category_news - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	THN:387FFDF5ED2...	GitHub Internal Repositories Breached via Malicious Nx Console VS Code Extension_THN:387FFDF5ED283C36D4B532508CEED359 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjJ64wgVqZTQx208NgY0sBvUUQcR5mb-G4ENkfw4PEX9KlJJxEI_uUKQvPG0rReXB4chZ3wXrvNSR1QsrK525...	N/A	N/A	May 21, 2026	THN
MEDIUM 6.5	THN:C4052E6A3AF...	Highly Critical Drupal Core Flaw Exposes PostgreSQL Sites to RCE Attacks_THN:C4052E6A3AF91D2CC9C9BB647C097470 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhyhKX1WKEWbBPd4sElCP9BB26eorxZX1Lo25Mcu-A5bfBUuWT63SQ-Hyycv1YPSlvVeZPfLSEbb8mQnuPvf0...	N/A	N/A	May 21, 2026	THN
NONE	WIRED:6AA86E804...	A Bipartisan Amendment Would End Police License Plate Tracking Nationwide_WIRED:6AA86E80438522AC4AD16F6730E8961C One line tucked into a federal highway bill would strip funds from cities and states unless they kill their automated plate tracking programs—effec...	N/A	N/A	May 20, 2026	WIRED
NONE	H1:3747959	curl: curl –skip-existing has a TOCTOU race that lets a post-check symlink redirect the later download write_H1:3747959 ## Summary: The curl CLI's `--skip-existing` option performs a separate existence check before the download body is written. In the verified path, ...	N/A	N/A	May 19, 2026	HACKERONE
NONE	MSSECURE:6D00E9...	Mini Shai Hulud: Compromised @antv npm packages enable CI/CD credential theft_MSSECURE:6D00E966D9372364C645950D0C2319E5 Microsoft has identified an active supply chain attack targeting the _@antv_ node package manager (npm) package ecosystem. A threat actor compromis...	N/A	N/A	May 20, 2026	MSSECURE
NONE	WIRED:FA398F51B...	A New York Cop Got Injured at a Boxing Match. Now Madison Square Garden Is Banning His Lawyer_WIRED:FA398F51BBA9F45ECD9ED462D51792E0 Attorney John Scola is representing a police officer who is suing over injuries allegedly sustained while working security at an MSG property in 2025.	N/A	N/A	May 20, 2026	WIRED
NONE	MSSECURE:1D54D2...	Securing the gaming culture of cultures_MSSECURE:1D54D209A555D383D4633CE25EFF8D6A __The Deputy CISO blog series is where Microsoft _Deputy Chief Information Security Officers_ (CISOs) share their thoughts on what is most importa...	N/A	N/A	May 20, 2026	MSSECURE
NONE	THN:5AEC1795837...	Microsoft Open-Sources RAMPART and Clarity to Secure AI Agents During Development_THN:5AEC1795837B3671ADB6A8F98B856FA9 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjPuhFp_KGzG3yZEzqIYh-at7Dm3vg4_QX97ilaSXDjsUbfhU7KCmRS-uQ2UrV9D855Nvy8HcBDKe25VMT63d...	N/A	N/A	May 20, 2026	THN
NONE	SCHNEIER:66AB59...	On AI Security_SCHNEIER:66AB594E5D075EE5A99CA1B8DB7F9CBA Good report: > Executive Summary: Let's say you wanted to make sure that your AI is secure. Can you just maximize the security and privacy ben...	N/A	N/A	May 20, 2026	SCHNEIER
NONE	MSSECURE:8C75FD...	Introducing RAMPART and Clarity: Open source tools to bring safety into Agent development workflow_MSSECURE:8C75FDCEB1F13D9A2E245E0943069417 In this article 1. Why we are investing in this 2. RAMPART: Continuous safety testing for agentic AI 3. Clarity: Helping check software engi...	N/A	N/A	May 20, 2026	MSSECURE