Vulnerability - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 8.7	CVE-2025-32424	AutoGPT has a DoS vulnerability in ScreenshotWebPageBlock_CVE-2025-32424 AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. Prior to 0.6.63, Screens...	Significant-Gravitas	AutoGPT < 0.6.63	Jun 18, 2026	CVE
HIGH 8.7	CVE-2025-32422	AutoGPT has a DoS vulnerability in FileStoreBlock with StepThroughItemsBlock_CVE-2025-32422 AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. Prior to 0.6.63, `StepTh...	Significant-Gravitas	AutoGPT < 0.6.63	Jun 18, 2026	CVE
HIGH 8.7	CVE-2025-32392	AutoGPT has a DoS vulnerability in LoopVideoBlock_CVE-2025-32392 AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. Prior to 0.6.63, AutoGPT...	Significant-Gravitas	AutoGPT < 0.6.63	Jun 18, 2026	CVE
CRITICAL 9.3	CVE-2026-54390	JTL Shop < 5.7.2 Server-Side Template Injection via Smarty Renderer_CVE-2026-54390 JTL Shop versions 5.2.0 through 5.7.1 contains a server-side template injection vulnerability that allows unauthenticated attackers to inject malic...	JTL Software	JTL Shop 5.0.0	Jun 18, 2026	CVE
MEDIUM 4.7	CVE-2026-48986	pam_usb: Infinite loop DoS in process-tree walk when parent process exits during authentication_CVE-2026-48986 pam_usb provides hardware authentication for Linux using removable media. In pam_usb 0.9.1 and earlier, usb_get_process_parent_id() can cause an in...	mcdope	pam_usb < 0.9.2	Jun 18, 2026	CVE
MEDIUM 5.5	CVE-2026-48985	pam_usb: NULL Dereference Crash in pusb_is_loginctl_local when loginctl Returns Empty Remote Field_CVE-2026-48985 pam_usb provides hardware authentication for Linux using ordinary removable media. In versions 0.9.1 and below, pusb_is_loginctl_local() can cause ...	mcdope	pam_usb < 0.9.2	Jun 18, 2026	CVE
MEDIUM 4.7	CVE-2026-48984	pam_usb: xfree() does not call explicit_bzero — sensitive cryptographic material may linger in freed heap_CVE-2026-48984 pam_usb provides hardware authentication for Linux using ordinary removable media. In versions 0.9.1 and below, the xfree() memory release helper i...	mcdope	pam_usb < 0.9.2	Jun 18, 2026	CVE
MEDIUM 5.3	CVE-2026-9692	Mojolicious::Sessions::Storable versions through 0.05 for Perl generate session ids insecurely_CVE-2026-9692 Mojolicious::Sessions::Storable versions through 0.05 for Perl generate session ids insecurely. The default session id generator returns a SHA-1 h...	HAYAJO	Mojolicious::Sessions::Storable	Jun 18, 2026	CVE
MEDIUM 6.7	CVE-2026-55392	NILFS utilities – Undefined Behavior and Out-of-Memory via Unvalidated s_log_block_size_CVE-2026-55392 NILFS utilities through 2.3.0, fixed in commit 26efb5d, nilfs_sb_is_valid() function fails to validate s_log_block_size field in NILFS2 superblock ...	nilfs-dev	nilfs-utils	Jun 18, 2026	CVE
MEDIUM 5.3	CVE-2026-48937	CVE-2026-48937_CVE-2026-48937 A flaw in Node.js HTTP/2 server API can cause servers to keep accepting data even after sending a `GOAWAY` frame. This vulnerability affects two su...	nodejs	node 22.22.3	Jun 18, 2026	CVE