, multicluster-globalhub/multicluster-globalhub-grafana-rhel9:1779579439. Resolved in Red Hat advisory RHSA-2026:21769 — update the affected packages (`sudo dnf update`).
Arbitrary code execution via deserialization bypass. Red Hat rates this important (CVSS 8.1). Weakness: CWE-502. Affected package(s): ruby, ruby4.0, ruby:3.3, ruby:4.0. Resolved in Red Hat advisory RHSA-2026:20614 — update the affected packages (`sudo dnf update`).
hold dev ref until after transport_finish NF_HOOK. Red Hat rates this important (CVSS 7). Weakness: CWE-826. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
fix RESPONSE authenticator parser OOB read. Red Hat rates this moderate (CVSS 7.1). Weakness: CWE-805. Affected package(s): kernel. Resolved in Red Hat advisory RHSA-2026:30129 — update the affected packages (`sudo dnf update`).
Fix RxGK token loading to check bounds. Red Hat rates this important (CVSS 7.3). Weakness: CWE-190. Affected package(s): kernel. Resolved in Red Hat advisory RHSA-2026:27288 — update the affected packages (`sudo dnf update`).
validate minimum block_len in ncm_unwrap_ntb(). Red Hat rates this important (CVSS 7). Weakness: CWE-191. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
fix OOB reads parsing symlink error response. Red Hat rates this moderate (CVSS 7.1). Weakness: CWE-125. Affected package(s): kernel-rt, kernel. Resolved in Red Hat advisory RHSA-2026:25120 — update the affected packages (`sudo dnf update`).