mscve - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 6.6	MS:CVE-2026-41411	Vim: Command injection via backtick expansion in tag filenames_MS:CVE-2026-41411 {“lastseen”:”2026-04-29T09:15:53″,”description”:””,”published”:”2026-04-26T08:05:...	N/A	N/A	Apr 26, 2026	MSCVE
CRITICAL 9.6	MS:CVE-2026-6920	Chromium: CVE-2026-6920 Out of bounds read in GPU_MS:CVE-2026-6920 This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...	N/A	N/A	Apr 28, 2026	MSCVE
MEDIUM 4.3	MS:CVE-2026-22015	CVE-2026-22015_MS:CVE-2026-22015 {“lastseen”:”2026-04-25T09:15:44″,”description”:””,”published”:”2026-04-23T08:03:...	N/A	N/A	Apr 23, 2026	MSCVE
HIGH 7.5	MS:CVE-2026-40890	github.com/gomarkdown/markdown: Out-of-bounds Read in SmartypantsRenderer_MS:CVE-2026-40890 {“lastseen”:”2026-04-25T09:15:44″,”description”:””,”published”:”2026-04-23T08:04:...	N/A	N/A	Apr 23, 2026	MSCVE
HIGH 7.1	MS:CVE-2026-6409	Denial of Service (DoS) vulnerability exists in the Protobuf PHP library during the parsing of untrusted input_MS:CVE-2026-6409 {“lastseen”:”2026-04-25T09:15:44″,”description”:””,”published”:”2026-04-23T08:11:...	N/A	N/A	Apr 23, 2026	MSCVE
CRITICAL 9.6	MS:CVE-2026-6919	Chromium: CVE-2026-6919 Use after free in DevTools_MS:CVE-2026-6919 This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...	N/A	N/A	Apr 25, 2026	MSCVE
HIGH 8.3	MS:CVE-2026-6921	Chromium: CVE-2026-6921 Race in GPU_MS:CVE-2026-6921 This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...	N/A	N/A	Apr 25, 2026	MSCVE
LOW 2.1	MS:CVE-2026-5958	Race Condition in GNU Sed_MS:CVE-2026-5958 {“lastseen”:”2026-04-24T07:13:17″,”description”:””,”published”:”2026-04-22T08:01:...	N/A	N/A	Apr 22, 2026	MSCVE
CRITICAL 9.3	MS:CVE-2026-32210	Microsoft Dynamics 365 (online) Spoofing Vulnerability_MS:CVE-2026-32210 Server-side request forgery (ssrf) in Microsoft Dynamics 365 (Online) allows an unauthorized attacker to perform spoofing over a network.	N/A	N/A	Apr 23, 2026	MSCVE
CRITICAL 9.6	MS:CVE-2026-24303	Microsoft Partner Center Elevation of Privilege Vulnerability_MS:CVE-2026-24303 Improper access control in Microsoft Partner Center allows an authorized attacker to elevate privileges over a network.	N/A	N/A	Apr 23, 2026	MSCVE