HIGH - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 8.8	MS:CVE-2025-8880	Chromium: CVE-2025-8880 Race in V8_MS:CVE-2025-8880 This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...	N/A	N/A	Aug 15, 2025	MSCVE
HIGH 8.8	MS:CVE-2025-8901	Chromium: CVE-2025-8901 Out of bounds write in ANGLE_MS:CVE-2025-8901 This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...	N/A	N/A	Aug 15, 2025	MSCVE
HIGH 8.8	MS:CVE-2025-8882	Chromium: CVE-2025-8882 Use after free in Aura_MS:CVE-2025-8882 This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...	N/A	N/A	Aug 15, 2025	MSCVE
HIGH 7.5	CVE-2025-8959	HashiCorp go-getter Vulnerable to Arbitrary Read through Symlink Attack_CVE-2025-8959 HashiCorp's go-getter library subdirectory download feature is vulnerable to symlink attacks leading to unauthorized read access beyond the designa...	HashiCorp	Shared library	Aug 15, 2025	CVE
HIGH 7.6	CVE-2025-8092	COOKiES Consent Management – Moderately critical – Cross-site Scripting – SA-CONTRIB-2025-092_CVE-2025-8092 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal COOKiES Consent Management allows Cros...	Drupal	COOKiES Consent Management 0.0.0	Aug 15, 2025	CVE
HIGH 7.6	CVE-2025-8361	Config Pages – Moderately critical – Access bypass – SA-CONTRIB-2025-093_CVE-2025-8361 Missing Authorization vulnerability in Drupal Config Pages allows Forceful Browsing.This issue affects Config Pages: from 0.0.0 before 2.18.0.	Drupal	Config Pages 0.0.0	Aug 15, 2025	CVE
HIGH 8.5	CVE-2025-49897	WordPress Vertical scroll slideshow gallery v2 plugin <= 9.1 - SQL Injection vulnerability_CVE-2025-49897 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in gopiplus Vertical scroll slideshow gallery v2...	gopiplus	Vertical scroll slideshow gallery v2 n/a	Aug 15, 2025	CVE
HIGH 7.1	CVE-2025-24975	Firebird Non-Authorized Access to Encrypted Database Using Execute Statement on External_CVE-2025-24975 Firebird is a relational database. Prior to snapshot versions 4.0.6.3183, 5.0.2.1610, and 6.0.0.609, Firebird is vulnerable if ExtConnPoolSize is n...	FirebirdSQL	firebird < 6.0.0.609	Aug 15, 2025	CVE
HIGH 7.8	CVE-2025-5046	DGN File Parsing Out-of-Bounds Read Vulnerability_CVE-2025-5046 A maliciously crafted DGN file, when linked or imported into Autodesk AutoCAD, can force an Out-of-Bounds Read vulnerability. A malicious actor can...	Autodesk	AutoCAD 2026	Aug 15, 2025	CVE
HIGH 7.8	CVE-2025-5047	DGN File Parsing Uninitialized Variable Vulnerability_CVE-2025-5047 A maliciously crafted DGN file, when parsed through Autodesk AutoCAD, can force an Uninitialized Variable vulnerability. A malicious actor can leve...	Autodesk	AutoCAD 2026	Aug 15, 2025	CVE