HIGH - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.8	CVE-2025-54218	InCopy \| Out-of-bounds Write (CWE-787)_CVE-2025-54218 InCopy versions 20.4, 19.5.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the ...	Adobe	InCopy	Aug 12, 2025	CVE
HIGH 7.8	CVE-2025-54219	InCopy \| Heap-based Buffer Overflow (CWE-122)_CVE-2025-54219 InCopy versions 20.4, 19.5.4 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution i...	Adobe	InCopy	Aug 12, 2025	CVE
HIGH 7.8	CVE-2025-54220	InCopy \| Heap-based Buffer Overflow (CWE-122)_CVE-2025-54220 InCopy versions 20.4, 19.5.4 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution i...	Adobe	InCopy	Aug 12, 2025	CVE
HIGH 7.7	CVE-2025-54074	Cherry Studio is Vulnerable to OS Command Injection during Connection with a Malicious MCP Server_CVE-2025-54074 Cherry Studio is a desktop client that supports for multiple LLM providers. From versions 1.2.5 to 1.5.1, Cherry Studio is vulnerable to OS Command...	CherryHQ	cherry-studio >= 1.2.5, < 1.5.2	Aug 13, 2025	CVE
HIGH 7.6	CVE-2025-55004	ImageMagick: heap-buffer overflow read in MNG magnification with alpha_CVE-2025-55004 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-1, ImageMagick is vulnerable ...	ImageMagick	ImageMagick < 7.1.2-1	Aug 13, 2025	CVE
HIGH 8.8	CVE-2025-55154	ImageMagick: integer overflows in MNG magnification_CVE-2025-55154 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-27 and 7.1.2-1, the magnifi...	ImageMagick	ImageMagick < 6.9.13-27	Aug 13, 2025	CVE
HIGH 8.2	CVE-2025-55163	Netty MadeYouReset HTTP/2 DDoS Vulnerability_CVE-2025-55163 Netty is an asynchronous, event-driven network application framework. Prior to versions 4.1.124.Final and 4.2.4.Final, Netty is vulnerable to MadeY...	netty	netty < 4.1.124.Final	Aug 13, 2025	CVE
HIGH 7.3	CVE-2025-8907	H3C M2 NAS Webserver Configuration unnecessary privileges_CVE-2025-8907 A vulnerability was found in H3C M2 NAS V100R006. Affected by this vulnerability is an unknown functionality of the component Webserver Configurati...	H3C	M2 NAS V100R006	Aug 13, 2025	CVE
HIGH 7	CVE-2025-54464	Cleartext Storage Vulnerability in ZKTeco WL20_CVE-2025-54464 This vulnerability exists in ZKTeco WL20 due to storage of admin and user credentials without encryption in the device firmware. An attacker with p...	ZKTeco Co	WL20 Biometric Attendance System <=ZLM31-FXO1-3.1.8	Aug 13, 2025	CVE
HIGH 7.5	CVE-2025-8912	WellChoose｜Organization Portal System – Arbitrary File Reading through Path Traversal_CVE-2025-8912 Organization Portal System developed by WellChoose has an Arbitrary File Reading vulnerability, allowing unauthenticated remote attackers to exploi...	WellChoose	Organization Portal System	Aug 13, 2025	CVE