LOW - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
LOW 3.1	CVE-2026-44070	Unbounded realloc in charset conversion_CVE-2026-44070 In Netatalk 2.0.0 through 4.4.2, unbounded realloc in charset conversion. Fixed in 4.5.0.	Netatalk	Netatalk 2.0.0	May 21, 2026	CVE
LOW 3.4	CVE-2026-44069	Integer underflow in volxlate_CVE-2026-44069 In Netatalk 3.0.0 through 4.4.2, integer underflow in volxlate. Fixed in 4.5.0.	Netatalk	Netatalk 3.0.0	May 21, 2026	CVE
LOW 3.7	CVE-2026-44067	EA header parsing heap over-read_CVE-2026-44067 In Netatalk 2.1.0 through 4.4.2, ea header parsing heap over-read. Fixed in 4.5.0.	Netatalk	Netatalk 2.1.0	May 21, 2026	CVE
LOW 3.7	CVE-2026-44065	Off-by-two in papd lp_write()_CVE-2026-44065 In Netatalk 2.0.0 through 4.4.2, off-by-two in papd lp_write(). Fixed in 4.5.0.	Netatalk	Netatalk 2.0.0	May 21, 2026	CVE
LOW 3.9	CVE-2026-44059	Non-reentrant privilege toggle_CVE-2026-44059 In Netatalk 2.2.5 through 4.4.2, non-reentrant privilege toggle. Fixed in 4.5.0.	Netatalk	Netatalk 2.2.5	May 21, 2026	CVE
LOW 3.3	CVE-2026-47782	CVE-2026-47782_CVE-2026-47782 Android App "RoboForm Password Manager" provided by Siber Systems, Inc. handles Android intents without sufficient URL validation, user confirmatio...	Siber Systems, Inc.	Android App "RoboForm Password Manager" 9.8.6.3 and prior	May 20, 2026	CVE
LOW 2.1	CVE-2026-47099	TeleJSON < 6.0.0 DOM-based XSS via parse() Function_CVE-2026-47099 TeleJSON prior to 6.0.0 contains a DOM-based cross-site scripting vulnerability in the parse() function that allows attackers to execute arbitrary ...	storybookjs	telejson	May 20, 2026	CVE
LOW 2.7	CVE-2026-8492	Translate Drupal with GTranslate – Less critical – DOM clobbering / link manipulation – SA-CONTRIB-2026-035_CVE-2026-8492 Modification of Assumed-Immutable Data (MAID) vulnerability in Drupal Translate Drupal with GTranslate allows Resource Location Spoofing. This iss...	Drupal	Translate Drupal with GTranslate 0.0.0	May 19, 2026	CVE
LOW 3.7	CVE-2026-8491	Node View Permissions – Moderately critical – Access bypass – SA-CONTRIB-2026-034_CVE-2026-8491 Improper Check for Unusual or Exceptional Conditions vulnerability in Drupal Node View Permissions allows Forceful Browsing. This issue affects No...	Drupal	Node View Permissions 0.0.0	May 19, 2026	CVE
LOW 2.3	CVE-2026-47068	Cross-session PubSub topic injection via URL parameter in phoenix_storybook_CVE-2026-47068 Authorization Bypass Through User-Controlled Key vulnerability in phenixdigital phoenix_storybook allows cross-session PubSub topic injection via a...	phenixdigital	phoenix_storybook 0.4.0	May 20, 2026	CVE