category_cve - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.1	CVE-2026-6556	@fastify/express vulnerable to middleware bypass via non-string mount paths in prefixed plugins_CVE-2026-6556 @fastify/express versions 4.0.6 and earlier only rewrite the plugin prefix for middleware mount paths when the path argument is a string. Non-strin...	@fastify/express	@fastify/express	Jun 30, 2026	CVE
MEDIUM 6.5	CVE-2026-58374	CVE-2026-58374_CVE-2026-58374 In hostapd before 2.12, a missing bounds check in AP-mode Wi-Fi 7 (IEEE 802.11be) Multi-Link Operation (MLO) association request processing allows ...	w1.fi	hostapd	Jun 30, 2026	CVE
CRITICAL 9.3	CVE-2026-58116	LLaMA-Factory 0.9.5 Remote Code Execution via WebUI Model Path_CVE-2026-58116 LLaMA-Factory through 0.9.5 contains a remote code execution vulnerability that allows attackers with WebUI access to execute arbitrary Python code...	hiyouga	LlamaFactory 0.9.5	Jun 30, 2026	CVE
HIGH 7.5	CVE-2026-58016	Glib: integer underflow in gio/gdbusintrospection.c via “g_dbus_node_info_new_for_xml”_CVE-2026-58016 A flaw was found in GLib. A state confusion issue exists in g_dbus_node_info_new_for_xml() in the gio/gdbusintrospection.c file when processing mal...	Red Hat	Red Hat Enterprise Linux 10	Jun 30, 2026	CVE
MEDIUM 5.9	CVE-2026-58015	Glib: path traversal in glib/gio/gdbusauthmechanismsha1.c via keyring_lookup_entry and mechanism_client_data_receive_CVE-2026-58015 A flaw was found in GLib. The D-Bus client-side implementation of the DBUS_COOKIE_SHA1 SASL authentication mechanism does not validate the cookie_c...	Red Hat	Red Hat Enterprise Linux 10	Jun 30, 2026	CVE
HIGH 7.3	CVE-2026-58014	Glib: off-by-one error in glib/gkeyfile.c via “g_key_file_get_locale_string_list”_CVE-2026-58014 A flaw was found in GLib. An off-by-one error can occur in the g_key_file_get_locale_string_list function in the gkeyfile.c file when loading a key...	Red Hat	Red Hat Enterprise Linux 10	Jun 30, 2026	CVE
MEDIUM 6.5	CVE-2026-58013	Glib: buffer over-read in glib/giochannel.c via “g_io_channel_read_line_backend”_CVE-2026-58013 A flaw was found in GLib. A buffer over-read can occur in g_io_channel_read_line_backend() in the giochannel.c file when a custom line terminator w...	Red Hat	Red Hat Enterprise Linux 10	Jun 30, 2026	CVE
MEDIUM 6.5	CVE-2026-58012	Glib: buffer over-read in g_regex_replace() via glib/gregex.c:string_append() and g_utf8_next_char()_CVE-2026-58012 A flaw was found in GLib. A buffer over-read can occur in the g_regex_replace function when used with the `G_REGEX_RAW` compile flag and case-chang...	Red Hat	Red Hat Enterprise Linux 10	Jun 30, 2026	CVE
MEDIUM 6.5	CVE-2026-58011	Glib: out-of-bounds read in glib/gdatetime.c:g_date_time_get_ymd via invalid gdatetime_CVE-2026-58011 A flaw was found in GLib. An out-of-bounds read of only 2 bytes can occur in the g_date_time_get_ymd function in the glib/gdatetime.c file when an ...	Red Hat	Red Hat Enterprise Linux 10	Jun 30, 2026	CVE
MEDIUM 6.5	CVE-2026-58010	Glib: buffer over-read in glib/gvariant-serialiser.c via gvs_tuple_is_normal()_CVE-2026-58010 A flaw was found in GLib. An off-by-one error can occur in the gvs_tuple_is_normal function in the glib/gvariant-serialiser.c file when doing an al...	Red Hat	Red Hat Enterprise Linux 10	Jun 30, 2026	CVE