MEDIUM - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 5.3	CVE-2026-54269	protobufjs: Schema-derived names can shadow runtime-significant properties_CVE-2026-54269 protobufjs compiles protobuf definitions into JavaScript (JS) functions. Prior to 8.6.0 and 7.6.3, protobufjs accepted certain schema-derived names...	protobufjs	protobuf.js < 7.6.3	Jun 22, 2026	CVE
MEDIUM 5.5	CVE-2026-53632	NTLMv2 hash disclosure via UNC path handling on Windows_CVE-2026-53632 launch-editor allows users to open files with line numbers in editor from Node.js. Prior to 2.14.1, the launch-editor NPM package accesses arbitrar...	vitejs	launch-editor < 2.14.1	Jun 22, 2026	CVE
MEDIUM 5.7	CVE-2026-50184	Angular: Request Credential & Cache Policy Stripping in Angular Service Worker_CVE-2026-50184 Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.0...	angular	angular >= 22.0.0-next.0, < 22.0.0-rc.2	Jun 22, 2026	CVE
MEDIUM 5.7	CVE-2026-50169	Angular Service Worker Policy-Bypass & Credential-Stripping Vulnerabilities_CVE-2026-50169 Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.0...	angular	angular >= 22.0.0-next.0, < 22.0.0-rc.2	Jun 22, 2026	CVE
MEDIUM 4.8	CVE-2026-11994	Akaunting 3.1.21 – Authenticated stored XSS in report description rendering_CVE-2026-11994 Akaunting 3.1.21 contains an authenticated stored Cross-Site Scripting vulnerability in the report management workflow. A user with permission to c...	Akaunting	Akaunting 3.1.21	Jun 22, 2026	CVE
MEDIUM 5.9	A63E68C2-3F8F-	Exploit for Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) in Trustwallet Trust_Wallet_Browser_Extension_A63E68C2-3F8F-5064-93CE-8E4051079D14 DONATE: bc1qps62cyk9f9unmdkc9k3ccj9e2h8ywfhg2j53ec Built with ❤️ for the crypto research community. 🚀 CVE-2023-31290 Scanner - Bitcoin & Ethereum ...	N/A	N/A	Jun 22, 2026	GITHUBEXPLOIT
MEDIUM 4.2	MS:CVE-2026-12460	Chromium: CVE-2026-12460 Insufficient policy enforcement in File System Access_MS:CVE-2026-12460 This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...	N/A	N/A	Jun 19, 2026	MSCVE
MEDIUM 4.2	MS:CVE-2026-12457	Chromium: CVE-2026-12457 Insufficient data validation in Extensions_MS:CVE-2026-12457 This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...	N/A	N/A	Jun 19, 2026	MSCVE
MEDIUM 5.9	CVE-2026-9320	IBM WebSphere Application Server and WebSphere Application Server Liberty are affected by multiple vulnerabilities_CVE-2026-9320 IBM WebSphere Application Server 9.0, and 8.5 and IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.6 are vulnerable to a denial o...	IBM	WebSphere Application Server 9.0.0	Jun 22, 2026	CVE
MEDIUM 6.9	CVE-2026-8934	Cross-Project Information Leakage in Google App Engine UI_CVE-2026-8934 A Missing Authorization vulnerability in a GraphQL private API operation of the Google App Engine section of the Cloud Console allows an unauthenti...	Google Cloud	Cloud Console UIs	Jun 22, 2026	CVE