HIGH - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.4	CVE-2026-9006	IBM WebSphere Application Server is affected by server-side request forgery_CVE-2026-9006 IBM WebSphere Application Server 9.0, and 8.5 is vulnerable to server-side request forgery (SSRF) with the Ajax Proxy configured. This may allow an...	IBM	WebSphere Application Server 9.0	Jun 22, 2026	CVE
HIGH 7.5	CVE-2026-8858	IBM i is Affected By Denial of Service, HTTP Request Smuggling, and Remote Code Execution Vulnerabilities in IBM WebSphere Application Server Liberty [, , , , ]_CVE-2026-8858 IBM i 7.6, 7.5, 7.4, and 7.3, IBM WebSphere Application Server and IBM WebSphere Application Server Liberty are vulnerable to remote code execution...	IBM	i 7.6.0	Jun 22, 2026	CVE
HIGH 7.4	CVE-2026-8646	IBM WebSphere Application Server and WebSphere Application Server Liberty are affected by multiple vulnerabilities_CVE-2026-8646 IBM WebSphere Application Server 9.0 and 8.5 and IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.6 are vulnerable to HTTP reques...	IBM	WebSphere Application Server 9.0.0	Jun 22, 2026	CVE
HIGH 8.2	CVE-2026-54268	Angular: Denial of Service (DoS) via OOM in Date Formatting (formatDate)_CVE-2026-54268 Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.1...	angular	angular >= 22.0.0-next.0 < 22.0.1	Jun 22, 2026	CVE
HIGH 8.6	CVE-2026-54267	Angular Client Hydration DOM Clobbering & Response-Cache Poisoning_CVE-2026-54267 Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.1...	angular	angular >= 22.0.0-next.0 < 22.0.1	Jun 22, 2026	CVE
HIGH 8.8	CVE-2026-54266	Angular: Weak 32-Bit Cache Key Hashing in `HttpTransferCache` Leading to Cross-Request Data Leakage and State Poisoning_CVE-2026-54266 Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.1...	angular	angular >= 22.0.0-next.0 < 22.0.1	Jun 22, 2026	CVE
HIGH 8.3	CVE-2026-54264	Angular: Sensitive Header Leakage on Cross-Origin Redirects in Angular Service Worker_CVE-2026-54264 Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.1...	angular	angular >= 22.0.0-next.0 < 22.0.1	Jun 22, 2026	CVE
HIGH 8.7	CVE-2026-50178	Angular: Remote Code Execution via JSDoc Hover Command Injection in VS Code Angular Language Service Extension_CVE-2026-50178 The Angular Language Service VS Code Extension provides a rich editing experience for Angular templates. the client-side Angular Language Service V...	angular	angular < 21.2.4	Jun 22, 2026	CVE
HIGH 8.7	CVE-2026-49241	Angular: Multiple Remote Code Execution Vulnerabilities in Angular Language Service VS Code Extension_CVE-2026-49241 The Angular Language Service VS Code Extension provides a rich editing experience for Angular templates. Prior to 21.2.4, the client-side Angular L...	angular	angular < 21.2.4	Jun 22, 2026	CVE
HIGH 8.4	CVE-2026-41049	Caching of Authentication allows Authentication Bypass between users in qSnapper_CVE-2026-41049 Incorrect caching of authentication between different users of the qSnapper dbus service before version 1.3.3 allowed any local attacker to use db...	presire	qSnapper 1.2.1	Jun 22, 2026	CVE