HIGH - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.5	CVE-2025-54525	Unexpected input to Create Channel Subscription endpoint causes DoS in Mattermost Confluence Plugin_CVE-2025-54525 Mattermost Confluence Plugin version	Mattermost	Mattermost Confluence Plugin	Aug 11, 2025	CVE
HIGH 10	EDB-ID:52407	Belkin F9K1009 F9K1010 2.00.04/2.00.09 – Hard Coded Credentials_EDB-ID:52407 / * Title : Belkin F9K1009 F9K1010 2.00.04/2.00.09 - Hard Coded Credentials * Author : Byte Reaper * CVE : CVE-2025-873...	N/A	N/A	Aug 11, 2025	EXPLOITDB
HIGH 7.5	EDB-ID:52408	Ghost CMS 5.42.1 – Path Traversal_EDB-ID:52408 !/usr/bin/env python3 --...	N/A	N/A	Aug 11, 2025	EXPLOITDB
HIGH 7.5	CVE-2025-25231	CVE-2025-25231_CVE-2025-25231 Omnissa Workspace ONE UEM contains a Secondary Context Path Traversal Vulnerability. A malicious actor may be able to gain access to sensitive info...	Omnissa	Omnissa Workspace ONE UEM Omnissa Workspace ONE UEM version 24.10.0.10 or earlier	Aug 11, 2025	CVE
HIGH 7	CVE-2025-53187	Unauthenticated RCE_CVE-2025-53187 Improper Control of Generation of Code ('Code Injection') vulnerability in ABB ASPECT.This issue affects ASPECT: before	ABB	ASPECT	Aug 11, 2025	CVE
HIGH 8	CVE-2025-54063	Cherry Studio One-click Remote Code Execution Vulnerability through Custom URL Handling_CVE-2025-54063 Cherry Studio is a desktop client that supports for multiple LLM providers. From versions 1.4.8 to 1.5.0, there is a one-click remote code executio...	CherryHQ	cherry-studio >= 1.4.8, < 1.5.1	Aug 11, 2025	CVE
HIGH 8.8	THN:176ADB6CA03...	New TETRA Radio Encryption Flaws Expose Law Enforcement Communications_THN:176ADB6CA03519F521E87E953D5A71A9 ![Radio Encryption Flaws](data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAQAAAC1HAwCAAAAC0lEQVR42mP8Xw8AAoMBgDTD2qgAAAAASUVORK5CYII=) Cybe...	N/A	N/A	Aug 11, 2025	THN
HIGH 8.3	EDB-ID:52403	Microsoft Edge Renderer Process (Mojo IPC) 134.0.6998.177 – Sandbox Escape_EDB-ID:52403 Titles: Microsoft Edge Renderer Process (Mojo IPC) 134.0.6998.177 - Sandbox Escape Author: nu11secur1ty Date: 08/07/2025 Vendor: Microsoft Software...	N/A	N/A	Aug 11, 2025	EXPLOITDB
HIGH 8.7	EDB-ID:52404	Tigo Energy Cloud Connect Advanced (CCA) 4.0.1 – Command Injection_EDB-ID:52404 / * Title : Tigo Energy Cloud Connect Advanced (CCA) 4.0.1 - Command Injection * Author : Byte Reaper * CVE : CVE-2025-...	N/A	N/A	Aug 11, 2025	EXPLOITDB
HIGH 8.1	EDB-ID:52402	Grav CMS 1.7.48 – Remote Code Execution (RCE)_EDB-ID:52402 Exploit Title: Grav CMS 1.7.48 - Remote Code Execution (RCE) Date: 2025-08-07 Exploit Author: binneko (https://github.com/binneko)...	N/A	N/A	Aug 11, 2025	EXPLOITDB