CVE - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	HACKREAD:3D5A29...	Beats Studio Buds Flaw Could Let Nearby Attackers Eavesdrop on Users_HACKREAD:3D5A29455EB1C833026D0A17EB70E7C7 Apple has released a security update to patch a Beats Studio Buds flaw that let nearby hackers listen to conversations through the microphone.	N/A	N/A	Jun 22, 2026	HACKREAD
NONE	QUALYSBLOG:FB2C...	CNAPP’s New Normal: Hyper-Prioritization and Autonomous Remediation at Cloud Scale_QUALYSBLOG:FB2C954E2D3BED9FF97486C38BF44B91 AI-powered detection has crossed a threshold. Security teams can now surface vulnerabilities, misconfigurations, and active attack paths at a speed...	N/A	N/A	Jun 22, 2026	QUALYSBLOG
NONE	AKAMAIBLOG:7301...	Why Resilient Systems Design Is Critical for Cloud Reliability_AKAMAIBLOG:73015E6C949E32415D11F0F4DBEB60C7 {“lastseen”:”2026-06-22T19:36:50″,”description”:””,”published”:”2026-06-22T19:00:...	N/A	N/A	Jun 22, 2026	AKAMAIBLOG
NONE	MSSECURE:0DBD52...	Guarding AI memory_MSSECURE:0DBD52AB333FB0A3426DEB860EAE6B80 In this article 1. What AI memory is (and why it matters) 2. What is an agent memory attack? 3. How Microsoft approaches memory security in ...	N/A	N/A	Jun 22, 2026	MSSECURE
HIGH 7.7	CVE-2026-41156	GPU DDK – kernel<->fw CCB contains SYNC_PRIMITIVE_BLOCK firmware address without holding reference_CVE-2026-41156 Software installed and run as a non-privileged user may conduct improper GPU system calls to cause mismanagement of resources creating a write use ...	Imagination Technologies	Graphics DDK 1.18 RTM	Jun 19, 2026	CVE
HIGH 7.7	CVE-2026-34192	GPU DDK – _MMU_AllocLevel error recovery paths leave dangling page table entries_CVE-2026-34192 Software installed and run as a non-privileged user may conduct improper GPU system calls to cause an error path leading to UAF of GPU page tables....	Imagination Technologies	Graphics DDK 1.18 RTM	Jun 19, 2026	CVE
MEDIUM 5.1	CVE-2026-55443	LangChain: Path traversal and sandbox escape in LangChain file-search middleware and loaders_CVE-2026-55443 LangChain is a framework for building agents and LLM-powered applications. Prior to 1.3.9, several LangChain components that resolve filesystem pat...	langchain-ai	langchain < 1.3.9	Jun 22, 2026	CVE
MEDIUM 5.3	CVE-2026-54300	@astrojs/netlify broadens Astro image.remotePatterns in Netlify Image CDN config_CVE-2026-54300 @astrojs/netlify is an adapter that allows Astro to deploy your hybrid or server rendered site to Netlify. Prior to 7.0.13, @astrojs/netlify conver...	withastro	astro < 7.0.13	Jun 22, 2026	CVE
HIGH 7.5	CVE-2026-54299	Astro: Host-header full-read SSRF in core prerendered error-page fetch (prerenderedErrorPageFetch default + unvalidated createRequestFromNodeRequest URL)_CVE-2026-54299 Astro is a web framework. Prior to 6.4.6, Astro SSR apps with prerendered error pages (/404 or /500 using export const prerender = true) fetch thos...	withastro	astro < 6.4.6	Jun 22, 2026	CVE
MEDIUM 4.2	CVE-2026-54298	Astro: XSS via Unescaped Attribute Names in Spread Props_CVE-2026-54298 Astro is a web framework. Prior to 6.4.6, the spreadAttributes function in Astro's server-side rendering pipeline iterates over object keys and pas...	withastro	astro < 6.4.6	Jun 22, 2026	CVE