LOW - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
LOW 2.3	CVE-2025-12623	fushengqian fuint Authentication Token ClientSignController.java authorization_CVE-2025-12623 A vulnerability was identified in fushengqian fuint up to 41e26be8a2c609413a0feaa69bdad33a71ae8032. Affected by this issue is some unknown function...	fushengqian	fuint 41e26be8a2c609413a0feaa69bdad33a71ae8032	Nov 3, 2025	CVE
LOW 2.3	CVE-2025-12603	/etc/timezone can be Arbitrarily Written_CVE-2025-12603 /etc/timezone can be Arbitrarily Written.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5.	Azure Access Technology	BLU-IC2	Nov 1, 2025	CVE
LOW 2.3	CVE-2025-12602	/etc/avahi/services/z9.service can be Arbitrarily Written_CVE-2025-12602 /etc/avahi/services/z9.service can be Arbitrarily Written.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5.	Azure Access Technology	BLU-IC2	Nov 1, 2025	CVE
LOW 2.7	CVE-2025-64352	WordPress Essential Addons for Elementor plugin <= 6.2.4 - Broken Access Control vulnerability_CVE-2025-64352 Missing Authorization vulnerability in WPDeveloper Essential Addons for Elementor essential-addons-for-elementor-lite allows Exploiting Incorrectly...	WPDeveloper	Essential Addons for Elementor n/a	Oct 31, 2025	CVE
LOW 3.8	CVE-2025-64350	WordPress Rank Math SEO plugin <= 1.0.252.1 - Broken Access Control vulnerability_CVE-2025-64350 Missing Authorization vulnerability in Rank Math SEO Rank Math SEO seo-by-rank-math allows Exploiting Incorrectly Configured Access Control Securit...	Rank Math SEO	Rank Math SEO n/a	Oct 31, 2025	CVE
LOW 3.7	CVE-2025-36249	IBM Jazz for Service Management is vulnerable to “filter” cookie not sent over SSL_CVE-2025-36249 IBM Jazz for Service Management 1.1.3.0 through 1.1.3.25 does not set the secure attribute on authorization tokens or session cookies. Attackers ma...	IBM	Jazz for Service Management 1.1.3.0	Oct 31, 2025	CVE
LOW 1.8	CVE-2025-6075	Quadratic complexity in os.path.expandvars() with user-controlled template_CVE-2025-6075 If the value passed to os.path.expandvars() is user-controlled a performance degradation is possible when expanding environment variables.	Python Software Foundation	CPython	Oct 31, 2025	CVE
LOW 3.1	CVE-2025-23050	CVE-2025-23050_CVE-2025-23050 QLowEnergyController in Qt before 6.8.2 mishandles malformed Bluetooth ATT commands, leading to an out-of-bounds read (or division by zero). This i...	Qt	Qt	Oct 31, 2025	CVE
LOW 2.1	CVE-2025-12517	Credits Page not Matching Versions in Use in the Firmware_CVE-2025-12517 Credits Page not Matching Versions in Use in the FirmwareThis issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5 .	Azure Access Technology	BLU-IC2	Oct 30, 2025	CVE
LOW 3.3	CVE-2025-58183	Unbounded allocation when parsing GNU sparse map in archive/tar_CVE-2025-58183 tar.Reader does not set a maximum size on the number of sparse region data blocks in GNU tar pax 1.0 sparse files. A maliciously-crafted archive co...	Go standard library	archive/tar	Oct 29, 2025	CVE