Security - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.6	CVE-2025-71357	picklescan – Arbitrary Code Execution via Undetected idlelib.pyshell.ModifiedInterpreter.runcommand_CVE-2025-71357 picklescan before 0.0.30 fails to detect malicious pickle files using idlelib.pyshell.ModifiedInterpreter.runcommand in reduce methods. Attackers c...	picklescan	picklescan	Jun 21, 2026	CVE
HIGH 7.6	CVE-2025-71351	picklescan – Remote Code Execution via timeit.timeit() Detection Bypass_CVE-2025-71351 picklescan before 0.0.25 fails to detect malicious pickle files that use timeit.timeit() in the __reduce__ method, allowing remote code execution. ...	picklescan	picklescan	Jun 21, 2026	CVE
HIGH 7.6	CVE-2025-71348	picklescan – Arbitrary Code Execution via torch.utils._config_module.load_config Bypass_CVE-2025-71348 picklescan before 0.0.28 fails to detect malicious pickle files that invoke torch.utils._config_module.load_config function within reduce methods. ...	picklescan	picklescan	Jun 21, 2026	CVE
NONE	144B1B90-40FE-	sheaf_uaf_144B1B90-40FE-5F65-BB92-30F490B95389 No description provided...	N/A	N/A	Jun 21, 2026	GITHUBEXPLOIT
MEDIUM 6.4	C40A1F53-C56D-	nuclei-template-creator_C40A1F53-C56D-57E9-848D-B707E7916E4C Nuclei Template Creator English \| 中文 A comprehensive skill for creating high-quality Nuclei security scanning templates across all supported prot...	N/A	N/A	Jun 21, 2026	GITHUBEXPLOIT
HIGH 8.8	D301242C-B53B-	Exploit for Code Injection in Anthropic Claude_Code_D301242C-B53B-53BF-A743-4107276D8DCA dotclaude-security Scan a repo's local .claude/ config — settings.json hooks, MCP server defs, env blocks, permissions.allow — for the RCE and API-...	N/A	N/A	Jun 21, 2026	GITHUBEXPLOIT
MEDIUM 5.3	AE467228-AC78-	Exploit for Improper Access Control in Joomla Joomla\!_AE467228-AC78-5F1A-93CF-D381D698C936 No description provided...	N/A	N/A	Jun 21, 2026	GITHUBEXPLOIT
NONE	WIRED:4A26C0483...	A Critical Deadline Is Approaching for Windows and Linux Security_WIRED:4A26C04836FD044D358B83143098AD8C The cryptographic keys that secure your computer's boot sequence will start to expire on June 24. Here's what that means for you.	N/A	N/A	Jun 21, 2026	WIRED
MEDIUM 6.9	CVE-2026-12795	BerriAI litellm SSO Debug Flow ui_sso.py json.dumps missing authentication_CVE-2026-12795 A vulnerability was determined in BerriAI litellm up to 1.82.2. This affects the function json.dumps of the file litellm/proxy/management_endpoints...	BerriAI	litellm 1.82.0	Jun 21, 2026	CVE
MEDIUM 5.1	CVE-2026-12789	ILIAS Learning Management System Learning Progress Tracking class.ilTrQuery.php executeQueries sql injection_CVE-2026-12789 A vulnerability was identified in ILIAS Learning Management System 11.0. This issue affects the function ilTrQuery::executeQueries of the file comp...	ILIAS	Learning Management System 11.0	Jun 21, 2026	CVE