category_cve - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 4.8	CVE-2026-21027	CVE-2026-21027_CVE-2026-21027 Improper export of android application components in ImsSettings prior to SMR Jun-2026 Release 1 allows local attackers to trigger logging function.	Samsung Mobile	Samsung Mobile Devices SMR Jun-2026 Release in Android 14, 15, 16	Jun 5, 2026	CVE
MEDIUM 6.4	CVE-2026-21026	CVE-2026-21026_CVE-2026-21026 Improper export of android application components in SpriteWallpaper prior to SMR Jun-2026 Release 1 allows local attackers to access to sensitive ...	Samsung Mobile	Samsung Mobile Devices SMR Jun-2026 Release in Android 16	Jun 5, 2026	CVE
MEDIUM 6.9	CVE-2026-21025	CVE-2026-21025_CVE-2026-21025 Incorrect privilege assignment in Telephony prior to SMR Jun-2026 Release 1 allows local attackers to access sensitive information.	Samsung Mobile	Samsung Mobile Devices SMR Jun-2026 Release in Android 14, 15, 16	Jun 5, 2026	CVE
MEDIUM 4.6	CVE-2026-21017	CVE-2026-21017_CVE-2026-21017 Improper handling of insufficient privileges in SecTelephonyProvider prior to SMR Jun-2026 Release 1 allows local attackers to access privileged fi...	Samsung Mobile	Samsung Mobile Devices SMR Jun-2026 Release in Android 14, 15, 16	Jun 5, 2026	CVE
HIGH 8.5	CVE-2026-11347	Hardcoded Cryptographic Keys and Weak IV Generation in Linqi Application_CVE-2026-11347 The linqi application contains hardcoded cryptographic keys. Additionally, the application uses a weak algorithm with a limited ASCII charset to dy...	linqi GmbH	linqi	Jun 5, 2026	CVE
CRITICAL 9.8	CVE-2026-6274	Authentication Bypass in DTS Electronics’ Redline WR3200_CVE-2026-6274 Improper Authentication, Missing authentication for critical function, Weak Authentication vulnerability in DTS Electronics Industry and Trade Ltd....	DTS Electronics Industry and Trade Ltd. Co.	Redline WR3200 7.1.3	Jun 5, 2026	CVE
CRITICAL 10	CVE-2026-49777	WordPress Product Slider Pro for WooCommerce plugin < 3.5.3 - Backdoor vulnerability_CVE-2026-49777 Improper Validation of Specified Quantity in Input vulnerability in ShapedPlugin, LLC Product Slider Pro for WooCommerce allows Malicious Software ...	ShapedPlugin, LLC	Product Slider Pro for WooCommerce n/a	Jun 5, 2026	CVE
HIGH 7.8	CVE-2026-11332	Ansible-core: argument injection in ansible-galaxy role install leads to arbitrary code execution_CVE-2026-11332 A flaw was found in ansible-core. The ansible-galaxy role install command processes dependency specifications from a role's meta/requirements.yml f...	Red Hat	Red Hat Ansible Automation Platform 2	Jun 5, 2026	CVE
LOW 2.7	CVE-2026-9088	Keycloak: keycloak: information disclosure due to user profile permission bypass_CVE-2026-9088 A flaw was found in org.keycloak.services. An administrator with delegated access to read group memberships and users can bypass user profile permi...	Red Hat	Red Hat Build of Keycloak	Jun 5, 2026	CVE
CRITICAL 10	CVE-2026-48907	Joomla Extension – joomlacontenteditor.net – Remote Code Execution in JCE extension for Joomla < 2.9.99.5_CVE-2026-48907 A vulnerability in the JCE editor extension for Joomla allows the creation of new editor profiles for unauthenticated users, ultimately resulting i...	joomlacontenteditor.net	Joomla Content Editor (JCE) extension for Joomla 1.0.0-2.9.99.4	Jun 5, 2026	CVE