Vulnerability - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.5	CVE-2025-53114	CometD has acknowledgement extension out of memory_CVE-2025-53114 CometD is a scalable comet implementation for web messaging. In versions 5.0.0 through 5.0.22, 6.0.0 through 6.0.18, 7.0.0 through 7.0.18, and 8.0....	cometd	cometd >= 5.0.0, < 5.0.23	Jun 18, 2026	CVE
HIGH 8.7	CVE-2025-32437	AutoGPT has a DoS vulnerability in MediaDurationBlock_CVE-2025-32437 AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. Prior to 0.6.63, `MediaD...	Significant-Gravitas	AutoGPT < 0.6.63	Jun 18, 2026	CVE
HIGH 7.1	CVE-2025-32436	AutoGPT has a DoS vulnerability in AddAudioToVideoBlock_CVE-2025-32436 AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. Prior to 0.6.63, `AddAud...	Significant-Gravitas	AutoGPT < 0.6.63	Jun 18, 2026	CVE
HIGH 8.7	CVE-2025-32424	AutoGPT has a DoS vulnerability in ScreenshotWebPageBlock_CVE-2025-32424 AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. Prior to 0.6.63, Screens...	Significant-Gravitas	AutoGPT < 0.6.63	Jun 18, 2026	CVE
HIGH 8.7	CVE-2025-32422	AutoGPT has a DoS vulnerability in FileStoreBlock with StepThroughItemsBlock_CVE-2025-32422 AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. Prior to 0.6.63, `StepTh...	Significant-Gravitas	AutoGPT < 0.6.63	Jun 18, 2026	CVE
HIGH 8.7	CVE-2025-32392	AutoGPT has a DoS vulnerability in LoopVideoBlock_CVE-2025-32392 AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. Prior to 0.6.63, AutoGPT...	Significant-Gravitas	AutoGPT < 0.6.63	Jun 18, 2026	CVE
CRITICAL 9.3	CVE-2026-54390	JTL Shop < 5.7.2 Server-Side Template Injection via Smarty Renderer_CVE-2026-54390 JTL Shop versions 5.2.0 through 5.7.1 contains a server-side template injection vulnerability that allows unauthenticated attackers to inject malic...	JTL Software	JTL Shop 5.0.0	Jun 18, 2026	CVE
MEDIUM 4.7	CVE-2026-48986	pam_usb: Infinite loop DoS in process-tree walk when parent process exits during authentication_CVE-2026-48986 pam_usb provides hardware authentication for Linux using removable media. In pam_usb 0.9.1 and earlier, usb_get_process_parent_id() can cause an in...	mcdope	pam_usb < 0.9.2	Jun 18, 2026	CVE
MEDIUM 5.5	CVE-2026-48985	pam_usb: NULL Dereference Crash in pusb_is_loginctl_local when loginctl Returns Empty Remote Field_CVE-2026-48985 pam_usb provides hardware authentication for Linux using ordinary removable media. In versions 0.9.1 and below, pusb_is_loginctl_local() can cause ...	mcdope	pam_usb < 0.9.2	Jun 18, 2026	CVE
MEDIUM 4.7	CVE-2026-48984	pam_usb: xfree() does not call explicit_bzero — sensitive cryptographic material may linger in freed heap_CVE-2026-48984 pam_usb provides hardware authentication for Linux using ordinary removable media. In versions 0.9.1 and below, the xfree() memory release helper i...	mcdope	pam_usb < 0.9.2	Jun 18, 2026	CVE