VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
1837 advisories across 32 monitored vendors.
Heap buffer overflow in PDFium. Red Hat rates this important (CVSS 8.8). Weakness: CWE-120. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Arbitrary code execution due to hardcoded `trust_remote_code=True`. Red Hat rates this important (CVSS 8.8). Weakness: CWE-829. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Arbitrary code execution via command injection in HyperV backend. Red Hat rates this important (CVSS 8.8). Weakness: CWE-94. Affected package(s): podman-main. Resolved in Red Hat advisory RHSA-2026:8211 — update the affected packages (`sudo dnf update`).
Code execution via crafted image due to use-after-free vulnerability. Red Hat rates this important (CVSS 7.8). Weakness: CWE-825. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
SMTP Command Injection and Header Injection via MailAddress parsing flaw. Red Hat rates this important (CVSS 7.5). Weakness: CWE-138. Affected package(s): dotnet8.0, dotnet10.0, dotnet8, dotnet9.0, dotnet9, dotnet10. Resolved in Red Hat advisory RHSA-2026:9080 — update the affected packages (`sudo dnf update`).
.NET: Security Bypass and Denial of Service Vulnerability. Red Hat rates this important (CVSS 7.5). Weakness: CWE-776. Affected package(s): dotnet8.0, dotnet10.0, dotnet8, dotnet9.0, dotnet9, dotnet10. Resolved in Red Hat advisory RHSA-2026:9080 — update the affected packages (`sudo dnf update`).
.NET: Denial of Service via stack overflow. Red Hat rates this important (CVSS 7.5). Weakness: CWE-787. Affected package(s): dotnet8.0, dotnet10.0, dotnet8, dotnet9.0, dotnet9, dotnet10. Resolved in Red Hat advisory RHSA-2026:9080 — update the affected packages (`sudo dnf update`).
.NET: Denial of Service via Infinite Recursion in XmlDecryptionTransform. Red Hat rates this important (CVSS 7.5). Weakness: CWE-776. Affected package(s): dotnet8.0, dotnet10.0, dotnet8, dotnet9.0, dotnet9, dotnet10. Resolved in Red Hat advisory RHSA-2026:9080 — update the affected packages (`sudo dnf update`).
.NET Framework: Denial of Service via Race Condition. Red Hat rates this important (CVSS 7.5). Weakness: CWE-366. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
HTTP request smuggling via chunked extension quoted-string parsing. Red Hat rates this important (CVSS 7.4). Weakness: CWE-444. Affected package(s): offline-knowledge-portal/rhokp-rhel9:1779996999, devspaces/pluginregistry-rhel9:1776717247, jmc, jetty-http, devspaces/openvsx-rhel9:1776716842. Resolved in Red Hat advisory RHSA-2026:25089 — update the affected packages (`sudo dnf update`).
Denial of Service via crafted JSON object causing hash collisions. Red Hat rates this important (CVSS 7.5). Weakness: CWE-341. Affected package(s): rhaiis/model-opt-cuda-rhel9:1782352950, rhaiis/vllm-spyre-rhel9:1782352919, jq, rhcos, rhaiis/model-opt-cuda-rhel9:1780681984, rhaiis/vllm-rocm-rhel9:1782353093. Resolved in Red Hat advisory RHSA-2026:26542 — update the affected packages (`sudo dnf update`).
out-of-bounds read in jv_parse_sized() on error formatting for non-NUL-terminated buffers. Red Hat rates this important (CVSS 8.2). Weakness: CWE-125. Affected package(s): rhaiis/model-opt-cuda-rhel9:1782352950, rhaiis/vllm-spyre-rhel9:1782352919, jq, rhcos, rhaiis/model-opt-cuda-rhel9:1780681984, rhaiis/vllm-rocm-rhel9:1782353093. Resolved in Red Hat advisory RHSA-2026:26542 — update the affected packages (`sudo dnf update`).
Arbitrary code execution via command injection in webbrowser.open() API. Red Hat rates this important (CVSS 7.1). Weakness: CWE-88. Affected package(s): python3.11, rhaiis/model-opt-cuda-rhel9:1782352950, rhaiis/vllm-spyre-rhel9:1782352919, rhpam, python3.9, python3.12. Resolved in Red Hat advisory RHSA-2026:35838 — update the affected packages (`sudo dnf update`).
Denial of Service via deeply nested XML file processing. Red Hat rates this important (CVSS 7.5). Weakness: CWE-776. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Denial of Service due to heap buffer overflow in MVG decoder. Red Hat rates this important (CVSS 7.5). Weakness: CWE-787. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Arbitrary code execution or information disclosure via use-after-free in decompression modules. Red Hat rates this important (CVSS 8.1). Weakness: CWE-825. Affected package(s): python3.11, rhaiis/model-opt-cuda-rhel9:1782352950, rhaiis/vllm-spyre-rhel9:1782352919, rhpam, python3.9, python3.12. Resolved in Red Hat advisory RHSA-2026:26187 — update the affected packages (`sudo dnf update`).
Command Execution via Option-Parsing Bypass in simple-git. Red Hat rates this important (CVSS 8.1). Weakness: CWE-78. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Arbitrary Code Execution Vulnerability Bypassing Safe Mode. Red Hat rates this important (CVSS 7.8). Weakness: CWE-502. Affected package(s): rhoai/odh-modelmesh-runtime-adapter-rhel9:1780394782. Resolved in Red Hat advisory RHSA-2026:24977 — update the affected packages (`sudo dnf update`).
Information disclosure via crafted DHCPv6 packets. Red Hat rates this important (CVSS 8.6). Weakness: CWE-130. Affected package(s): ovn25.03, ovn25.09, ovn, ovn23.09, ovn24.03, ovn23.06. Resolved in Red Hat advisory RHSA-2026:11702 — update the affected packages (`sudo dnf update`).
Remote Code Execution via Unsafe Deserialization. Red Hat rates this important (CVSS 7.5). Weakness: CWE-502. Affected package(s): camel-infinispan. Resolved in Red Hat advisory RHSA-2026:22453 — update the affected packages (`sudo dnf update`).