CVSS - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 5.4	CVE-2026-8356	Stack buffer overflow in PPT presentation import_CVE-2026-8356 LibreOffice can import presentations in the legacy binary PPT format. A stack buffer overflow existed when importing a colour-replacement record. T...	The Document Foundation	LibreOffice 26.2	Jun 15, 2026	CVE
MEDIUM 5.4	CVE-2026-6047	Heap buffer overflow in OOXML text box element import_CVE-2026-6047 LibreOffice can import documents in the OOXML format (DOCX). A heap buffer overflow existed when replaying deferred parser events for a text box el...	The Document Foundation	LibreOffice 25.8	Jun 15, 2026	CVE
MEDIUM 5.4	CVE-2026-6045	Heap buffer overflow in EMF+ gradient brush import_CVE-2026-6045 LibreOffice can import EMF+ graphics, which may be embedded in documents. A heap buffer overflow existed when importing an EMF+ gradient brush. The...	The Document Foundation	LibreOffice 25.8	Jun 15, 2026	CVE
MEDIUM 5.4	CVE-2026-6040	Heap use-after-free in ODF number-format blank-width parsing_CVE-2026-6040 A heap use-after-free existed when importing the blank-width characters of an ODF number format. A position value read from the document was not ch...	The Document Foundation	LibreOffice 25.8	Jun 15, 2026	CVE
MEDIUM 5.4	CVE-2026-6039	Heap buffer overflow in DXF polyline import_CVE-2026-6039 LibreOffice can import drawings in the DXF format used by CAD software. A heap buffer overflow existed when importing a DXF polyline. The point cou...	The Document Foundation	LibreOffice 25.8	Jun 15, 2026	CVE
MEDIUM 6.1	CVE-2026-49294	Valhalla has reflected XSS via unsanitized JSONP callback parameter_CVE-2026-49294 Valhalla is an open source routing engine and accompanying libraries for use with OpenStreetMap data. Versions 3.6.3 and prior are vulnerable to re...	valhalla	valhalla <= 3.6.3	Jun 15, 2026	CVE
HIGH 7.5	CVE-2026-47777	Mastodon has a consent-check bypass in its remote Collections_CVE-2026-47777 Mastodon is a free, open-source social network server based on ActivityPub. In versions there is a missing condition in the check if remote account...	mastodon	mastodon >= nightly.2026-03-10, < 4.6.0-beta.1	Jun 15, 2026	CVE
MEDIUM 6.5	CVE-2026-20262	Cisco Catalyst SD-WAN Manager Arbitrary File Write Vulnerability_CVE-2026-20262 A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an authenticated, remote attacker to create a ...	Cisco	Cisco Catalyst SD-WAN Manager 20.1.12	Jun 15, 2026	CVE
NONE	PACKETSTORM:223392	📄 FreeType Font Rendering Overflow Test Harness / Crash Detection_PACKETSTORM:223392 This C program is a testing harness built around the FreeType font rendering library to detect potential memory corruption issues such as heap buff...	N/A	N/A	Jun 15, 2026	PACKETSTORM
NONE	PACKETSTORM:223409	📄 FreeType SHZ 2.14.3 Heap Buffer Overflow_PACKETSTORM:223409 This Python proof of concept framework is designed for security research into a reported heap buffer overflow condition affecting the FreeType True...	N/A	N/A	Jun 15, 2026	PACKETSTORM