tapic - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 8.6	CVE-2026-47835	Spring AI vector store metadata filtering to handle special characters in Elasticsearch, OpenSearch, and GemFire Vector Stores_CVE-2026-47835 In Spring AI Vector Stores, special characters could be used to force the execution of arbitrary queries in Elasticsearch, OpenSearch, and GemFire ...	Spring	Spring AI 1.0.0	Jun 15, 2026	CVE
HIGH 8.6	CVE-2026-11527	Config::IniFiles versions before 3.001000 for Perl allow OS command injection and file overwrite via a 2-arg open() of the -file argument in _make_filehandle_CVE-2026-11527 Config::IniFiles versions before 3.001000 for Perl allow OS command injection and file overwrite via a 2-arg open() of the -file argument in _make_...	SHLOMIF	Config::IniFiles	Jun 14, 2026	CVE
HIGH 7.5	CVE-2026-41708	Spring Cloud Sleuth instrumentation of Spring TX DoS vulnerability_CVE-2026-41708 In Spring Cloud Sleuth, it is possible for a user to provide specially crafted calls that may cause a denial-of-service (DoS) condition. The applic...	Spring	Spring Cloud Sleuth 3.1.0	Jun 15, 2026	CVE
MEDIUM 6.8	CVE-2026-11931	Insecure Permissions on Authentication Token Cache File in Kiro IDE_CVE-2026-11931 Incorrect default permissions in Kiro IDE on macOS and Linux before version 0.11.133 could expose the authentication token cache file to other loca...	AWS	Kiro IDE	Jun 15, 2026	CVE
NONE	PACKETSTORM:223427	📄 InnoShop 0.8.2 File Manager File Deletion / Path Traversal_PACKETSTORM:223427 This Metasploit module exploits a path traversal vulnerability in the InnoShop version 0.8.2's File Manager API. The destroyFiles endpoint does not...	N/A	N/A	Jun 15, 2026	PACKETSTORM
NONE	PACKETSTORM:223456	📄 Netis N5VN AC1200 1.0.1.1742 Buffer Overflow / Denial of Service_PACKETSTORM:223456 A buffer overflow vulnerability in the Netis N5VN AC1200 router allows an attacker to crash the web server by sending a crafted request. Version 1....	N/A	N/A	Jun 15, 2026	PACKETSTORM
HIGH 8.3	B8597AF3-5382-	Exploit for CVE-2025-2783_B8597AF3-5382-5D92-B7C2-B9350D29B3DD Chromium CVE-2025-2783: Sandbox Escape & Full-Chain RCE Exploit This repository contains a full-chain exploit implementation for CVE-2025-2783. The...	N/A	N/A	Jun 15, 2026	GITHUBEXPLOIT
NONE	MSSECURE:A65050...	Microsoft Defender email security benchmarking: Key insights from one year of data_MSSECURE:A650500D4863A9781E2203D208A89002 Microsoft publishes quarterly email security benchmarking data comparing Microsoft Defender against secure email gateway (SEG) and integrated cloud...	N/A	N/A	Jun 15, 2026	MSSECURE
MEDIUM 5.4	CVE-2026-8358	Heap buffer overflow in spreadsheet tracked-changes import_CVE-2026-8358 LibreOffice Calc can import tracked changes from a spreadsheet document. A heap buffer overflow existed when a document reused the same change iden...	The Document Foundation	LibreOffice 26.2	Jun 15, 2026	CVE
MEDIUM 5.4	CVE-2026-8357	Heap buffer overflow in Calc formula compilation_CVE-2026-8357 LibreOffice Calc compiles cell formulas when opening a spreadsheet. A heap buffer overflow existed when compiling a very long formula made up of ma...	The Document Foundation	LibreOffice 26.2	Jun 15, 2026	CVE