CVE - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 4.7	CVE-2026-48733	ImageMagick: Infinite Loop in subimage-search with crafted image_CVE-2026-48733 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-49 and 7.1.2-24, an infinit...	ImageMagick	ImageMagick < 6.9.13-49	Jun 10, 2026	CVE
MEDIUM 5.5	CVE-2026-48724	ImageMagick: Heap Buffer Underwrite in Floyd-Steinberg depth dithering_CVE-2026-48724 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-24, when using an image with ...	ImageMagick	ImageMagick < 7.1.2-24	Jun 10, 2026	CVE
MEDIUM 5.7	CVE-2026-47734	Dulwich has unbounded memory allocation in receive-pack from crafted thin packs_CVE-2026-47734 Dulwich is a pure-Python implementation of the Git file formats and protocols. Starting in version 0.1.0 and prior to version 1.2.5, a client with ...	jelmer	dulwich >= 0.1.0, < 1.2.5	Jun 10, 2026	CVE
LOW 3.3	CVE-2026-47712	Dulwich doesn’t sanitize commit subjects in `porcelain.format_patch`_CVE-2026-47712 Dulwich is a pure-Python implementation of the Git file formats and protocols. Starting in version 0.24.0 and prior to version 1.2.5, dulwich.porce...	jelmer	dulwich >= 0.24.0, < 1.2.5	Jun 10, 2026	CVE
MEDIUM 6.5	CVE-2026-47213	BoxLite: Timeout Bypass Vulnerability_CVE-2026-47213 Boxlite is a sandbox service that allows users to create lightweight virtual machines (Boxes) and launch OCI containers within them to run untruste...	boxlite-ai	boxlite <= 0.8.2	Jun 10, 2026	CVE
MEDIUM 5.7	CVE-2026-47166	ImageMagick: Heap Buffer Over-Read in distributed pixel cache server_CVE-2026-47166 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-23, an attacke...	ImageMagick	ImageMagick < 6.9.13-48	Jun 10, 2026	CVE
MEDIUM 4.1	CVE-2026-47165	ImageMagick: Information Disclosure in distributed pixel cache server because it is not using a challenge–response authentication model_CVE-2026-47165 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-23, the distri...	ImageMagick	ImageMagick < 6.9.13-48	Jun 10, 2026	CVE
CRITICAL 9.6	CVE-2026-46703	BoxLite: Path Traversal Vulnerability in boxlite Leads to Arbitrary File Write on the Host_CVE-2026-46703 Boxlite is a sandbox service that allows users to create lightweight virtual machines (Boxes) and launch OCI containers within them to run untruste...	boxlite-ai	boxlite < 0.9.0	Jun 10, 2026	CVE
CRITICAL 10	CVE-2026-46695	BoxLite: Permission Bypass in boxlite Allows Modification of Read-Only Files_CVE-2026-46695 Boxlite is a sandbox service that allows users to create lightweight virtual machines (Boxes) and launch OCI containers within them to run untruste...	boxlite-ai	boxlite < 0.9.0	Jun 10, 2026	CVE
MEDIUM 4.1	CVE-2026-46693	ImageMagick: Race Condition in distributed pixel cache server can result in file descriptor hijacking_CVE-2026-46693 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-23, an attacke...	ImageMagick	ImageMagick < 6.9.13-48	Jun 10, 2026	CVE