CRITICAL - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.3	CVE-2025-8731	TRENDnet TI-G160i/TI-PG102i/TPL-430AP SSH Service default credentials_CVE-2025-8731 A vulnerability was found in TRENDnet TI-G160i, TI-PG102i and TPL-430AP up to 20250724. It has been classified as critical. This affects an unknown...	TRENDnet	TI-G160i 20250724	Aug 8, 2025	CVE
CRITICAL 9.8	CVE-2025-8356	Path Traversal leading to RCE_CVE-2025-8356 In Xerox FreeFlow Core version 8.0.4, an attacker can exploit a Path Traversal vulnerability to access unauthorized files on the server. This can l...	Xerox	FreeFlow Core	Aug 8, 2025	CVE
CRITICAL 9.3	CVE-2025-8730	Belkin F9K1009/F9K1010 Web Interface hard-coded credentials_CVE-2025-8730 A vulnerability was found in Belkin F9K1009 and F9K1010 2.00.04/2.00.09 and classified as critical. Affected by this issue is some unknown function...	Belkin	F9K1009 2.00.04	Aug 8, 2025	CVE
CRITICAL 9.1	CVE-2025-54887	jwe: Missing AES-GCM authentication tag validation in encrypted JWEs_CVE-2025-54887 jwe is a Ruby implementation of the RFC 7516 JSON Web Encryption (JWE) standard. In versions 1.1.0 and below, authentication tags of encrypted JWEs...	jwt	ruby-jwe < 1.1.1	Aug 8, 2025	CVE
CRITICAL 9.1	MS:CVE-2025-53792	Azure Portal Elevation of Privilege Vulnerability_MS:CVE-2025-53792 {“lastseen”:”2025-08-07T22:54:54″,”description”:””,”published”:”2025-08-07T07:00:...	N/A	N/A	Aug 7, 2025	MSCVE
CRITICAL 10	MS:CVE-2025-53767	Azure OpenAI Elevation of Privilege Vulnerability_MS:CVE-2025-53767 {“lastseen”:”2025-08-07T22:54:54″,”description”:””,”published”:”2025-08-07T07:00:...	N/A	N/A	Aug 7, 2025	MSCVE
CRITICAL 9.1	CVE-2025-53792	Azure Portal Elevation of Privilege Vulnerability_CVE-2025-53792 {“lastseen”:””,”description”:””,”published”:”2025-08-07T21:01:01.529Z”,&#82...	Microsoft	Azure Portal N/A	Aug 7, 2025	CVE
CRITICAL 10	CVE-2025-53767	Azure OpenAI Elevation of Privilege Vulnerability_CVE-2025-53767 {“lastseen”:””,”description”:””,”published”:”2025-08-07T21:01:02.345Z”,&#82...	Microsoft	Azure Open AI N/A	Aug 7, 2025	CVE
CRITICAL 9.4	CVE-2025-34149	Shenzhen Aitemi M300 Wi-Fi Repeater OS Command Injection via WPA2 Key_CVE-2025-34149 A command injection vulnerability affects the Shenzhen Aitemi M300 Wi-Fi Repeater (hardware model MT02) during WPA2 configuration. The 'key' parame...	Shenzhen Aitemi E Commerce Co. Ltd.	M300 Wi-Fi Repeater *	Aug 7, 2025	CVE
CRITICAL 9.4	CVE-2025-34150	Shenzhen Aitemi M300 Wi-Fi Repeater PPPoE Username Command Injection_CVE-2025-34150 The PPPoE configuration interface of the Shenzhen Aitemi M300 Wi-Fi Repeater (hardware model MT02) is vulnerable to command injection via the 'user...	Shenzhen Aitemi E Commerce Co. Ltd.	M300 Wi-Fi Repeater *	Aug 7, 2025	CVE