LOW - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
LOW 1	CVE-2026-40528	OpenSC < 0.27.0 Buffer Overrun in do_key_value() via profile.c_CVE-2026-40528 OpenSC before 0.27.0, fixed in commit 0358817, contains a stack and heap buffer overrun vulnerability in the do_key_value() function in src/pkcs15i...	OpenSC	OpenSC	May 29, 2026	CVE
LOW 1	CVE-2026-40510	OpenSC < 0.27.0-rc1 Stack Buffer Overflow via piv_process_history() in card-piv.c_CVE-2026-40510 OpenSC before 0.27.0-rc1, fixed in commit 3f24f0b, contains a stack buffer overflow vulnerability in piv_process_history() in src/libopensc/card-pi...	OpenSC	OpenSC	May 29, 2026	CVE
LOW 2.7	CVE-2026-10078	Quay/config-tool: quay/config-tool: gitlab oauth client_secret exposed in url querystring_CVE-2026-10078 A flaw was found in the Quay config-tool's GitLab OAuth validator. This vulnerability causes sensitive credentials, specifically client_id and clie...	Red Hat	Red Hat Quay 3	May 29, 2026	CVE
LOW 3.1	637850DA-9676-	Exploit for CVE-2026-49009_637850DA-9676-5E1C-A314-6845BEDF1672 ▄█████ ██ ██ ██████ ████▄ ▄██▄ ████▄ ▄██▀▀▀ ██ ██ ▄█▀▀█▄ ▄██▄ ▄██▄ ▄█▀▀█▄ ██ ██▄▄██ ██▄▄ ▄▄▄ ▄██▀ ██ ██ ▄██▀ ██▄▄▄ ▄▄▄ ▀█████ ▀▀▀██ ██ ██ ██ ██ ▀▀▀...	N/A	N/A	May 28, 2026	GITHUBEXPLOIT
LOW 2	CVE-2026-47713	AnythingLLM: Legacy mobile device tokens bypass multi-user workspace scoping after mode migration_CVE-2026-47713 AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. Prior to 1.13.0, an app...	Mintplex-Labs	anything-llm < 1.13.0	May 28, 2026	CVE
LOW 2	CVE-2026-45403	AnythingLLM: filesystem-copy-file follows nested symlinks and copies files from outside the allowed directory_CVE-2026-45403 AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. Prior to 1.13.0, the An...	Mintplex-Labs	anything-llm < 1.13.0	May 28, 2026	CVE
LOW 3.3	CVE-2026-47337	NULL pointer dereference in Ubuntu Linux AppArmor IPv4/IPv6 socket mediation_CVE-2026-47337 Ubuntu Linux 6.8, 6.17 and 7.0 contain SAUCE patches with a possible NULL pointer dereference in the handling of AF_INET/AF_INET6 socket mediation....	Canonical	Ubuntu Linux 6.8.0	May 28, 2026	CVE
LOW 3.3	CVE-2026-47336	Use of uninitialized value in Ubuntu Linux AppArmor IPv4/IPv6 socket mediation rules_CVE-2026-47336 Ubuntu Linux 6.8 contains SAUCE patches with a possible use of an uninitialized variable in AppArmor AF_INET/AF_INET6 socket mediation code. The bu...	Canonical	Ubuntu Linux 6.8.0	May 28, 2026	CVE
LOW 3.3	CVE-2026-47330	Use of uninitialized value in Ubuntu Linux AppArmor notification handling_CVE-2026-47330 Ubuntu Linux 6.8, 7.17 and 7.0 contain AppArmor SAUCE patches which can, under certain circumstances, use an uninitialized variable in notification...	Canonical	Ubuntu Linux 6.8.0	May 28, 2026	CVE
LOW 3.3	CVE-2026-47329	Incorrect validation of field size in Ubuntu Linux AppArmor notification responses_CVE-2026-47329 Ubuntu Linux 6.8, 6.17 and 7.0 contain SAUCE patches which fail to validate invalid sizes of the name field in AppAmor notification responses. The ...	Canonical	Ubuntu Linux 6.8.0	May 28, 2026	CVE