NONE - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	H1:3747959	curl: curl –skip-existing has a TOCTOU race that lets a post-check symlink redirect the later download write_H1:3747959 ## Summary: The curl CLI's `--skip-existing` option performs a separate existence check before the download body is written. In the verified path, ...	N/A	N/A	May 19, 2026	HACKERONE
NONE	108B5C3B-AD91-	drupal-sa-core-2026-004-lab_108B5C3B-AD91-501B-9F9D-A7F4DC457879 SA-CORE-2026-004 — Lab, PoC, and Post-mortem Drupal core SQL injection via Entity Query condition value array keys. Disclosed 2026-05-20 17:00 UTC....	N/A	N/A	May 20, 2026	GITHUBEXPLOIT
NONE	E7939204-B239-	CVE-PoC_E7939204-B239-5FC5-952F-67D7D9990C9C No description provided...	N/A	N/A	May 20, 2026	GITHUBEXPLOIT
NONE	MSSECURE:6D00E9...	Mini Shai Hulud: Compromised @antv npm packages enable CI/CD credential theft_MSSECURE:6D00E966D9372364C645950D0C2319E5 Microsoft has identified an active supply chain attack targeting the _@antv_ node package manager (npm) package ecosystem. A threat actor compromis...	N/A	N/A	May 20, 2026	MSSECURE
NONE	WIRED:FA398F51B...	A New York Cop Got Injured at a Boxing Match. Now Madison Square Garden Is Banning His Lawyer_WIRED:FA398F51BBA9F45ECD9ED462D51792E0 Attorney John Scola is representing a police officer who is suing over injuries allegedly sustained while working security at an MSG property in 2025.	N/A	N/A	May 20, 2026	WIRED
NONE	MSSECURE:1D54D2...	Securing the gaming culture of cultures_MSSECURE:1D54D209A555D383D4633CE25EFF8D6A __The Deputy CISO blog series is where Microsoft _Deputy Chief Information Security Officers_ (CISOs) share their thoughts on what is most importa...	N/A	N/A	May 20, 2026	MSSECURE
NONE	THN:5AEC1795837...	Microsoft Open-Sources RAMPART and Clarity to Secure AI Agents During Development_THN:5AEC1795837B3671ADB6A8F98B856FA9 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjPuhFp_KGzG3yZEzqIYh-at7Dm3vg4_QX97ilaSXDjsUbfhU7KCmRS-uQ2UrV9D855Nvy8HcBDKe25VMT63d...	N/A	N/A	May 20, 2026	THN
NONE	635BD32D-4AFB-	cve-honeypot_635BD32D-4AFB-57AB-9477-9621CA85B130 🪤 CVE Honeypot Farm Emulates vulnerable services based on real CVE PoCs and Nuclei templates to detect attackers scanning for known vulnerabilitie...	N/A	N/A	May 20, 2026	GITHUBEXPLOIT
NONE	SCHNEIER:66AB59...	On AI Security_SCHNEIER:66AB594E5D075EE5A99CA1B8DB7F9CBA Good report: > Executive Summary: Let's say you wanted to make sure that your AI is secure. Can you just maximize the security and privacy ben...	N/A	N/A	May 20, 2026	SCHNEIER
NONE	MSSECURE:8C75FD...	Introducing RAMPART and Clarity: Open source tools to bring safety into Agent development workflow_MSSECURE:8C75FDCEB1F13D9A2E245E0943069417 In this article 1. Why we are investing in this 2. RAMPART: Continuous safety testing for agentic AI 3. Clarity: Helping check software engi...	N/A	N/A	May 20, 2026	MSSECURE