CVE - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.5	CVE-2026-48929	CVE-2026-48929_CVE-2026-48929 Rocket.Chat in versions	Rocket.Chat	Rocket.Chat	Jun 16, 2026	CVE
HIGH 8.2	CVE-2026-48788	Remark42: Cross-Site Scripting (XSS) on /api/v1/img via content-type spoofing_CVE-2026-48788 Remark42 is a self-hosted comment engine for blogs, articles, or any other place where readers can add comments. Versions 1.6.0 through 1.15.0 cont...	umputun	remark42 >= 1.6.0, < 1.16.0	Jun 16, 2026	CVE
MEDIUM 6.8	CVE-2026-48782	pydantic-ai: SSRF blocklist bypass via IPv4-compatible, SIIT/IVI, and local NAT64 IPv6 addresses (incomplete fix of CVE-2026-46678)_CVE-2026-48782 Pydantic AI is a Python agent framework for building applications and workflows with Generative AI. In versions 1.56.0 through 1.101.0, 2.0.0b1, an...	pydantic	pydantic-ai >= 1.56.0, < 1.102.0	Jun 16, 2026	CVE
CRITICAL 9.3	CVE-2026-48616	CVE-2026-48616_CVE-2026-48616 Rocket.Chat versions	Rocket.Chat	Rocket.Chat	Jun 16, 2026	CVE
CRITICAL 9.3	CVE-2026-48797	Backpropagate: backprop ui –auth and backprop ui –share do not enforce authentication_CVE-2026-48797 Backpropagate is a Python library for fine-tuning large language models on a single GPU. In versions 1.1.0 and 1.1.1, the optional Reflex web UI ex...	mcp-tool-shop-org	backpropagate >= 1.1.0, < 1.2.0	Jun 16, 2026	CVE
MEDIUM 4.7	CVE-2026-44587	CarrierWave has a denylisted_content_type bypass via Unescaped Regex Metacharacters_CVE-2026-44587 CarrierWave is a framework to upload files from Ruby applications. In versions prior to 2.2.7 and 3.1.3, the content_type_denylist check fails to e...	carrierwaveuploader	carrierwave < 2.2.7	Jun 16, 2026	CVE
NONE	E09C528A-9722-	vulnerability-playtest_E09C528A-9722-5F5D-A7F6-364CB43507B7 Vulnerability Playtest This repository is an area to test out and explain vulnerabilities and exploits in a safe environment. It contains a introdu...	N/A	N/A	Jun 16, 2026	GITHUBEXPLOIT
NONE	WIRED:E3F4B223A...	Leak Exposes Members of Peter Thiel’s Secretive ‘Dialog’ Society_WIRED:E3F4B223ADD0CB38A6B5FFE5266BCA89 More than 200 of the world's elites registered for a retreat whose agenda runs from panels on cult-building and sex to prepping for World War III. ...	N/A	N/A	Jun 16, 2026	WIRED
MEDIUM 5.7	CVE-2026-0165	CVE-2026-0165_CVE-2026-0165 In several functions of the RTCP packet decoder, there is a possible out-of-bounds read due to a missing bounds check. This could lead to remote in...	Google	Android Android kernel	Jun 16, 2026	CVE
HIGH 8.8	CVE-2026-0164	CVE-2026-0164_CVE-2026-0164 In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execut...	Google	Android Android kernel	Jun 16, 2026	CVE