category_cve - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 6.5	CVE-2026-50519	Microsoft Visual Studio Code CoPilot Chat Security Feature Bypass Vulnerability_CVE-2026-50519 {“lastseen”:””,”description”:””,”published”:”2026-06-19T20:28:35.395Z”,&#82...	Microsoft	GitHub Copilot Chat 1.0.0	Jun 19, 2026	CVE
CRITICAL 9.9	CVE-2026-48584	Microsoft Azure Synapse Elevation of Privilege Vulnerability_CVE-2026-48584 {“lastseen”:””,”description”:””,”published”:”2026-06-19T20:27:48.494Z”,&#82...	Microsoft	Azure Synapse -	Jun 19, 2026	CVE
CRITICAL 9.6	CVE-2026-48582	Microsoft Exchange Online Elevation of Privilege Vulnerability_CVE-2026-48582 {“lastseen”:””,”description”:””,”published”:”2026-06-19T20:29:41.615Z”,&#82...	Microsoft	Microsoft Exchange Online -	Jun 19, 2026	CVE
HIGH 8.8	CVE-2026-47645	Microsoft 365 Copilot’s Business Chat Elevation of Privilege Vulnerability_CVE-2026-47645 {“lastseen”:””,”description”:””,”published”:”2026-06-19T20:29:42.232Z”,&#82...	Microsoft	Microsoft 365 Copilot -	Jun 19, 2026	CVE
CRITICAL 10	CVE-2026-45480	Azure Active Directory Elevation of Privilege Vulnerability_CVE-2026-45480 {“lastseen”:””,”description”:””,”published”:”2026-06-19T20:27:46.192Z”,&#82...	Microsoft	Azure Active Directory -	Jun 19, 2026	CVE
MEDIUM 6.5	CVE-2026-42895	Microsoft Copilot Tampering Vulnerability_CVE-2026-42895 {“lastseen”:””,”description”:””,”published”:”2026-06-19T20:27:46.785Z”,&#82...	Microsoft	Microsoft 365 Copilot -	Jun 19, 2026	CVE
HIGH 8.8	CVE-2026-32208	Microsoft Edge (Chromium-based) Spoofing Vulnerability_CVE-2026-32208 {“lastseen”:””,”description”:””,”published”:”2026-06-19T20:27:45.083Z”,&#82...	Microsoft	Microsoft Edge (Chromium-based) -	Jun 19, 2026	CVE
MEDIUM 6.5	CVE-2026-49359	PhpWeasyPrint vulnerable to SSRF and local file disclosure via the attachment option_CVE-2026-49359 PhpWeasyPrint is a PHP library allowing PDF generation from a URL or an HTML page. Prior to version 2.6.0, `pontedilana/php-weasyprint` fetches the...	pontedilana	php-weasyprint < 2.6.0	Jun 19, 2026	CVE
HIGH 7.6	CVE-2026-49290	Slopsmith has path traversal in archive extractors that allows arbitrary file write → potential RCE_CVE-2026-49290 Slopsmith is a self-contained web application for browsing, playing, and practicing Rocksmith 2014 Custom DLC (CDLC). Prior to 0.2.9-alpha.5, a pat...	byrongamatos	slopsmith < 0.2.9-alpha.5	Jun 19, 2026	CVE
HIGH 7.4	CVE-2026-49287	Statamic CMS vulnerable to unsafe method invocation via collection sorting allows data destruction_CVE-2026-49287 Statamic is a Laravel and Git powered content management system (CMS). Prior to 5.73.23 and 6.20.0, the fix for CVE-2026-41175 was incomplete. It a...	statamic	cms < 5.73.23	Jun 19, 2026	CVE