packetstorm - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.8	PACKETSTORM:213211	📄 FortiWeb Fabric Connector 7.6.x SQL Injection / Remote Code Execution_PACKETSTORM:213211 This proof of concept exploit demonstrates a pre-authentication remote SQL injection vulnerability in Fortinet FortiWeb Fabric Connector versions 7...	N/A	N/A	Dec 22, 2025	PACKETSTORM
NONE	PACKETSTORM:213213	📄 Backdoor.Win32.ControlTotal.t MVID-2025-0702 Insecure Credential Storage_PACKETSTORM:213213 Backdoor.Win32.ControlTotal.t malware listens on TCP port 2032 and requires authentication. The password "jdf4df4vdf" is stored in cleartext within...	N/A	N/A	Dec 22, 2025	PACKETSTORM
NONE	PACKETSTORM:213210	📄 Headlamp 0.38.0 Unauthenticated Cached Credentials Access_PACKETSTORM:213210 Proof of concept exploit for a flaw in Headlamp Kubernetes dashboard versions 0.38.0 and below that allows unauthenticated users to access sensitiv...	N/A	N/A	Dec 22, 2025	PACKETSTORM
HIGH 7.1	PACKETSTORM:213207	📄 Adobe DNG SDK RefBaselineABCDtoRGB Out-Of-Bounds Read / Information Disclosure_PACKETSTORM:213207 This work presents a technical, research‑grade proof of concept demonstrating CVE‑2025‑64893, an out of bounds read vulnerability in Adobe DNG SDK ...	N/A	N/A	Dec 22, 2025	PACKETSTORM
HIGH 7.1	PACKETSTORM:213206	📄 Adobe DNG SDK RefBaselineABCDtoRGB Out-Of-Bounds Read / Information Disclosure_PACKETSTORM:213206 This work presents a technical, research‑grade proof of concept demonstrating CVE‑2025‑64893, an out of bounds read vulnerability in Adobe DNG SDK ...	N/A	N/A	Dec 22, 2025	PACKETSTORM
NONE	PACKETSTORM:213221	📄 Assistive Technologies Persistence_PACKETSTORM:213221 This Metasploit module achieves persistence by registering a custom Assistive Technology AT in the Windows registry. Then it configures the system ...	N/A	N/A	Dec 22, 2025	PACKETSTORM
CRITICAL 10	PACKETSTORM:213220	📄 HPE OneView Unauthenticated Remote Code Execution_PACKETSTORM:213220 This Metasploit module exploits an unauthenticated remote code execution vulnerability against Hewlett Packard Enterprise HPE OneView. All versions...	N/A	N/A	Dec 22, 2025	PACKETSTORM
HIGH 8.8	PACKETSTORM:213208	📄 Pi-hole 5.18.3 Remote Code Execution_PACKETSTORM:213208 This PHP script is an authenticated remote code execution exploit targeting Pi-hole's web admin interface. It requires valid administrator credenti...	N/A	N/A	Dec 22, 2025	PACKETSTORM
NONE	PACKETSTORM:213212	📄 HEUR.Backdoor.Win32.Poison.gen MVID-2025-0701 DLL Hijacking_PACKETSTORM:213212 HEUR.Backdoor.Win32.Poison.gen malware looks for and executes a x32-bit "WININET.dll" PE file in its current directory. Therefore, we can hijack th...	N/A	N/A	Dec 22, 2025	PACKETSTORM
CRITICAL 9.8	PACKETSTORM:213137	📄 libtransmission 2.93 Integer Overflow_PACKETSTORM:213137 libtransmission versions 2.93 and below suffer from multiple integer overflows. A remote attacker could create a specially crafted .torrent file wh...	N/A	N/A	Dec 19, 2025	PACKETSTORM