LOW - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
LOW 3.5	CVE-2026-40077	Beszel has an IDOR in hub API endpoints that read system ID from URL parameter_CVE-2026-40077 Beszel is a server monitoring platform. Prior to 0.18.7, some API endpoints in the Beszel hub accept a user-supplied system ID and proceed without ...	henrygd	beszel < 0.18.7	Apr 9, 2026	CVE
LOW 3.3	H1:3665363	curl: Integer Overflow/Signedness Mismatch in Printf Precision for HTTP/2 Trailer Headers_H1:3665363 # BUG IN https://raw.githubusercontent.com/curl/curl/07a9b89fedaec60bdbc254f23f66149b31d2f8da/lib/http2.c ```c if(stream->bodystarted) { /* T...	N/A	N/A	Apr 11, 2026	HACKERONE
LOW 2.3	CVE-2026-5187	Heap Out-of-Bounds Write in DecodeObjectId() in wolfSSL_CVE-2026-5187 Two potential heap out-of-bounds write locations existed in DecodeObjectId() in wolfcrypt/src/asn.c. First, a bounds check only validates one avail...	wolfSSL	wolfSSL	Apr 9, 2026	CVE
LOW 3.1	CVE-2026-40109	Flux notification-controller GCR Receiver missing email validation allows unauthorized reconciliation triggering_CVE-2026-40109 Flux notification-controller is the event forwarder and notification dispatcher for the GitOps Toolkit controllers. Prior to 1.8.3, the gcr Receive...	fluxcd	notification-controller < 1.8.3	Apr 9, 2026	CVE
LOW 2.3	CVE-2026-35624	OpenClaw < 2026.3.22 - Policy Confusion via Room Name Collision in Nextcloud Talk_CVE-2026-35624 OpenClaw before 2026.3.22 contains a policy confusion vulnerability in room authorization that matches colliding room names instead of stable room ...	OpenClaw	OpenClaw	Apr 9, 2026	CVE
LOW 2.3	CVE-2026-35617	OpenClaw < 2026.3.25 - Authorization Bypass via Group Policy Rebinding with Mutable Space displayName_CVE-2026-35617 OpenClaw before 2026.3.25 contains an authorization bypass vulnerability in Google Chat group policy enforcement that relies on mutable space displ...	OpenClaw	OpenClaw	Apr 9, 2026	CVE
LOW 2.1	CVE-2026-5778	Integer underflow leads to out-of-bounds access in sniffer ChaCha decrypt path._CVE-2026-5778 Integer underflow in wolfSSL packet sniffer	wolfSSL	wolfSSL	Apr 9, 2026	CVE
LOW 2.1	CVE-2026-5772	MatchDomainName 1-Byte Stack Buffer Over-Read in Hostname Validation_CVE-2026-5772 A 1-byte stack buffer over-read was identified in the MatchDomainName function (src/internal.c) during wildcard hostname validation when the LEFT_M...	wolfSSL	wolfSSL	Apr 9, 2026	CVE
LOW 2.3	CVE-2026-5448	1-2 Byte Buffer Overflow in wolfSSL_X509_notAfter/notBefore_CVE-2026-5448 X.509 date buffer overflow in wolfSSL_X509_notAfter / wolfSSL_X509_notBefore. A buffer overflow may occur when parsing date fields from a crafted X...	wolfSSL	wolfSSL	Apr 9, 2026	CVE
LOW 2.3	CVE-2026-5392	wolfSSL heap OOB read in PKCS7 SignedData streaming_CVE-2026-5392 Heap out-of-bounds read in PKCS7 parsing. A crafted PKCS7 message can trigger an OOB read on the heap. The missing bounds check is in the indefinit...	wolfSSL	wolfSSL	Apr 9, 2026	CVE