LOW - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
LOW 3.3	CVE-2026-20730	BIG-IP Edge Client for Windows vulnerability_CVE-2026-20730 A vulnerability exists in BIG-IP Edge Client and browser VPN clients on Windows that may allow attackers to gain access to sensitive information. ...	F5	BIG-IP Edge Client 7.2.5	Feb 4, 2026	CVE
LOW 2.7	CVE-2026-1791	Arbitrary File Upload Vulnerability in Operation and Maintenance Security Gateway_CVE-2026-1791 Unrestricted Upload of File with Dangerous Type vulnerability in Hillstone Networks Operation and Maintenance Security Gateway on Linux allows Uplo...	Hillstone Networks	Operation and Maintenance Security Gateway V5.5ST00001B113	Feb 4, 2026	CVE
LOW 3.1	CVE-2026-24513	ingress-nginx auth-url protection bypass_CVE-2026-24513 A security issue was discovered in ingress-nginx where the protection afforded by the `auth-url` Ingress annotation may not be effective in the pre...	Kubernetes	ingress-nginx	Feb 3, 2026	CVE
LOW 3.7	CVE-2026-25224	Fastify Vulnerable to DoS via Unbounded Memory Allocation in sendWebStream_CVE-2026-25224 Fastify is a fast and low overhead web framework, for Node.js. Prior to version 5.7.3, a denial-of-service vulnerability in Fastify’s Web Streams r...	fastify	fastify < 5.7.3	Feb 3, 2026	CVE
LOW 2.7	CVE-2026-25149	Qwik City Open Redirect via fixTrailingSlash_CVE-2026-25149 Qwik is a performance focused javascript framework. Prior to version 1.19.0, an Open Redirect vulnerability in Qwik City's default request handler ...	QwikDev	qwik < 1.19.0	Feb 3, 2026	CVE
LOW 3.1	CVE-2025-52633	HCL AION is susceptible to Missing Content-Security-Policy_CVE-2025-52633 HCL AION is affected by a Permanent Cookie Containing Sensitive Session Information vulnerability. It is storing sensitive session data in persiste...	HCL	AION 2.0	Feb 3, 2026	CVE
LOW 3.7	CVE-2025-52631	HCL AION is affected by a Missing or Insecure HTTP Strict-Transport-Security (HSTS) Header vulnerability._CVE-2025-52631 HCL AION is affected by a Missing or Insecure HTTP Strict-Transport-Security (HSTS) Header vulnerability. This can allow insecure connections, pote...	HCL	AION 2.0	Feb 3, 2026	CVE
LOW 3.7	CVE-2025-52623	HCL AION is affected by an Autocomplete HTML Attribute Not Disabled for Password Field vulnerability_CVE-2025-52623 HCL AION is affected by an Autocomplete HTML Attribute Not Disabled for Password Field vulnerability. This can allow autocomplete on password fiel...	HCL	AION 2.0	Feb 3, 2026	CVE
LOW 1.7	CVE-2025-62600	FastDDS has Out-of-Memory in readPropertySeq via Manipulated DATA Submessage when DDS Security is enabled_CVE-2025-62600 Fast DDS is a C++ implementation of the DDS (Data Distribution Service) standard of the OMG (Object Management Group ). Prior to versions 3.4.1, 3....	eProsima	Fast-DDS 3.4.0	Feb 3, 2026	CVE
LOW 1.7	CVE-2025-64438	Fast-DDS: Unbounded GAP range triggers OOM DoS under RELIABLE QoS_CVE-2025-64438 Fast DDS is a C++ implementation of the DDS (Data Distribution Service) standard of the OMG (Object Management Group ). Prior to versions 3.4.1, 3....	eProsima	Fast-DDS 3.4.0	Feb 3, 2026	CVE