HIGH - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.5	CVE-2026-57913	CVE-2026-57913_CVE-2026-57913 Johnson & Johnson Audit Tracking Management System (ATMS) before 2026-04-21 allows viewing of meeting minutes and transcripts.	Johnson & Johnson	Audit Tracking Management System	Jun 26, 2026	CVE
HIGH 7.5	CVE-2026-57912	CVE-2026-57912_CVE-2026-57912 Johnson & Johnson Campus Recruiting before 2025-10-31 allows viewing of data provided by recruited students, and notes entered about students by in...	Johnson & Johnson	Campus Recruiting	Jun 26, 2026	CVE
HIGH 8.5	CVE-2026-13325	Virt-handler-rhel9: kubevirt: kubevirt: disabletls migration setting removes authentication, exposing unauthenticated virtqemud proxy on all interfaces_CVE-2026-13325 A flaw was found in KubeVirt's migration proxy. When spec.configuration.migrations.disableTLS is set to true on the KubeVirt custom resource, the t...	Red Hat	Red Hat OpenShift Virtualization 4	Jun 26, 2026	CVE
HIGH 7.1	CVE-2025-7958	CVE-2025-7958_CVE-2025-7958 A Code Injection vulnerability existed in Trellix Network Security CM and NX. A locally authenticated admin user can execute arbitrary code using t...	Trellix	Trellix Network Security NX, EX, FX, AX, and CMS 10.0.4	Jun 26, 2026	CVE
HIGH 8.6	CVE-2026-57877	GV-LPC2011/LPC2211 – unauthorized format string vulnerability (vlsvr)_CVE-2026-57877 An unauthenticated format string vulnerability exists in vlsvr in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is cause...	GeoVision Inc.	GV-LPCLPC2011/2211 1.12	Jun 26, 2026	CVE
HIGH 7.5	CVE-2026-57876	GV-LPC2011/LPC2211 – unauthorized out-of-bounds writing vulnerability (onvif.cgi)_CVE-2026-57876 An unauthenticated out-of-bounds write vulnerability exists in onvif.cgi in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerabilit...	GeoVision Inc.	GV-LPCLPC2011/2211 1.12	Jun 26, 2026	CVE
HIGH 7.5	CVE-2026-57875	GV-LPC2011/LPC2211 – unauthorized null pointer dereference vulnerability in packet parsing_CVE-2026-57875 An unauthenticated NULL pointer dereference vulnerability exists in the HTTP request parsing logic of multiple CGI components in GeoVision GV-LPC20...	GeoVision Inc.	GV-LPCLPC2011/2211 1.12	Jun 26, 2026	CVE
HIGH 7.5	CVE-2026-57874	GV-LPC2011/LPC2211 – unauthorized buffer overflow vulnerability (IEEE8021x_upload.cgi)_CVE-2026-57874 An unauthenticated buffer overflow vulnerability exists in IEEE8021x_upload.cgi in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulne...	GeoVision Inc.	GV-LPCLPC2011/2211 1.12	Jun 26, 2026	CVE
HIGH 7.5	CVE-2026-57873	GV-LPC2011/LPC2211 – unauthorized null pointer dereference vulnerability (IEEE8021x_upload.cgi)_CVE-2026-57873 An unauthenticated NULL pointer dereference vulnerability exists in IEEE8021x_upload.cgi in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. ...	GeoVision Inc.	GV-LPCLPC2011/2211 1.12	Jun 26, 2026	CVE
HIGH 7.5	CVE-2026-57872	GV-LPC2011/LPC2211 – unauthorized directory traversal vulnerability (get_fcont.cgi)_CVE-2026-57872 An unauthenticated directory traversal vulnerability exists in get_fcont.cgi in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerab...	GeoVision Inc.	GV-LPCLPC2011/2211 1.12	Jun 26, 2026	CVE