VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
1857 advisories across 32 monitored vendors.
Unauthenticated Arbitrary File Read. Red Hat rates this important (CVSS 7.5). Weakness: CWE-22. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Resource exhaustion via WebSocket endpoint. Red Hat rates this important (CVSS 7.5). Weakness: CWE-770. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Authentication bypass via misconfigured Health Group additional path. Red Hat rates this moderate (CVSS 8.2). Weakness: CWE-305. Affected package(s): devspaces/pluginregistry-rhel9:1776717247, spring-boot, devspaces/openvsx-rhel9:1776716842. Resolved in Red Hat advisory RHSA-2026:25089 — update the affected packages (`sudo dnf update`).
Arbitrary file write via path traversal vulnerability. Red Hat rates this important (CVSS 8.2). Weakness: CWE-22. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
XML::Parser: Memory corruption via deeply nested XML files. Red Hat rates this important (CVSS 8.8). Weakness: CWE-193. Affected package(s): perl-XML-Parser. Resolved in Red Hat advisory RHSA-2026:8608 — update the affected packages (`sudo dnf update`).
Information disclosure via heap out-of-bounds read in RAR archive processing. Red Hat rates this important (CVSS 7.5). Weakness: CWE-125. Affected package(s): libarchive, rhcos, rhpam, rhaiis/vllm-rocm-rhel9:1778244531, rhaiis/vllm-cuda-rhel9:1778274666, rhui5/cds-kubernetes-tp-rhel9:1777459441. Resolved in Red Hat advisory RHSA-2026:20040 — update the affected packages (`sudo dnf update`).
Buffer overflow vulnerability may lead to arbitrary code execution.. Red Hat rates this moderate (CVSS 7.8). Weakness: CWE-120. Affected package(s): ncurses, ncurses-main. Resolved in Red Hat advisory RHSA-2026:5913 — update the affected packages (`sudo dnf update`).
Path Traversal Vulnerability in mlflow/mlflow. Red Hat rates this important (CVSS 8.1). Weakness: CWE-22. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Denial of Service via out-of-bounds write in NewXMLTree method. Red Hat rates this moderate (CVSS 7.5). Weakness: CWE-787. Affected package(s): ImageMagick. Resolved in Red Hat advisory RHSA-2026:17618 — update the affected packages (`sudo dnf update`).
Arbitrary code execution via crafted CRAM file. Red Hat rates this important (CVSS 7.3). Weakness: CWE-193. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Heap buffer overflow leading to arbitrary code execution via crafted CRAM file. Red Hat rates this important (CVSS 7.3). Weakness: CWE-1284. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Denial of Service via malformed HTTP/2 frames after session termination. Red Hat rates this important (CVSS 7.5). Weakness: CWE-617. Affected package(s): rhcos, nodejs:20, rhpam, rhaiis/vllm-cuda-rhel9:1778274666, nghttp2, rhui5/haproxy-rhel9:1776868744. Resolved in Red Hat advisory RHSA-2026:20040 — update the affected packages (`sudo dnf update`).
Arbitrary file write and potential code execution through crafted archives. Red Hat rates this important (CVSS 8.8). Weakness: CWE-22. Affected package(s): ocp-tools. Resolved in Red Hat advisory RHSA-2026:10209 — update the affected packages (`sudo dnf update`).
Cross site scripting via unsanitized output options. Red Hat rates this important (CVSS 8.1). Weakness: CWE-79. Affected package(s): advanced-cluster-security/rhacs-main-rhel8:1775594119, advanced-cluster-security/rhacs-main-rhel8:1775594284. Resolved in Red Hat advisory RHSA-2026:7110 — update the affected packages (`sudo dnf update`).
Arbitrary code execution via unsanitized input in createAnnotation method. Red Hat rates this important (CVSS 8.1). Weakness: CWE-94. Affected package(s): advanced-cluster-security/rhacs-main-rhel8:1775594119, advanced-cluster-security/rhacs-main-rhel8:1775594284. Resolved in Red Hat advisory RHSA-2026:7110 — update the affected packages (`sudo dnf update`).
pyasn1 Vulnerable to Denial of Service via Unbounded Recursion. Red Hat rates this important (CVSS 7.5). Weakness: CWE-835. Affected package(s): ansible-automation-platform, rhelai3/bootc-rocm-rhel9:1778666124, rhaiis/vllm-rocm-rhel9:1778244531, quay/quay-rhel8:1775169155, quay/quay-rhel8:1775253092, fence-agents. Resolved in Red Hat advisory RHSA-2026:13508 — update the affected packages (`sudo dnf update`).
Untrusted Model Repository Warnings Suppressed. Red Hat rates this important (CVSS 8.6). Weakness: CWE-829. Affected package(s): rhoai/odh-pipeline-runtime-pytorch-cuda-py312-rhel9:1780078429, rhoai/odh-pipeline-runtime-tensorflow-rocm-py312-rhel9:1780417775, rhoai/odh-workbench-codeserver-datascience-cpu-py312-rhel9:1780078388, rhoai/odh-workbench-jupyter-trustyai-cpu-py312-rhel9:1780069222, rhoai/odh-pipeline-runtime-pytorch-rocm-py312-rhel9:1780078632, rhoai/odh-pipeline-runtime-datascience-cpu-py312-rhel9:1780078312. Resolved in Red Hat advisory RHSA-2026:24977 — update the affected packages (`sudo dnf update`).
Linux kernel: Use-after-free in traffic control (act_ct) may lead to denial of service or privilege escalation. Red Hat rates this moderate (CVSS 7). Weakness: CWE-416. Affected package(s): kernel, kernel-rt. Resolved in Red Hat advisory RHSA-2026:19569 — update the affected packages (`sudo dnf update`).
Denial of Service via buffer overflow in EGifGCBToExtension. Red Hat rates this important (CVSS 7.5). Weakness: CWE-787. Affected package(s): giflib. Resolved in Red Hat advisory RHSA-2026:33503 — update the affected packages (`sudo dnf update`).
Processing maliciously crafted web content may lead to memory corruption. Red Hat rates this important (CVSS 8.8). Weakness: CWE-120. Affected package(s): webkit2gtk3, webkitgtk4. Resolved in Red Hat advisory RHSA-2024:9679 — update the affected packages (`sudo dnf update`).