VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
See exactly what is measuredComplete feed
1861 advisories across 32 monitored vendors.
Arbitrary file writes from unsanitized user input in cache file name. Red Hat rates this important (CVSS 7.5). Weakness: CWE-22. Affected package(s): ansible-automation-platform, rhoai/odh-workbench-jupyter-pytorch-cuda-py312-rhel9:1776319179, rhoai/odh-workbench-jupyter-trustyai-cpu-py312-rhel9:1776319275, rhoai/odh-workbench-jupyter-pytorch-rocm-py312-rhel9:1776318795, rhoai/odh-workbench-jupyter-datascience-cpu-py312-rhel9:1776319193, rhoai/odh-workbench-jupyter-pytorch-llmcompressor-cuda-py312-rhel9:1776319185. Resolved in Red Hat advisory RHSA-2026:10184 — update the affected packages (`sudo dnf update`).
Information disclosure or denial of service due to uninitialized variables. Red Hat rates this important (CVSS 8.2). Weakness: CWE-824. Affected package(s): openssh, rhcos, rhpam, rhaiis/vllm-rocm-rhel9:1778244531, rhaiis/vllm-cuda-rhel9:1778274666, rhui5/installer-rhel9:1776868772. Resolved in Red Hat advisory RHSA-2026:20040 — update the affected packages (`sudo dnf update`).
Unbounded recursion DoS in parse() revive phase. Red Hat rates this important (CVSS 7.5). Weakness: CWE-770. Affected package(s): rhdh/rhdh-hub-rhel9:1777903262, devspaces/dashboard-rhel9:1779341289, cluster-observability-operator/logging-console-plugin-pf4-rhel9:1782839279, cluster-observability-operator/troubleshooting-panel-console-plugin-pf6-rhel9:1782839996, rhoai/odh-dashboard-rhel8:1774282136, cluster-observability-operator/logging-console-plugin-pf5-rhel9:1782840539. Resolved in Red Hat advisory RHSA-2026:13826 — update the affected packages (`sudo dnf update`).
denial of service via maliciously crafted HTTP or multipart segment headers. Red Hat rates this important (CVSS 7.5). Weakness: CWE-1333. Affected package(s): rhaiis/vllm-cuda-rhel9:1774351144, rhaiis/model-opt-cuda-rhel9:1774547384, rhoai/odh-caikit-tgis-serving-rhel9:1776247907, rhaiis/vllm-rocm-rhel9:1775252598, rhoai/odh-feature-server-rhel9:1776338381. Resolved in Red Hat advisory RHSA-2026:10184 — update the affected packages (`sudo dnf update`).
Out of bounds write in Skia. Red Hat rates this important (CVSS 8.8). No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Inappropriate implementation in V8. Red Hat rates this important (CVSS 8.8). No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Denial of Service via malformed Content-Length header. Red Hat rates this important (CVSS 7.5). Weakness: CWE-1287. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Argo Workflows has unauthorized access to Argo Workflows Template. Red Hat rates this important (CVSS 7.5). Weakness: CWE-306. Affected package(s): rhoai/odh-ml-pipelines-persistenceagent-v2-rhel9:1776740351, rhoai/odh-data-science-pipelines-argo-workflowcontroller-rhel9:1776740640, rhoai/odh-ml-pipelines-api-server-v2-rhel9:1776740726, rhoai/odh-data-science-pipelines-argo-argoexec-rhel9:1776740558, rhoai/odh-ml-pipelines-scheduledworkflow-v2-rhel9:1776740366, rhoai/odh-ml-pipelines-driver-rhel9:1776740379. Resolved in Red Hat advisory RHSA-2026:10184 — update the affected packages (`sudo dnf update`).
Infinite Loop Denial of Service in RAR5 Decompression via archive_read_data() in libarchive. Red Hat rates this important (CVSS 7.5). Weakness: CWE-835. Affected package(s): rhcos, rhaiis/vllm-rocm-rhel9:1778244531, discovery/discovery-server-rhel9:1775668717, libarchive, rhui5/haproxy-rhel9:1776868744, rhui5/installer-rhel9:1776868772. Resolved in Red Hat advisory RHSA-2026:7329 — update the affected packages (`sudo dnf update`).
Information disclosure and authentication bypass via JWKS resolver unavailability. Red Hat rates this important (CVSS 7.5). Weakness: CWE-1392. Affected package(s): openshift-service-mesh/istio-proxyv2-rhel9:1774114903, rhoai/odh-kserve-agent-rhel9:1776343082, openshift-service-mesh/istio-proxyv2-rhel9:1774068855, openshift-service-mesh/istio-pilot-rhel9:1774037369, rhoai/odh-kserve-router-rhel9:1776343121, rhoai/odh-kserve-controller-rhel9:1776343105. Resolved in Red Hat advisory RHSA-2026:10184 — update the affected packages (`sudo dnf update`).
Data exfiltration via SQL injection in JSON/JSONB where clause processing. Red Hat rates this important (CVSS 7.5). Weakness: CWE-89. Affected package(s): satellite/iop-remediations-rhel9:1776194798. Resolved in Red Hat advisory RHSA-2026:8498 — update the affected packages (`sudo dnf update`).
Double-free vulnerability leading to memory corruption. Red Hat rates this important (CVSS 7). Weakness: CWE-825. Affected package(s): giflib, rhaiis/vllm-rocm-rhel9:1778244531, rhaiis/vllm-cuda-rhel9:1779223654, rhaiis/vllm-cuda-rhel9:1778274666, rhaiis/vllm-spyre-rhel9:1778244546, rhaiis/model-opt-cuda-rhel9:1780681984. Resolved in Red Hat advisory RHSA-2026:8859 — update the affected packages (`sudo dnf update`).
Remote Code Execution via bypass of prior security fixes. Red Hat rates this important (CVSS 8.8). Weakness: CWE-76. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Denial of Service via uncontrolled resource allocation. Red Hat rates this important (CVSS 7.5). Weakness: CWE-770. Affected package(s): dotnet8.0, dotnet9.0, dotnet10.0. Resolved in Red Hat advisory RHSA-2026:4458 — update the affected packages (`sudo dnf update`).
.net: .NET: Denial of Service via out-of-bounds read. Red Hat rates this moderate (CVSS 7.5). Weakness: CWE-125. Affected package(s): dotnet9.0, dotnet10.0. Resolved in Red Hat advisory RHSA-2026:10083 — update the affected packages (`sudo dnf update`).
.NET: Privilege escalation via incorrect default permissions. Red Hat rates this moderate (CVSS 7.8). Weakness: CWE-276. Affected package(s): dotnet10. Resolved in Red Hat advisory RHSA-2026:9077 — update the affected packages (`sudo dnf update`).
Use after free in WebMCP. Red Hat rates this important (CVSS 8.8). No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Use after free in TextEncoding. Red Hat rates this important (CVSS 8.8). No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Use after free in WebMIDI. Red Hat rates this important (CVSS 8.8). No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Integer overflow in WebML. Red Hat rates this important (CVSS 8.8). No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.