LOW - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
LOW 2.7	CVE-2025-55193	Active Record logging vulnerable to ANSI escape injection_CVE-2025-55193 Active Record connects classes to relational database tables. Prior to versions 7.1.5.2, 7.2.2.2, and 8.0.2.1, the ID passed to find or similar met...	rails	rails >= 0, < 7.1.5.2	Aug 13, 2025	CVE
LOW 3.7	CVE-2025-53859	NGINX ngx_mail_smtp_module vulnerability_CVE-2025-53859 NGINX Open Source and NGINX Plus have a vulnerability in the ngx_mail_smtp_module that might allow an unauthenticated attacker to over-read NGINX S...	F5	NGINX Plus R35	Aug 13, 2025	CVE
LOW 3.6	CE56E1F3-E102-	Exploit for CVE-2025-55188_CE56E1F3-E102-50A6-B754-53DCF4CE524C CVE-2025-55188-7z-exploit 7-Zip Symlink Arbitrary File Write PoC (CVE-2025-55188) Description This proof-of-concept demonstrates CVE-2025-55188, a...	N/A	N/A	Aug 11, 2025	GITHUBEXPLOIT
LOW 3.6	C3FDE2A8-F0D2-	Exploit for CVE-2025-55188_C3FDE2A8-F0D2-5B9E-B275-4A0FCE40B606 CVE-2025-55188-7z-exploit 7-Zip Symlink Arbitrary File Write PoC (CVE-2025-55188) Description This proof-of-concept demonstrates CVE-2025-55188, a ...	N/A	N/A	Aug 11, 2025	GITHUBEXPLOIT
LOW 2.4	CVE-2025-40570	CVE-2025-40570_CVE-2025-40570 A vulnerability has been identified in SIPROTEC 5 6MD84 (CP300) (All versions < V10.0), SIPROTEC 5 6MD85 (CP300) (All versions >= V7.80 < V10.0), S...	Siemens	SIPROTEC 5 6MD84 (CP300)	Aug 12, 2025	CVE
LOW 3.5	CVE-2025-42941	Reverse Tabnabbing vulnerability in SAP Fiori (Launchpad)_CVE-2025-42941 SAP Fiori (Launchpad) is vulnerable to Reverse Tabnabbing vulnerability due to inadequate external navigation protections for its link () elements....	SAP_SE	SAP Fiori (Launchpad) SAP_UI 754	Aug 12, 2025	CVE
LOW 3.5	CVE-2025-42955	Missing authorization check in SAP Cloud Connector_CVE-2025-42955 Due to a missing authorization check in SAP Cloud Connector, an attacker on an adjacent network with low privileges could send a crafted request to...	SAP_SE	SAP Cloud Connector SAP_CLOUD_CONNECTOR 2.0	Aug 12, 2025	CVE
LOW 3.7	CVE-2025-49221	Unauthenticated Access to Channel Subscription in Mattermost Confluence Plugin_CVE-2025-49221 Mattermost Confluence Plugin version	Mattermost	Mattermost Confluence Plugin	Aug 11, 2025	CVE
LOW 3.7	CVE-2025-53857	Lack of Authorization on Get Channel Subscriptions for Autocomplete in Mattermost Confluence Plugin_CVE-2025-53857 Mattermost Confluence Plugin version	Mattermost	Mattermost Confluence Plugin	Aug 11, 2025	CVE
LOW 3.3	CVE-2025-24925	applications_settings has a missing release of memory vulnerability_CVE-2025-24925 in OpenHarmony v5.0.3 and prior versions allow a local attacker case DOS through missing release of memory.	OpenHarmony	OpenHarmony v5.0.3	Aug 11, 2025	CVE