HIGH - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.3	CVE-2025-8069	Local Privilege Escalation Vulnerability in AWS Client VPN Windows Client_CVE-2025-8069 During the AWS Client VPN client installation on Windows devices, the install process references the C:\usr\local\windows-x86_64-openssl-localbuild...	AWS	Client VPN 4.1.0	Jul 23, 2025	CVE
HIGH 7.8	CVE-2025-2634	Out of Bounds Read Vulnerability in NI LabVIEW when building font map_CVE-2025-2634 Out of bounds read vulnerability due to improper bounds checking in NI LabVIEW in fontmgr may result in information disclosure or arbitrary code ex...	NI	LabVIEW	Jul 23, 2025	CVE
HIGH 7.8	CVE-2025-2633	Out of Bounds Read Vulnerability in NI LabVIEW when loading fonts_CVE-2025-2633 Out of bounds read vulnerability due to improper bounds checking in NI LabVIEW in lvre!UDecStrToNum that may result in information disclosure or ar...	NI	LabVIEW	Jul 23, 2025	CVE
HIGH 8.7	CVE-2025-4700	Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) in GitLab_CVE-2025-4700 An issue has been discovered in GitLab CE/EE affecting all versions from 15.10 before 18.0.5, 18.1 before 18.1.3, and 18.2 before 18.2.1 that, unde...	GitLab	GitLab 15.10	Jul 23, 2025	CVE
HIGH 7.8	CVE-2025-54377	Roo Code Lacks Line Break Validation in its Command Execution Tool_CVE-2025-54377 Roo Code is an AI-powered autonomous coding agent that lives in users' editors. In versions 3.23.18 and below, RooCode does not validate line break...	RooCodeInc	Roo-Code < 3.23.19	Jul 23, 2025	CVE
HIGH 7.1	CVE-2025-53942	authentik has an insufficient check for account active status during OAuth/SAML authentication_CVE-2025-53942 authentik is an open-source Identity Provider that emphasizes flexibility and versatility, with support for a wide set of protocols. In versions 20...	goauthentik	authentik <= 2025.4.3, < 2025.4.4	Jul 23, 2025	CVE
HIGH 7.5	CVE-2025-53537	LibHTP’s memory leak with lzma can lead to resource starvation_CVE-2025-53537 LibHTP is a security-aware parser for the HTTP protocol and its related bits and pieces. In versions 0.5.50 and below, there is a traffic-induced m...	OISF	libhtp < 0.5.51	Jul 23, 2025	CVE
HIGH 7.7	CVE-2025-47281	Kyverno’s Improper JMESPath Variable Evaluation Leads to Denial of Service_CVE-2025-47281 Kyverno is a policy engine designed for cloud native platform engineering teams. In versions 1.14.1 and below, a Denial of Service (DoS) vulnerabil...	kyverno	kyverno < 1.14.2	Jul 23, 2025	CVE
HIGH 7.8	CVE-2025-54365	fastapi-guard patch contains bypassable RegEx_CVE-2025-54365 fastapi-guard is a security library for FastAPI that provides middleware to control IPs, log requests, detect penetration attempts and more. In ver...	rennf93	fastapi-guard >= 3.0.1, < 3.0.2	Jul 23, 2025	CVE
HIGH 7.8	CVE-2025-26397	SolarWinds Observability Self-Hosted Deserialization of Untrusted Data Local Privilege Escalation Vulnerability_CVE-2025-26397 SolarWinds Observability Self-Hosted is susceptible to Deserialization of Untrusted Data Local Privilege Escalation vulnerability. An attacker with...	SolarWinds	SolarWinds Observability Self-Hosted 2025.2 and previous versions	Jul 24, 2025	CVE