LOW - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
LOW 1.3	CVE-2025-47209	Qsync Central_CVE-2025-47209 A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploi...	QNAP Systems Inc.	Qsync Central 5.0.x.x	Feb 11, 2026	CVE
LOW 0.6	CVE-2025-30269	Qsync Central_CVE-2025-30269 A use of externally-controlled format string vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, th...	QNAP Systems Inc.	Qsync Central 5.0.x.x	Feb 11, 2026	CVE
LOW 0.6	CVE-2025-30266	Qsync Central_CVE-2025-30266 A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploi...	QNAP Systems Inc.	Qsync Central 5.0.x.x	Feb 11, 2026	CVE
LOW 3.5	CVE-2026-1282	Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) in GitLab_CVE-2026-1282 GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.6 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18.8.4 that coul...	GitLab	GitLab 18.6	Feb 11, 2026	CVE
LOW 3.5	CVE-2025-14594	Authorization Bypass Through User-Controlled Key in GitLab_CVE-2025-14594 GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.11 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18.8.4 that, un...	GitLab	GitLab 17.11	Feb 11, 2026	CVE
LOW 3.7	CVE-2025-14592	Missing Authorization in GitLab_CVE-2025-14592 GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.6 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18.8.4 that, und...	GitLab	GitLab 18.6	Feb 11, 2026	CVE
LOW 3.7	CVE-2026-26013	LangChain affected by SSRF via image_url token counting in ChatOpenAI.get_num_tokens_from_messages_CVE-2026-26013 LangChain is a framework for building agents and LLM-powered applications. Prior to 1.2.11, the ChatOpenAI.get_num_tokens_from_messages() method fe...	langchain-ai	langchain < 1.2.11	Feb 10, 2026	CVE
LOW 2.9	CVE-2026-1762	Enervista UR Setup Directory Traversal Vulnerability_CVE-2026-1762 A vulnerability in GE Vernova Enervista UR Setup on Windows allows File Manipulation.This issue affects Enervista: 8.6 and prior versions.	GE Vernova	Enervista 8.6 and prior versions	Feb 10, 2026	CVE
LOW 3.3	MS:CVE-2026-21249	Windows NTLM Spoofing Vulnerability_MS:CVE-2026-21249 External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing locally.	N/A	N/A	Feb 10, 2026	MSCVE
LOW 3.3	CVE-2026-21249	Windows NTLM Spoofing Vulnerability_CVE-2026-21249 {“lastseen”:””,”description”:””,”published”:”2026-02-10T17:51:42.124Z”,&#82...	Microsoft	Windows 11 version 26H1 10.0.28000.0	Feb 10, 2026	CVE