VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
1167 advisories across 32 monitored vendors.
wsgiref.headers.Headers allows header newline injection in Python. Red Hat rates this moderate (CVSS 4.5). Weakness: CWE-74. Affected package(s): python3.11, python3, rhui5/haproxy-rhel9:1779798164, rhui5/rhua-rhel9:1773670137, rhui5/rhua-rhel9:1779798222, python3.12. Resolved in Red Hat advisory RHSA-2026:2128 — update the affected packages (`sudo dnf update`).
Improve JMX connections (Oracle CPU 2026-01). Red Hat rates this moderate (CVSS 4.8). Weakness: CWE-322. Affected package(s): java. Resolved in Red Hat advisory RHSA-2026:0895 — update the affected packages (`sudo dnf update`).
Improve HttpServer Request handling (Oracle CPU 2026-01). Red Hat rates this moderate (CVSS 6.1). Weakness: CWE-93. Affected package(s): java. Resolved in Red Hat advisory RHSA-2026:0895 — update the affected packages (`sudo dnf update`).
Missing character filtering in Python. Red Hat rates this moderate (CVSS 4.5). Weakness: CWE-140. Affected package(s): python3. Resolved in Red Hat advisory RHSA-2026:8824 — update the affected packages (`sudo dnf update`).
Nodejs filesystem permissions bypass. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-281. Affected package(s): nodejs25-main, nodejs22, nodejs:24, nodejs:22, nodejs24-main, nodejs20-main. Resolved in Red Hat advisory RHSA-2026:1842 — update the affected packages (`sudo dnf update`).
Nodejs denial of service. Red Hat rates this moderate (CVSS 5.9). Weakness: CWE-248. Affected package(s): nodejs22, nodejs:20, nodejs:22, nodejs25-main, nodejs:24, nodejs24-main. Resolved in Red Hat advisory RHSA-2026:1842 — update the affected packages (`sudo dnf update`).
Nodejs network segmentation bypass. Red Hat rates this moderate (CVSS 5.8). Weakness: CWE-281. Affected package(s): nodejs20-main, nodejs25-main, nodejs22-main, nodejs24-main. Resolved in Red Hat advisory RHSA-2026:6402 — update the affected packages (`sudo dnf update`).
Nodejs denial of service. Red Hat rates this moderate (CVSS 5.9). Weakness: CWE-770. Affected package(s): nodejs22, nodejs:20, nodejs:22, nodejs25-main, nodejs:24, nodejs24-main. Resolved in Red Hat advisory RHSA-2026:1842 — update the affected packages (`sudo dnf update`).
Nodejs memory leak. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-770. Affected package(s): nodejs20-main, nodejs25-main, nodejs22-main, nodejs24-main. Resolved in Red Hat advisory RHSA-2026:7657 — update the affected packages (`sudo dnf update`).
wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory. Red Hat rates this low (CVSS 5.9). Weakness: CWE-908. Affected package(s): insights-proxy/insights-proxy-container-rhel9:1773685509, rhui5/rhua-rhel9:1773670137, glibc, discovery/discovery-server-rhel9:1773273243, discovery/discovery-ui-rhel9:1773273070, glibc-main. Resolved in Red Hat advisory RHSA-2026:18139 — update the affected packages (`sudo dnf update`).
Improper use of Pybind. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-295. Affected package(s): ceph, rhceph/rhceph. Resolved in Red Hat advisory RHSA-2026:2711 — update the affected packages (`sudo dnf update`).
Optimizer unspecified vulnerability (CPU Jan 2026). Red Hat rates this moderate (CVSS 4.9). Affected package(s): mysql8.4, mysql:8.0, mysql, mysql:8.4. Resolved in Red Hat advisory RHSA-2026:5580 — update the affected packages (`sudo dnf update`).
InnoDB unspecified vulnerability (CPU Jan 2026). Red Hat rates this moderate (CVSS 4.9). Affected package(s): mysql8.4, mysql:8.0, mysql, mysql:8.4. Resolved in Red Hat advisory RHSA-2026:5580 — update the affected packages (`sudo dnf update`).
Optimizer unspecified vulnerability (CPU Jan 2026). Red Hat rates this moderate (CVSS 6.5). Affected package(s): mariadb:10.11, mysql8.4, mariadb10.11, mysql:8.0, mysql, mysql:8.4. Resolved in Red Hat advisory RHSA-2026:0334 — update the affected packages (`sudo dnf update`).
DDL unspecified vulnerability (CPU Jan 2026). Red Hat rates this moderate (CVSS 4.9). Affected package(s): mysql8.4, mysql:8.0, mysql, mysql:8.4. Resolved in Red Hat advisory RHSA-2026:5580 — update the affected packages (`sudo dnf update`).
Thread Pooling unspecified vulnerability (CPU Jan 2026). Red Hat rates this moderate (CVSS 4.9). Affected package(s): mysql8.4, mysql:8.0, mysql, mysql:8.4. Resolved in Red Hat advisory RHSA-2026:5580 — update the affected packages (`sudo dnf update`).
Denial of Service via FastGlyph parsing buffer overflow. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-122. Affected package(s): freerdp. Resolved in Red Hat advisory RHSA-2026:6958 — update the affected packages (`sudo dnf update`).
quickjs-ng quickjs: Heap-based buffer overflow leading to information disclosure or denial of service. Red Hat rates this important (CVSS 6.3). Weakness: CWE-787. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Use-after-free vulnerability in Atomics Ops Handler. Red Hat rates this important (CVSS 6.3). Weakness: CWE-825. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Blind Server-Side Request Forgery (SSRF) in Keycloak OIDC Dynamic Client Registration via jwks_uri. Red Hat rates this moderate (CVSS 5.8). Weakness: CWE-918. Affected package(s): rhbk/keycloak-operator-bundle:26.4.11, rhbk/keycloak-rhel9, rhbk/keycloak-rhel9-operator:26.4, rhbk/keycloak-rhel9:26.4. Resolved in Red Hat advisory RHSA-2026:6478 — update the affected packages (`sudo dnf update`).