hackerone - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	H1:3335085	curl: TOCTOU Race Condition in HTTP/2 Connection Reuse Leads to Certificate Validation Bypass_H1:3335085 Vulnerability description not provided	N/A	N/A	Sep 11, 2025	HACKERONE
NONE	H1:3306456	curl: Curl parse_connect_to_string Heap-Overread Leading to Denial of Service via CURLOPT_CONNECT_TO_H1:3306456 Vulnerability description not provided	N/A	N/A	Aug 20, 2025	HACKERONE
NONE	H1:3306475	curl: curl leaks destination IP via glibc getaddrinfo() UDP connect, bypassing SOCKS5/Tor_H1:3306475 Vulnerability description not provided	N/A	N/A	Aug 20, 2025	HACKERONE
NONE	H1:3304704	WakaTime: Invalid_H1:3304704 Vulnerability description not provided	N/A	N/A	Aug 19, 2025	HACKERONE
NONE	H1:3303765	curl: WebSocket Fragmentation DoS on Curl Client_H1:3303765 Vulnerability description not provided	N/A	N/A	Aug 18, 2025	HACKERONE
NONE	H1:3302518	curl: ## Title Heap Use-After-Free Vulnerability in `curl` Leading to Potential Code Execution_H1:3302518 Vulnerability description not provided	N/A	N/A	Aug 17, 2025	HACKERONE
NONE	H1:3293177	curl: Path Traversal in SFTP QUOTE command leads to Arbitrary File Write and potential RCE_H1:3293177 Vulnerability description not provided	N/A	N/A	Aug 9, 2025	HACKERONE
NONE	H1:3293801	curl: Title: Remote Code Execution (RCE) via Arbitrary Library Loading in `–engine` option_H1:3293801 Vulnerability description not provided	N/A	N/A	Aug 10, 2025	HACKERONE
NONE	H1:3293884	curl: Vulnerability Report: Local File Disclosure via file:// Protocol in cURL_H1:3293884 Vulnerability description not provided	N/A	N/A	Aug 10, 2025	HACKERONE
NONE	H1:3292590	curl: Heap Buffer Overflow in Curl_memdup0() via CURLOPT_COPYPOSTFIELDS/CURLOPT_POSTFIELDSIZE Mismatch_H1:3292590 Vulnerability description not provided	N/A	N/A	Aug 9, 2025	HACKERONE