LOW - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
LOW 3.1	CVE-2025-11731	Libxslt: type confusion in exsltfuncresultcompfunction of libxslt_CVE-2025-11731 A flaw was found in the exsltFuncResultComp() function of libxslt, which handles EXSLT elements during stylesheet parsing. Due to improper type ha...	Red Hat	Red Hat Enterprise Linux 10	Oct 14, 2025	CVE
LOW 3	CVE-2025-42909	Security Misconfiguration vulnerability in SAP Cloud Appliance Library Appliances_CVE-2025-42909 SAP Cloud Appliance Library Appliances allows an attacker with high privileges to leverage an insecure S/4HANA default profile setting in an existi...	SAP_SE	SAP Cloud Appliance Library Appliances TITANIUM_WEBAPP 4.0	Oct 14, 2025	CVE
LOW 3.5	CVE-2025-62178	WeGIA Cross-Site Scripting (XSS) Reflected endpoint ‘/html/atendido/cadastro_atendido_parentesco_pessoa_nova.php’ parameter ‘idatendido’_CVE-2025-62178 WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. Prior to 3.5.1, a Reflected Cross-Site Scripting (X...	LabRedesCefetRJ	WeGIA < 3.5.1	Oct 13, 2025	CVE
LOW 3.5	CVE-2025-62174	Mastodon allows continued access after password reset via CLI_CVE-2025-62174 Mastodon is a free, open-source social network server based on ActivityPub. In Mastodon before 4.4.6, 4.3.14, and 4.2.27, when an administrator re...	mastodon	mastodon >= 4.4.0-beta.1, < 4.4.6	Oct 13, 2025	CVE
LOW 3.5	CVE-2025-58084	Mattermost Desktop App crashes when clicking on malformed external URL_CVE-2025-58084 Mattermost Desktop App versions	Mattermost	Mattermost	Oct 13, 2025	CVE
LOW 2.4	CVE-2025-27259	Ericsson Network Manager: improper neutralization of user controlled input_CVE-2025-27259 Ericsson Network Manager versions prior to ENM 25.2 GA contain a vulnerability that, if exploited, can exfiltrate limited data or redirect victims ...	Ericsson	Ericsson Network Manager(ENM)	Oct 13, 2025	CVE
LOW 3.5	CVE-2025-31995	HCL Unica MaxAI Workbench is vulnerable to improper input validation_CVE-2025-31995 HCL Unica MaxAI Workbench is vulnerable to improper input validation. This allows attackers to exploit vulnerabilities such as SQL Injection, XSS,...	HCL Software	MaxAI Workbench v12.1.10 - v25.1	Oct 13, 2025	CVE
LOW 3.6	4C6E2182-0E99-	Exploit for CVE-2025-61984_4C6E2182-0E99-5626-83F6-1646DD648C57 Test-CVE-2025-61984........................................................................	N/A	N/A	Oct 13, 2025	GITHUBEXPLOIT
LOW 1	CVE-2025-11650	Tomofun Furbo 360/Furbo Mini Password shadow weak hash_CVE-2025-11650 A vulnerability was determined in Tomofun Furbo 360 and Furbo Mini. The impacted element is an unknown function of the file /etc/shadow of the comp...	Tomofun	Furbo 360 n/a	Oct 12, 2025	CVE
LOW 2.3	CVE-2025-11647	Tomofun Furbo 360/Furbo Mini GATT Service information disclosure_CVE-2025-11647 A flaw has been found in Tomofun Furbo 360 and Furbo Mini. This issue affects some unknown processing of the component GATT Service. This manipulat...	Tomofun	Furbo 360 n/a	Oct 12, 2025	CVE