LOW - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
LOW 3.1	CVE-2025-13643	MongoDB Server may allow queries to be terminated by unauthorized users_CVE-2025-13643 A user with access to the cluster with a limited set of privilege actions may be able to terminate queries that are being executed by other users. ...	MongoDB Inc.	MongoDB Server 8.0	Nov 25, 2025	CVE
LOW 3.7	CVE-2025-36134	IBM Sterling B2B Integrator and IBM Sterling File Gateway information disclosure_CVE-2025-36134 IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.0.0.0 through 6.1.2.7 and 6.2.0.0 through 6.2.0.5 and 6.2.1.1 could disclose sensitive ...	IBM	Sterling B2B Integrator 6.0.0.0	Nov 25, 2025	CVE
LOW 2.7	CVE-2025-13596	Improper Error Handling Leading to Sensitive Information Disclosure in CIGES ≤ 2.15.6_CVE-2025-13596 A sensitive information disclosure vulnerability exists in the error handling component of ATISoluciones CIGES Application version 2.15.6 and earli...	ATISoluciones	CIGES 2.15.0	Nov 24, 2025	CVE
LOW 1	CVE-2025-54515	CVE-2025-54515_CVE-2025-54515 The Secure Flag passed to Versal™ Adaptive SoC’s Arm® Trusted Firmware for Cortex®-A processors (TF-A) for Arm’s Power State Coordination Interface...	AMD	Versal™ Adaptive SoC Devices 2025.2	Nov 23, 2025	CVE
LOW 2.4	CVE-2025-31216	CVE-2025-31216_CVE-2025-31216 The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5. An attacker with physical access to a...	Apple	iPadOS unspecified	Nov 21, 2025	CVE
LOW 3.7	CVE-2025-66062	WordPress WP YouTube Lyte plugin <= 1.7.28 - Open Redirection vulnerability_CVE-2025-66062 URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Frank Goossens WP YouTube Lyte wp-youtube-lyte allows Phishing.This issue affe...	Frank Goossens	WP YouTube Lyte n/a	Nov 21, 2025	CVE
LOW 1.8	CVE-2025-54866	Wazuh installation fails to protected authd.pass on Windows_CVE-2025-54866 Wazuh is a free and open source platform used for threat prevention, detection, and response. From version 4.3.0 to before 4.13.0, a missing ACL on...	wazuh	wazuh >= 4.3.0, < 4.13.0	Nov 21, 2025	CVE
LOW 2.9	CVE-2025-65111	SpiceDB’s LookupResources with Multiple Entrypoints across Different Definitions Can Return Incomplete Results_CVE-2025-65111 SpiceDB is an open source database system for creating and managing security-critical application permissions. Prior to version 1.47.1, if a schema...	authzed	spicedb < 1.47.1	Nov 21, 2025	CVE
LOW 2.1	CVE-2025-11934	Improper Validation of Signature Algorithm Used in TLS 1.3 CertificateVerify_CVE-2025-11934 Improper input validation in the TLS 1.3 CertificateVerify signature algorithm negotiation in wolfSSL 5.8.2 and earlier on multiple platforms allow...	wolfSSL	wolfSSL v5.8.2	Nov 21, 2025	CVE
LOW 2.3	CVE-2025-11933	DoS Vulnerability in wolfSSL TLS 1.3 CKS Extension_CVE-2025-11933 Improper Input Validation in the TLS 1.3 CKS extension parsing in wolfSSL 5.8.2 and earlier on multiple platforms allows a remote unauthenticated a...	wofSSL	wolfSSL v5.8.2	Nov 21, 2025	CVE