LOW - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
LOW 3.3	CVE-2026-45485	Microsoft Office Information Disclosure Vulnerability_CVE-2026-45485 {“lastseen”:””,”description”:””,”published”:”2026-06-09T17:04:25.336Z”,&#82...	Microsoft	Microsoft 365 Apps for Enterprise 16.0.1	Jun 9, 2026	CVE
LOW 3.3	CVE-2026-45466	Microsoft Word Information Disclosure Vulnerability_CVE-2026-45466 {“lastseen”:””,”description”:””,”published”:”2026-06-09T17:04:42.954Z”,&#82...	Microsoft	Microsoft 365 Apps for Enterprise 16.0.1	Jun 9, 2026	CVE
LOW 3.3	CVE-2026-45459	Microsoft Excel Security Feature Bypass Vulnerability_CVE-2026-45459 {“lastseen”:””,”description”:””,”published”:”2026-06-09T17:05:24.602Z”,&#82...	Microsoft	Microsoft 365 Apps for Enterprise 16.0.1	Jun 9, 2026	CVE
LOW 3.3	CVE-2026-45455	Microsoft Excel Information Disclosure Vulnerability_CVE-2026-45455 {“lastseen”:””,”description”:””,”published”:”2026-06-09T17:05:23.326Z”,&#82...	Microsoft	Microsoft 365 Apps for Enterprise 16.0.1	Jun 9, 2026	CVE
LOW 1.9	CVE-2026-0410	Insufficient input validation in certain NETGEAR routers_CVE-2026-0410 Authenticated administrators connected to the local network can gain elevated access to the router and make unauthorized changes to router softwa...	NETGEAR	R7000	Jun 9, 2026	CVE
LOW 3.3	CVE-2026-11792	389-ds-base: 389-ds-base: heap buffer overflow in audit log password masking (create_masked_entry_string)_CVE-2026-11792 A heap buffer overflow flaw was found in 389 Directory Server. When audit logging is enabled, the create_masked_entry_string() function in auditlog...	Red Hat	Red Hat Directory Server 11	Jun 9, 2026	CVE
LOW 1.9	CVE-2026-11786	389-ds-base: 389-ds-base: heap out-of-bounds read in ldif parser str2entry_state_information_from_type()_CVE-2026-11786 A flaw was found in 389 Directory Server. The LDIF parser reads past the end of a heap buffer when processing attribute types with trailing semicol...	Red Hat	Red Hat Directory Server 11	Jun 9, 2026	CVE
LOW 3.5	CVE-2026-8981	Lazy Blocks < 4.3.0 - Admin+ Stored XSS via Custom Block Frontend HTML_CVE-2026-8981 The Custom Block Builder WordPress plugin before 4.3.0 does not consistently check the unfiltered_html capability across all paths that write to i...	Unknown	Custom Block Builder	Jun 9, 2026	CVE
LOW 2.1	CVE-2026-49738	TYPO3 CMS – Broken Access Control in File Abstraction Layer_CVE-2026-49738 The path allowance check in GeneralUtility::isAllowedAbsPath() performed a plain string prefix comparison without requiring a directory separator b...	TYPO3	TYPO3 CMS	Jun 9, 2026	CVE
LOW 3.6	CVE-2026-11764	Data exposed without proper permission_CVE-2026-11764 When creating an export of all reusable media, the secrets of connected gift cards were included in the export even if the user creating the expo...	pretix	pretix 2024.1.0	Jun 9, 2026	CVE