exploit - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 5.3	CVE-2026-57079	Net::BitTorrent versions through 2.0.1 for Perl write files outside the download directory via path traversal in peer-supplied metadata_CVE-2026-57079 Net::BitTorrent versions through 2.0.1 for Perl write files outside the download directory via path traversal in peer-supplied metadata. Net::BitT...	SANKO	Net::BitTorrent	Jun 30, 2026	CVE
HIGH 8.8	CVE-2026-8655	Multiple Memory overflow vulnerabilities leading to unpredictable or erroneous behavior and Denial of Service_CVE-2026-8655 Multiple Memory overflow vulnerabilities in NetScaler ADC and NetScaler Gateway leading to unpredictable or erroneous behavior and Denial of Servic...	NetScaler	ADC 14.1	Jun 30, 2026	CVE
HIGH 8.8	CVE-2026-8452	Memory overflow vulnerability leading to unpredictable or erroneous behavior and Denial of Service_CVE-2026-8452 Memory overflow vulnerability NetScaler ADC and NetScaler Gateway leading to unpredictable or erroneous behavior and Denial of Service if the appli...	NetScaler	ADC 14.1	Jun 30, 2026	CVE
HIGH 8.8	CVE-2026-8451	Insufficient input validation leading to memory overread_CVE-2026-8451 Insufficient input validation in NetScaler ADC and NetScaler Gateway leading to memory overread if NetScaler ADC or NetScaler Gateway is configured...	NetScaler	ADC 14.1	Jun 30, 2026	CVE
CRITICAL 9.1	CVE-2026-6556	@fastify/express vulnerable to middleware bypass via non-string mount paths in prefixed plugins_CVE-2026-6556 @fastify/express versions 4.0.6 and earlier only rewrite the plugin prefix for middleware mount paths when the path argument is a string. Non-strin...	@fastify/express	@fastify/express	Jun 30, 2026	CVE
MEDIUM 6.5	CVE-2026-58374	CVE-2026-58374_CVE-2026-58374 In hostapd before 2.12, a missing bounds check in AP-mode Wi-Fi 7 (IEEE 802.11be) Multi-Link Operation (MLO) association request processing allows ...	w1.fi	hostapd	Jun 30, 2026	CVE
CRITICAL 9.3	CVE-2026-58116	LLaMA-Factory 0.9.5 Remote Code Execution via WebUI Model Path_CVE-2026-58116 LLaMA-Factory through 0.9.5 contains a remote code execution vulnerability that allows attackers with WebUI access to execute arbitrary Python code...	hiyouga	LlamaFactory 0.9.5	Jun 30, 2026	CVE
HIGH 7.5	CVE-2026-58016	Glib: integer underflow in gio/gdbusintrospection.c via “g_dbus_node_info_new_for_xml”_CVE-2026-58016 A flaw was found in GLib. A state confusion issue exists in g_dbus_node_info_new_for_xml() in the gio/gdbusintrospection.c file when processing mal...	Red Hat	Red Hat Enterprise Linux 10	Jun 30, 2026	CVE
MEDIUM 5.9	CVE-2026-58015	Glib: path traversal in glib/gio/gdbusauthmechanismsha1.c via keyring_lookup_entry and mechanism_client_data_receive_CVE-2026-58015 A flaw was found in GLib. The D-Bus client-side implementation of the DBUS_COOKIE_SHA1 SASL authentication mechanism does not validate the cookie_c...	Red Hat	Red Hat Enterprise Linux 10	Jun 30, 2026	CVE
HIGH 7.3	CVE-2026-58014	Glib: off-by-one error in glib/gkeyfile.c via “g_key_file_get_locale_string_list”_CVE-2026-58014 A flaw was found in GLib. An off-by-one error can occur in the g_key_file_get_locale_string_list function in the gkeyfile.c file when loading a key...	Red Hat	Red Hat Enterprise Linux 10	Jun 30, 2026	CVE