HIGH - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 8	CVE-2026-5241	Policy Bypass in LightGlue Nested Config Resolution in huggingface/transformers_CVE-2026-5241 A vulnerability in the LightGlue model loading path of huggingface/transformers version 5.2.0 allows an attacker-controlled model repository to exe...	huggingface	huggingface/transformers unspecified	Jun 3, 2026	CVE
HIGH 10	2D33D81A-E898-	Exploit for Improper Access Control in Proftpd_2D33D81A-E898-5537-AD2E-9F2BC986C1A4 OpenVAS-Vulnerability-Analysis-Incident-Response-Report Real-World Simulation: FTP Service Exploitation ProFTPD CVE-2015-3306 Real-World Simulation...	N/A	N/A	Jun 3, 2026	GITHUBEXPLOIT
HIGH 8.8	THN:280C3ABDE44...	Autonomous AI Tool Finds 2-Year-Old RCE Flaw in Redis (CVE-2026-23479)_THN:280C3ABDE4442D135F19D04EF30131D6 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjTV6zPqD9KC3Rc5Mz9c8XENLiJntboDT6LIoD3L2FXlTUVC3rsWZ_3YLfe_jmhhyphenhyphenjb5RCwkTsd...	N/A	N/A	Jun 3, 2026	THN
HIGH 8.7	CVE-2026-35085	Stack buffer overflow in method gdv-serverconfig_CVE-2026-35085 A remote attacker with user privileges can exploit a stack buffer overflow in gdv-serverconfig to gain full system access as root.	MBS	Single-A V1_0_0_0	Jun 3, 2026	CVE
HIGH 8.7	CVE-2026-35084	Stack buffer overflow in method dali-devconfig_CVE-2026-35084 A remote attacker with user privileges can exploit a stack buffer overflow in dali-devconfig to gain full system access as root.	MBS	Single-A V1_0_0_0	Jun 3, 2026	CVE
HIGH 8.7	CVE-2026-35083	Stack buffer overflow in method bac-deviceobject_CVE-2026-35083 A remote attacker with user privileges can exploit a stack buffer overflow to gain full system access as root.	MBS	Single-A V1_0_0_0	Jun 3, 2026	CVE
HIGH 8.7	CVE-2026-35082	Local file inclusion vulnerability and deletion in ugw-logread method_CVE-2026-35082 The ugw-logread method allows a remote attacker with user privileges to access arbitrary local files due to insufficient validation of user-supplie...	MBS	MBS products including Single-A, Double-A, Single-X, Double-X, and Triple-X V1_0_0_0	Jun 3, 2026	CVE
HIGH 7.2	CVE-2026-35081	Arbitrary process termination vulnerability in method ugw-logstop_CVE-2026-35081 The ugw-logstop method allows a remote attacker with user privileges to terminate arbitrary processes due to insufficient validation of user-suppli...	MBS	Single-A V1_0_0_0	Jun 3, 2026	CVE
HIGH 7.2	CVE-2026-35080	Arbitrary file delete vulnerability in method ugw-restoreinfo_CVE-2026-35080 The ugw-restoreinfo method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-con...	MBS	Single-A V1_0_0_0	Jun 3, 2026	CVE
HIGH 7.2	CVE-2026-35079	Arbitrary file delete vulnerability in method ugw-restore_CVE-2026-35079 The ugw-restore method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-control...	MBS	Single-A V1_0_0_0	Jun 3, 2026	CVE