MEDIUM - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 5.3	CVE-2026-10616	nextlevelbuilder GoClaw Team Task Completion team_tasks_lifecycle.go TeamTasksTool.executeComplete authorization_CVE-2026-10616 A weakness has been identified in nextlevelbuilder GoClaw up to 3.11.3. The impacted element is the function TeamTasksTool.executeComplete of the f...	nextlevelbuilder	GoClaw 3.11.0	Jun 2, 2026	CVE
MEDIUM 6.9	CVE-2026-10608	DedeCMS carbuyaction.php RemoveXSS sql injection_CVE-2026-10608 A security flaw has been discovered in DedeCMS 5.7.88. This affects the function RemoveXSS of the file /plus/carbuyaction.php. The manipulation of ...	n/a	DedeCMS 5.7.88	Jun 2, 2026	CVE
MEDIUM 6.9	CVE-2026-10607	DedeCMS flink.php dede_htmlspecialchars sql injection_CVE-2026-10607 A vulnerability was identified in DedeCMS 5.7.88. The impacted element is the function dede_htmlspecialchars of the file /plus/flink.php. The manip...	n/a	DedeCMS 5.7.88	Jun 2, 2026	CVE
MEDIUM 5.9	CVE-2026-10584	HTTPS Fallback to HTTP in Graph Explorer_CVE-2026-10584 Proxy server in Graph Explorer before 3.0.1 falls back to HTTP when certificate files are missing, which might allow remote threat actors to obtain...	AWS	Graph Explorer 1.1.0	Jun 2, 2026	CVE
MEDIUM 5.9	CVE-2026-49267	Apache Airflow: No certificate validation on SMTP STARTTLS connections_CVE-2026-49267 Apache Airflow's EmailOperator and the underlying `airflow.utils.email` helpers established SMTP STARTTLS connections without verifying the remote ...	Apache Software Foundation	Apache Airflow 2.0.0	Jun 1, 2026	CVE
MEDIUM 6.5	CVE-2026-48726	Apache Airflow: revoke_token() unreachable in FabAuthManager / KeycloakAuthManager logout path_CVE-2026-48726 A bug in Apache Airflow's auth manager logout handling left previously-issued JWT tokens valid after the user clicked logout in the UI: the logout ...	Apache Software Foundation	Apache Airflow	Jun 1, 2026	CVE
MEDIUM 4.3	CVE-2026-46764	Apache Airflow: Event Log detail endpoint bypasses DAG-scoped event log permission filter_CVE-2026-46764 The Event Log detail endpoint `GET /api/v2/eventLogs/{event_log_id}` in Apache Airflow fetched audit-log rows directly by numeric ID after only the...	Apache Software Foundation	Apache Airflow	Jun 1, 2026	CVE
MEDIUM 6.5	CVE-2026-42358	Apache Airflow: Variable masker depth-limit bypass returns cleartext nested secrets_CVE-2026-42358 A bug in Apache Airflow's Variable response masker caused nested-key redaction (triggered by secret-suffixed key names like `password`, `token`, `s...	Apache Software Foundation	Apache Airflow	Jun 1, 2026	CVE
MEDIUM 5.9	CVE-2026-41017	Apache Airflow: JWT cookie missing Secure flag in JWTRefreshMiddleware behind HTTPS-terminating proxy_CVE-2026-41017 Apache Airflow's `JWTRefreshMiddleware` set the JWT auth cookie without the `Secure` flag, so deployments running the Airflow API server behind an ...	Apache Software Foundation	Apache Airflow 3.0.0	Jun 1, 2026	CVE
MEDIUM 4.3	CVE-2026-41014	Apache Airflow: per-DAG RBAC bypass on /ui/partitioned_dag_runs endpoints_CVE-2026-41014 The partitioned_dag_runs endpoints in the Airflow UI enforced only asset-level access control, not per-Dag authorization. An authenticated UI/API u...	Apache Software Foundation	Apache Airflow 3.2.0	Jun 1, 2026	CVE