Security - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 8.7	CVE-2026-13539	Wavlink WL-NU516U1-A POST Parameter wireless.cgi sub_407504 stack-based overflow_CVE-2026-13539 A vulnerability was identified in Wavlink WL-NU516U1-A M16U1_V240425. The impacted element is the function sub_407504 of the file /cgi-bin/wireless...	Wavlink	WL-NU516U1-A M16U1_V240425	Jun 29, 2026	CVE
MEDIUM 6.8	CVE-2025-7386	Information exposure vulnerability in Hitachi Storage Navigator_CVE-2025-7386 Information exposure vulnerability in Hitachi Storage Navigator. This issue affects Hitachi Virtual Storage Platform 5100, 5200, 5500, 5600, 5100H...	Hitachi	Hitachi Virtual Storage Platform 5100, 5200, 5500, 5600, 5100H, 5200H, 5500H, 5600H, VX8	Jun 29, 2026	CVE
HIGH 8.3	CVE-2025-2902	Improper Authorization Vulnerability of Maintenance Utility in Hitachi Virtual Storage Platform_CVE-2025-2902 Improper Authorization Vulnerability of Maintenance Utility in Hitachi Virtual Storage Platform. This issue affects Hitachi Virtual Storage Platfo...	Hitachi	Hitachi Virtual Storage Platform E390, E590, E790, E990, E1090, E390H, E590H, E790H, E1090H	Jun 29, 2026	CVE
LOW 3.7	CVE-2025-0824	lack of validation for firmware update in Hitachi Virtual Storage_CVE-2025-0824 Lack of validation for firmware update in Hitachi Hitachi Virtual Storage Platform One Block 23, 24, 26, 28. This issue affects Hitachi Virtual St...	Hitachi	Hitachi Virtual Storage Platform One Block 23, 24, 26, 28	Jun 29, 2026	CVE
MEDIUM 6.9	CVE-2026-9267	CVE-2026-9267_CVE-2026-9267 Eclipse tinydtls before commit b3efd41ad111a4920f599f51ffa4f5e9f1e72221 contains an out-of-bounds read vulnerability in the check_server_certificat...	Eclipse Foundation	Eclipse tinydtls	Jun 29, 2026	CVE
MEDIUM 4.4	CVE-2026-57966	Spice-vdagent: path traversal in file transfer via unsanitized filename_CVE-2026-57966 A path traversal vulnerability was found in spice-vdagent. This flaw allows a malicious or compromised SPICE host to write arbitrary files to any l...	Red Hat	Red Hat Enterprise Linux 10	Jun 29, 2026	CVE
MEDIUM 5.1	CVE-2026-57965	Spice-vdagent: integer overflow in udscs_write() leading to heap buffer overflow_CVE-2026-57965 A flaw was found in spice-vdagent. A malicious or compromised SPICE host can trigger an integer overflow by sending a specially crafted message. Th...	Red Hat	Red Hat Enterprise Linux 10	Jun 29, 2026	CVE
MEDIUM 4.3	CVE-2026-57676	WordPress Simple User Avatar plugin <= 4.9 - Insecure Direct Object References (IDOR) vulnerability_CVE-2026-57676 Authorization Bypass Through User-Controlled Key vulnerability in Matteo Manna Simple User Avatar allows Exploiting Incorrectly Configured Access C...	Matteo Manna	Simple User Avatar n/a	Jun 29, 2026	CVE
HIGH 7.3	CVE-2026-22078	O+ Connect’s lack of authentication for IPC channels led to a local privilege escalation vulnerability._CVE-2026-22078 Because O+ Connect's IPC service does not authenticate clients, external applications can escalate privileges and perform sensitive actions through...	OPPO	O+ Connect 16.0.33	Jun 29, 2026	CVE
MEDIUM 6.8	CVE-2026-13595	Util-linux: util-linux: heap use-after-free in libblkid nested partition probing_CVE-2026-13595 A flaw was found in the libblkid library of util-linux. During nested partition probing, the BSD, Minix, Solaris x86, and UnixWare partition prober...	Red Hat	Red Hat Enterprise Linux 10	Jun 29, 2026	CVE