VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
1162 advisories across 32 monitored vendors.
Denial of Service via malformed TimeStamp Response. Red Hat rates this low (CVSS 5.9). Weakness: CWE-843. Affected package(s): openssl, discovery/discovery-ui-rhel9:1769111774, costmanagement/costmanagement-metrics-rhel9-operator:1770836349, insights-proxy/insights-proxy-container-rhel9:1770740405, rhui5/rhua-rhel9:1773670137, rhui5/cds-rhel9:1773670073. Resolved in Red Hat advisory RHSA-2026:3228 — update the affected packages (`sudo dnf update`).
Denial of Service due to type confusion in PKCS#12 file processing. Red Hat rates this low (CVSS 5.5). Weakness: CWE-843. Affected package(s): openssl, discovery/discovery-ui-rhel9:1769111774, costmanagement/costmanagement-metrics-rhel9-operator:1770836349, insights-proxy/insights-proxy-container-rhel9:1770740405, rhui5/rhua-rhel9:1773670137, rhui5/cds-rhel9:1773670073. Resolved in Red Hat advisory RHSA-2026:3228 — update the affected packages (`sudo dnf update`).
Denial of Service via type confusion in PKCS#7 signature verification. Red Hat rates this low (CVSS 5.9). Weakness: CWE-1287. Affected package(s): openssl, discovery/discovery-ui-rhel9:1769111774, costmanagement/costmanagement-metrics-rhel9-operator:1770836349, insights-proxy/insights-proxy-container-rhel9:1770740405, rhui5/rhua-rhel9:1773670137, rhui5/cds-rhel9:1773670073. Resolved in Red Hat advisory RHSA-2026:3228 — update the affected packages (`sudo dnf update`).
Denial of Service via buffer overflow in png_create_read_struct() function. Red Hat rates this moderate (CVSS 5). Weakness: CWE-120. Affected package(s): libpng-main. Resolved in Red Hat advisory RHSA-2026:6732 — update the affected packages (`sudo dnf update`).
Denial of Service via buffer overflow in pngimage utility. Red Hat rates this moderate (CVSS 6.2). Weakness: CWE-120. Affected package(s): libpng-main. Resolved in Red Hat advisory RHSA-2026:6732 — update the affected packages (`sudo dnf update`).
Inappropriate implementation in Background Fetch API. Red Hat rates this important (CVSS 6.5). No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
use __kernel_read() for sleepable context. Red Hat rates this low (CVSS 4.7). Weakness: CWE-476. Affected package(s): kernel. Resolved in Red Hat advisory RHSA-2026:18134 — update the affected packages (`sudo dnf update`).
fix NULL pointer dereferences in nvmet_tcp_build_pdu_iovec. Red Hat rates this moderate (CVSS 6.4). Weakness: CWE-476. Affected package(s): kernel, kernel-rt. Resolved in Red Hat advisory RHSA-2026:2722 — update the affected packages (`sudo dnf update`).
Denial of Service via recursive CNAME record in mDNS response. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-674. Affected package(s): avahi-main. Resolved in Red Hat advisory RHSA-2026:11316 — update the affected packages (`sudo dnf update`).
Fix memory and information leak in smb3_reconfigure(). Red Hat rates this low (CVSS 5.5). Weakness: CWE-772. Affected package(s): kernel. Resolved in Red Hat advisory RHSA-2025:6966 — update the affected packages (`sudo dnf update`).
Denial of Service or Privilege Escalation via insecure temporary directory handling. Red Hat rates this moderate (CVSS 6.8). Weakness: CWE-379. Affected package(s): pytest-main. Resolved in Red Hat advisory RHSA-2026:8580 — update the affected packages (`sudo dnf update`).
Privilege Escalation or Data Exposure via Symlink Following. Red Hat rates this moderate (CVSS 6.8). Weakness: CWE-59. Affected package(s): opencryptoki. Resolved in Red Hat advisory RHSA-2026:4717 — update the affected packages (`sudo dnf update`).
Keycloak keycloak-services: Business logic flaw allows unauthorized token issuance for disabled users. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-840. Affected package(s): keycloak-services, rhbk/keycloak-operator-bundle:26.4.9, rhbk/keycloak-rhel9-operator:26.4, rhbk/keycloak-rhel9:26.4. Resolved in Red Hat advisory RHSA-2026:2366 — update the affected packages (`sudo dnf update`).
Header injection in http.cookies.Morsel in Python. Red Hat rates this moderate (CVSS 4.8). Weakness: CWE-93. Affected package(s): python3.12, rhui5/rhua-rhel9:1779798222, rhui5/installer-rhel9:1779798165. Resolved in Red Hat advisory RHSA-2026:19064 — update the affected packages (`sudo dnf update`).
Header injection via newlines in data URL mediatype in Python. Red Hat rates this moderate (CVSS 4.8). Weakness: CWE-93. Affected package(s): python3.12, python3, rhui5/rhua-rhel9:1779798222, rhui5/installer-rhel9:1779798165. Resolved in Red Hat advisory RHSA-2026:19064 — update the affected packages (`sudo dnf update`).
wsgiref.headers.Headers allows header newline injection in Python. Red Hat rates this moderate (CVSS 4.5). Weakness: CWE-74. Affected package(s): python3.11, python3, rhui5/haproxy-rhel9:1779798164, rhui5/rhua-rhel9:1773670137, rhui5/rhua-rhel9:1779798222, python3.12. Resolved in Red Hat advisory RHSA-2026:2128 — update the affected packages (`sudo dnf update`).
Improve JMX connections (Oracle CPU 2026-01). Red Hat rates this moderate (CVSS 4.8). Weakness: CWE-322. Affected package(s): java. Resolved in Red Hat advisory RHSA-2026:0895 — update the affected packages (`sudo dnf update`).
Improve HttpServer Request handling (Oracle CPU 2026-01). Red Hat rates this moderate (CVSS 6.1). Weakness: CWE-93. Affected package(s): java. Resolved in Red Hat advisory RHSA-2026:0895 — update the affected packages (`sudo dnf update`).
Missing character filtering in Python. Red Hat rates this moderate (CVSS 4.5). Weakness: CWE-140. Affected package(s): python3. Resolved in Red Hat advisory RHSA-2026:8824 — update the affected packages (`sudo dnf update`).
Nodejs filesystem permissions bypass. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-281. Affected package(s): nodejs25-main, nodejs22, nodejs:24, nodejs:22, nodejs24-main, nodejs20-main. Resolved in Red Hat advisory RHSA-2026:1842 — update the affected packages (`sudo dnf update`).