VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
Critical/high still unreviewed, or CISA KEV listed
Unauthorized ConfigMap manipulation due to missing authorization. Red Hat rates this important (CVSS 8.3). Weakness: CWE-425. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
NSEC bitmap parsing infinite loop. Red Hat rates this important (CVSS 7.5). Weakness: CWE-835. Affected package(s): dnsmasq. Resolved in Red Hat advisory RHSA-2026:20589 — update the affected packages (`sudo dnf update`).
RRSIG rdlen underflow leading to heap OOB read. Red Hat rates this important (CVSS 7.5). Weakness: CWE-125. Affected package(s): dnsmasq. Resolved in Red Hat advisory RHSA-2026:20589 — update the affected packages (`sudo dnf update`).
DHCPv6 CLID buffer overflow in helper process. Red Hat rates this important (CVSS 8.8). Weakness: CWE-122. Affected package(s): dnsmasq. Resolved in Red Hat advisory RHSA-2026:20589 — update the affected packages (`sudo dnf update`).
extract_addresses() OOB read via malformed rdlen. Red Hat rates this important (CVSS 7.5). Weakness: CWE-125. Affected package(s): dnsmasq. Resolved in Red Hat advisory RHSA-2026:19158 — update the affected packages (`sudo dnf update`).
Arbitrary code execution via unsandboxed prompt templates. Red Hat rates this important (CVSS 8.8). Weakness: CWE-94. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Authenticated command execution via MCP stdio test endpoints. Red Hat rates this important (CVSS 8.8). Weakness: CWE-78. Affected package(s): rhoai/odh-llama-stack-core-rhel9:1781826406, rhoai/odh-llama-stack-core-rhel9:1782310008, rhoai/odh-trustyai-garak-lls-provider-dsp-rhel9:1781622627. Resolved in Red Hat advisory RHSA-2026:28960 — update the affected packages (`sudo dnf update`).
Prototype pollution allows information disclosure and request manipulation. Red Hat rates this important (CVSS 7.4). Weakness: CWE-915. Affected package(s): openshift-service-mesh/kiali-ossmc-rhel9:1782201851, advanced-cluster-security/rhacs-main-rhel8:1779371594, advanced-cluster-security/rhacs-main-rhel8:1779293013, openshift-service-mesh/kiali-rhel9:1782201812. Resolved in Red Hat advisory RHSA-2026:20889 — update the affected packages (`sudo dnf update`).
caam - fix overflow on long hmac keys. Red Hat rates this moderate (CVSS 7.1). Weakness: CWE-125. Affected package(s): kernel. Resolved in Red Hat advisory RHSA-2026:27288 — update the affected packages (`sudo dnf update`).
clear page->private in free_pages_prepare(). Red Hat rates this moderate (CVSS 7). Weakness: CWE-909. Affected package(s): kernel, kernel-rt. Resolved in Red Hat advisory RHSA-2026:26462 — update the affected packages (`sudo dnf update`).
strictly check for maximum number of actions. Red Hat rates this important (CVSS 7.8). Weakness: CWE-770. Affected package(s): kernel, kernel-rt. Resolved in Red Hat advisory RHSA-2026:34094 — update the affected packages (`sudo dnf update`).
Fix UAF in le_read_features_complete. Red Hat rates this moderate (CVSS 7). Weakness: CWE-825. Affected package(s): kernel. Resolved in Red Hat advisory RHSA-2026:23329 — update the affected packages (`sudo dnf update`).
prevent schema length wraparound in trace fill. Red Hat rates this moderate (CVSS 7). Weakness: CWE-787. Affected package(s): kernel. Resolved in Red Hat advisory RHSA-2026:33215 — update the affected packages (`sudo dnf update`).
Completely fix fcport double free. Red Hat rates this moderate (CVSS 7.1). Weakness: CWE-1341. Affected package(s): kernel. Resolved in Red Hat advisory RHSA-2026:34094 — update the affected packages (`sudo dnf update`).
Information disclosure of Kubernetes Secret data via Server-Side Apply dry-run mechanism. Red Hat rates this important (CVSS 7.7). Weakness: CWE-201. Affected package(s): openshift-gitops. Resolved in Red Hat advisory RHSA-2026:20943 — update the affected packages (`sudo dnf update`).
Go net/mail: Denial of Service via crafted email inputs. Red Hat rates this important (CVSS 7.5). Weakness: CWE-606. Affected package(s): openshift-service-mesh/istio-proxyv2-rhel9:1782310747, openshift-service-mesh/istio-proxyv2-rhel9:1782303211, rhdh/rhdh-rhel9-operator:1782767215, openshift-service-mesh/istio-cni-rhel9:1782222217, openshift-service-mesh/istio-pilot-rhel9:1782223341, openshift-service-mesh/istio-pilot-rhel9:1782223138. Resolved in Red Hat advisory RHSA-2026:33120 — update the affected packages (`sudo dnf update`).
Go net package: Denial of Service via long CNAME response in LookupCNAME. Red Hat rates this important (CVSS 7.5). Weakness: CWE-1341. Affected package(s): golang-github-openprinting-ipp-usb, opentelemetry-collector, golang1, openshift-service-mesh/istio-proxyv2-rhel9:1782310747, openshift-service-mesh/istio-proxyv2-rhel9:1782303211, rhdh/rhdh-rhel9-operator:1782767215. Resolved in Red Hat advisory RHSA-2026:23262 — update the affected packages (`sudo dnf update`).
Denial of Service via pathological email address parsing. Red Hat rates this important (CVSS 7.5). Weakness: CWE-1046. Affected package(s): openshift-service-mesh/istio-proxyv2-rhel9:1782310747, openshift-service-mesh/istio-proxyv2-rhel9:1782303211, rhdh/rhdh-rhel9-operator:1782767215, openshift-service-mesh/istio-cni-rhel9:1782222217, openshift-service-mesh/istio-pilot-rhel9:1782223341, openshift-service-mesh/istio-pilot-rhel9:1782223138. Resolved in Red Hat advisory RHSA-2026:33120 — update the affected packages (`sudo dnf update`).
Denial of Service via malformed SETTINGS_MAX_FRAME_SIZE frame. Red Hat rates this important (CVSS 7.5). Weakness: CWE-606. Affected package(s): golang1, cluster-observability-operator/distributed-tracing-console-plugin-pf5-rhel9:1782839981, openshift-service-mesh/istio-cni-rhel9:1782222217, cluster-observability-operator/distributed-tracing-console-plugin-pf4-rhel9:1782840519, openshift-service-mesh/istio-pilot-rhel9:1782223138, openshift-service-mesh/istio-pilot-rhel9:1782222366. Resolved in Red Hat advisory RHSA-2026:23262 — update the affected packages (`sudo dnf update`).
Other issue in the WebRTC component. Red Hat rates this important (CVSS 7.5). Affected package(s): firefox. Resolved in Red Hat advisory RHSA-2026:24509 — update the affected packages (`sudo dnf update`).