HIGH - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 8.5	CVE-2025-55012	Zed AI Agent Remote Code Execution_CVE-2025-55012 Zed is a multiplayer code editor. Prior to version 0.197.3, in the Zed Agent Panel allowed for an AI agent to achieve Remote Code Execution (RCE) b...	zed-industries	zed < 0.197.3	Aug 11, 2025	CVE
HIGH 8.6	CVE-2025-55150	Stirling-PDF SSRF vulnerability on /api/v1/convert/html/pdf_CVE-2025-55150 Stirling-PDF is a locally hosted web application that performs various operations on PDF files. Prior to version 1.1.0, when using the /api/v1/conv...	Stirling-Tools	Stirling-PDF < 1.1.0	Aug 11, 2025	CVE
HIGH 8.6	CVE-2025-55151	Stirling-PDF SSRF vulnerability on /api/v1/convert/file/pdf_CVE-2025-55151 Stirling-PDF is a locally hosted web application that performs various operations on PDF files. Prior to version 1.1.0, the "convert file to pdf" f...	Stirling-Tools	Stirling-PDF < 1.1.0	Aug 11, 2025	CVE
HIGH 8.6	CVE-2025-40920	Catalyst::Authentication::Credential::HTTP versions 1.018 and earlier for Perl use insecurely generated nonces_CVE-2025-40920 Catalyst::Authentication::Credential::HTTP versions 1.018 and earlier for Perl generate nonces using the Perl Data::UUID library. * Data::UUID do...	ETHER	Catalyst::Authentication::Credential::HTTP 0.06	Aug 11, 2025	CVE
HIGH 8.6	CVE-2025-54878	Heap Buffer Overflow in NASA CryptoLib 1.4.0 `Crypto_TC_Check_IV_Setup`_CVE-2025-54878 CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures (SDLS-EP) to secure communicati...	nasa	CryptoLib < 1.4.1	Aug 11, 2025	CVE
HIGH 7.2	CVE-2025-44004	Unauthenticated Channel Subscription Creation in Mattermost Confluence Plugin_CVE-2025-44004 Mattermost Confluence Plugin version	Mattermost	Mattermost Confluence Plugin	Aug 11, 2025	CVE
HIGH 7	CVE-2025-53188	Unauthenticated Credentials Exposure_CVE-2025-53188 Insufficiently Protected Credentials vulnerability in ABB Aspect.This issue affects Aspect: before	ABB	Aspect	Aug 11, 2025	CVE
HIGH 7.5	CVE-2025-52931	Unexpected input to Update Channel Subscription endpoint causes DoS in Mattermost Confluence Plugin_CVE-2025-52931 Mattermost Confluence Plugin version	Mattermost	Mattermost Confluence Plugin	Aug 11, 2025	CVE
HIGH 7	CVE-2025-53189	CVE-2025-53189_CVE-2025-53189 Authorization Bypass Through User-Controlled Key vulnerability in ABB Aspect.This issue affects Aspect: from o before	ABB	Aspect o	Aug 11, 2025	CVE
HIGH 7	CVE-2025-53190	Unauthenticated Time Manipulation_CVE-2025-53190 A vulnerability in ABB Aspect.This issue affects Aspect: before	ABB	Aspect	Aug 11, 2025	CVE