VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
1837 advisories across 32 monitored vendors.
Denial of Service via integer overflow in join message validation. Red Hat rates this moderate (CVSS 7.5). Weakness: CWE-190. Affected package(s): corosync. Resolved in Red Hat advisory RHSA-2026:19043 — update the affected packages (`sudo dnf update`).
Denial of Service and information disclosure via crafted UDP packet. Red Hat rates this moderate (CVSS 8.2). Weakness: CWE-253. Affected package(s): corosync. Resolved in Red Hat advisory RHSA-2026:19043 — update the affected packages (`sudo dnf update`).
Linux kernel KVM: Privilege escalation or denial of service due to improper shadow page table entry handling. Red Hat rates this important (CVSS 8.1). Weakness: CWE-416. Affected package(s): kernel, kernel-rt. Resolved in Red Hat advisory RHSA-2026:13936 — update the affected packages (`sudo dnf update`).
Unauthorized code execution and information disclosure through Lua bytecode plugins. Red Hat rates this important (CVSS 8.8). Weakness: CWE-94. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Mbed TLS and TF-PSA-Crypto: Shared secret manipulation via improper FFDH input validation. Red Hat rates this important (CVSS 7.5). Weakness: CWE-1287. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Arbitrary code execution via untrusted input in template imports. Red Hat rates this important (CVSS 8.1). Weakness: CWE-94. Affected package(s): odf4/ocs-client-console-rhel9:1778050558, odf4/mcg-core-rhel9:1776403991, cluster-observability-operator/troubleshooting-panel-console-plugin-pf6-rhel9:1782839996, odf4/ocs-client-rhel9-operator:1778049818, odf4/odf-cloudnative-pg-rhel9-operator:1776406131, satellite/iop-remediations-rhel9:1776194798. Resolved in Red Hat advisory RHSA-2026:29795 — update the affected packages (`sudo dnf update`).
path traversal in legacy load_prompt functions in langchain-core. Red Hat rates this important (CVSS 7.5). Weakness: CWE-22. Affected package(s): ansible-automation-platform. Resolved in Red Hat advisory RHSA-2026:24766 — update the affected packages (`sudo dnf update`).
Privilege validation bypass during plugin installation. Red Hat rates this important (CVSS 8.4). Weakness: CWE-266. Affected package(s): multicluster-globalhub/multicluster-globalhub-grafana-rhel9:1780167118, multicluster-globalhub/multicluster-globalhub-grafana-rhel9:1778867753, multicluster-globalhub/multicluster-globalhub-grafana-rhel9:1779579439. Resolved in Red Hat advisory RHSA-2026:21769 — update the affected packages (`sudo dnf update`).
Authorization bypass vulnerability. Red Hat rates this moderate (CVSS 8.4). Weakness: CWE-807. Affected package(s): multicluster-globalhub/multicluster-globalhub-grafana-rhel9:1779925273, multicluster-globalhub/multicluster-globalhub-grafana-rhel9:1780167118, multicluster-globalhub/multicluster-globalhub-grafana-rhel9:1778867753, multicluster-globalhub/multicluster-globalhub-grafana-rhel9:1779579439. Resolved in Red Hat advisory RHSA-2026:21769 — update the affected packages (`sudo dnf update`).
Denial of Service via heap-based buffer overflow when processing a specially crafted JPEG image. Red Hat rates this important (CVSS 7.5). Weakness: CWE-122. Affected package(s): gdk-pixbuf2, rhaiis/vllm-rocm-rhel9:1778244531, rhaiis/vllm-cuda-rhel9:1779223654, rhaiis/vllm-cuda-rhel9:1778274666, rhaiis/vllm-spyre-rhel9:1778244546, rhaiis/model-opt-cuda-rhel9:1780681984. Resolved in Red Hat advisory RHSA-2026:10707 — update the affected packages (`sudo dnf update`).
Inappropriate implementation in ANGLE. Red Hat rates this important (CVSS 7.4). Weakness: CWE-346. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Memory corruption vulnerability allows denial of service or arbitrary code execution. Red Hat rates this moderate (CVSS 7.8). Weakness: CWE-131. Affected package(s): freerdp. Resolved in Red Hat advisory RHSA-2026:16014 — update the affected packages (`sudo dnf update`).
Arbitrary code execution or denial of service via H.264 codec memory allocation vulnerability. Red Hat rates this important (CVSS 7.5). Weakness: CWE-131. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Heap buffer overflow allows arbitrary code execution via crafted pixel data. Red Hat rates this important (CVSS 7.5). Weakness: CWE-131. Affected package(s): freerdp. Resolved in Red Hat advisory RHSA-2026:8945 — update the affected packages (`sudo dnf update`).
Denial of Service via specially crafted Remote Desktop Protocol messages. Red Hat rates this important (CVSS 7.5). Weakness: CWE-190. Affected package(s): freerdp. Resolved in Red Hat advisory RHSA-2026:8945 — update the affected packages (`sudo dnf update`).
Denial of Service due to crafted HTTP `__proto__` header. Red Hat rates this important (CVSS 7.5). Weakness: CWE-843. Affected package(s): nodejs:20, nodejs:22, nodejs22, nodejs24, nodejs:24. Resolved in Red Hat advisory RHSA-2026:7350 — update the affected packages (`sudo dnf update`).
Arbitrary code execution via crafted file. Red Hat rates this important (CVSS 8.6). Weakness: CWE-917. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Arbitrary code execution via integer overflow in ISO9660 image processing. Red Hat rates this moderate (CVSS 7.5). Weakness: CWE-190. Affected package(s): libarchive, rhcos, rhpam, rhaiis/vllm-rocm-rhel9:1778244531, rhaiis/vllm-cuda-rhel9:1778274666, rhui5/cds-kubernetes-tp-rhel9:1777459441. Resolved in Red Hat advisory RHSA-2026:20040 — update the affected packages (`sudo dnf update`).
Improper authorization allows credential disclosure and GitLab app impersonation. Red Hat rates this important (CVSS 8.1). Weakness: CWE-233. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Processing maliciously crafted web content may lead to an unexpected process crash. Red Hat rates this important (CVSS 8.8). Weakness: CWE-120. Affected package(s): webkit2gtk3, webkitgtk4. Resolved in Red Hat advisory RHSA-2026:19206 — update the affected packages (`sudo dnf update`).