VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
Advisories the vendor has revised
Denial of Service due to incorrect PAX path handling. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-843.
Denial of Service via crafted archive with NUL bytes in metadata. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-170.
Arbitrary IPMI command execution via send_raw deployment step. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-862.
Remote code execution or denial of service via use-after-free race condition. Red Hat rates this moderate (CVSS 5.6). Weakness: CWE-364.
Brute-force attacks facilitated due to insufficient authentication delay. Red Hat rates this moderate (CVSS 6.5). Weakness: CWE-307. Red Hat lists fixing advisory RHSA-2026:37382 with package openssh-main-10.4p1-1.hum1.
Denial of Service via excessive GSSAPI authentication attempts. Red Hat rates this moderate (CVSS 5.9). Weakness: CWE-307. Red Hat lists fixing advisory RHSA-2026:37382 with package openssh-main-10.4p1-1.hum1.
OpenSSH sshd: Security bypass due to incorrect handling of forwarding and tunneling options. Red Hat rates this moderate (CVSS 5.9). Weakness: CWE-358. Red Hat lists fixing advisory RHSA-2026:37382 with package openssh-main-10.4p1-1.hum1.
Undocumented GSSAPIStrictAcceptorCheck behavior impacts security in Windows Active Directory. Red Hat rates this moderate (CVSS 4.8). Weakness: CWE-909. Red Hat lists fixing advisory RHSA-2026:37382 with package openssh-main-10.4p1-1.hum1.
SFTP security bypass due to command-line argument parsing flaw. Red Hat rates this moderate (CVSS 5.4). Weakness: CWE-88. Red Hat lists fixing advisory RHSA-2026:37382 with package openssh-main-10.4p1-1.hum1.
`scp` file misplacement vulnerability during remote copy. Red Hat rates this moderate (CVSS 4.6). Weakness: CWE-22.
sftp client allows attacker to control downloaded file location. Red Hat rates this moderate (CVSS 5.4). Weakness: CWE-22. Red Hat lists fixing advisory RHSA-2026:37382 with package openssh-main-10.4p1-1.hum1.
GLX contextTags Use-After-Free in CommonMakeCurrent(). Red Hat rates this important (CVSS 6.5). Weakness: CWE-825. Red Hat lists fixing advisory RHSA-2026:38490 with package xorg-x11-server-Xwayland-0:24.1.9-4.el9_8.3, xorg-x11-server-Xwayland-0:24.1.9-4.el10_2.3. Affected products named by the advisory: Red Hat Enterprise Linux 9; Red Hat Enterprise Linux 1.
Unauthenticated access to AI guardrails and orchestrator APIs. Red Hat rates this moderate (CVSS 6.3).
Gorch port bypass when auth IS enabled. Red Hat rates this moderate (CVSS 6.3). Weakness: CWE-306.
DBI for Perl: Out-of-bounds read in SQL comment processing. Red Hat rates this moderate (CVSS 5). Weakness: CWE-125.
Heap buffer overflow via server-supplied filename leads to memory corruption. Red Hat rates this moderate (CVSS 5.9). Weakness: CWE-122.
Static initialization vector in AES-CBC/3DES-CBC attribute encryption. Red Hat rates this moderate (CVSS 4.4). Weakness: CWE-329.
Information disclosure via heap buffer over-read in GDALRaster. Red Hat rates this low (CVSS 4.8). Weakness: CWE-126.
heap-buffer-overflow in DN normalization via quoted multivalued RDN. Red Hat rates this moderate (CVSS 5.3). Weakness: CWE-122.
In Apache Airflow before 3.3.0, the REST API task-instance detail and list endpoints returned a deferred task's trigger kwargs without masking. When a deferred operator passed a secret (for example a provider API key) into its trigger, any authenticated user with DAG-scoped task-instance read access for that DAG could read that secret in clear text while the task was deferred. Users should upgrade to apache-airflow 3.3.0 or later, which masks sensitive values in trigger kwargs returned by the API.