category_cve - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 8.6	CVE-2025-7737	DoS Vulnerability in 10G iSCSI Interface of Hitachi Virtual Storage Platform_CVE-2025-7737 DoS Vulnerability in 10G iSCSI Interface of Hitachi Virtual Storage Platform. This issue affects Hitachi Virtual Storage Platform E990, E1090, E...	Hitachi	Hitachi Virtual Storage Platform E990, E1090, E1090H	Jun 19, 2026	CVE
MEDIUM 5.3	CVE-2026-6798	2Download Connector for 2DL Hosted Checkout <= 0.1.5 - Missing Authorization to Unauthenticated Sensitive Customer Subscription Data Exposure via 'ToDownload_email' Parameter_CVE-2026-6798 The 2Download Connector for 2DL Hosted Checkout plugin for WordPress is vulnerable to unauthorized access in all versions up to, and including, 0.1...	2download	2Download Connector for 2DL Hosted Checkout	Jun 19, 2026	CVE
HIGH 7.8	CVE-2026-46461	CVE-2026-46461_CVE-2026-46461 Dell Server Hardware Manager, versions prior to 3.2.2, contains an Improper Access Control vulnerability. A low privileged attacker with local acce...	Dell	Server Hardware Manager	Jun 19, 2026	CVE
MEDIUM 5.3	CVE-2026-3640	STRABL <= 4.5 - Unauthenticated Arbitrary Webhook Creation via REST API Endpoint_CVE-2026-3640 The STRABL – A checkout solution plugin for WordPress is vulnerable to Missing Authentication in all versions up to and including 4.5. The plugin r...	strablengineering	STRABL – A checkout solution	Jun 19, 2026	CVE
MEDIUM 5.6	CVE-2026-8296	CVE-2026-8296_CVE-2026-8296 In affected versions of Octopus Server with certain access levels it was possible to embed a Cross-Site Scripting Payload via artifacts.	Octopus Deploy	Octopus Server 2023.0.0	Jun 19, 2026	CVE
MEDIUM 5.3	CVE-2026-56138	Authenticated Path Traversal in AIL framework /objects/item/diff Allows Reading Gzip-Compressed Files_CVE-2026-56138 AIL framework contains a path traversal vulnerability in the /objects/item/diff endpoint. The endpoint accepts item identifiers through the s1 and ...	ail-project	ail-framework	Jun 19, 2026	CVE
HIGH 7.5	CVE-2026-11576	CVE-2026-11576_CVE-2026-11576 The security fix for CVE-2025-0728 in eclipse-threadx NetX Duo refactors error handling in the HTTP server PUT process to use a shared cleanup labe...	Eclipse Foundation	Eclipse ThreadX - NetX Duo 6.4.2	Jun 19, 2026	CVE
MEDIUM 6.5	CVE-2026-12706	Ffmpeg: ffmpeg: heap use-after-free read in rasc decoder decode_move()_CVE-2026-12706 A use-after-free vulnerability was found in FFmpeg's RASC video decoder. The decode_move() function initializes a read pointer into a decompressed ...	Red Hat	Red Hat Enterprise Linux AI (RHEL AI) 3	Jun 19, 2026	CVE
MEDIUM 5.6	CVE-2026-11941	Use-after-free in connection ID iterator and FFI functions_CVE-2026-11941 Cloudflare Quiche was affected by 2 use-after-free vulnerabilities in the connection ID iterator FFI functions. The “quiche_connection_id_iter_n...	Cloudflare	Quiche 0.20.0	Jun 19, 2026	CVE
CRITICAL 9.6	CVE-2026-56142	CVE-2026-56142_CVE-2026-56142 In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.148429 privilege escalation by attaching a...	JetBrains	Hub	Jun 19, 2026	CVE