category_news - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	THN:BA671EB286B...	FIFA World Cup 2026 Scams Are Already Live: Fake Sites, Banking Malware, and Stolen Logins_THN:BA671EB286BFAB25B4ED3DAF0142200F ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjMkj_adwzUUFP7yWyIFVKIKKQGDjqfvPuxKoR4mrrJ_SX3EACoJ3toLV3ZkYmePeA-nKWWfVC-90aOa5yjep...	N/A	N/A	Jun 5, 2026	THN
NONE	THN:51F8DAC1E19...	PCPJack Hijacks 230 AWS, Google Cloud, and Azure Servers for Covert SMTP Relay Network_THN:51F8DAC1E193E414EB3FF79AC2684016 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEibu0mX9Tusu3siXFJzPskfA1ZYZ2OdRJTegsJFkffBc9cBBPGWguTUAI3PPAaFy-WIjziA9PIrMrZNVuFVNm...	N/A	N/A	Jun 5, 2026	THN
MEDIUM 6.5	MS:CVE-2026-47655	Microsoft Graph Information Disclosure Vulnerability_MS:CVE-2026-47655 Exposure of sensitive information to an unauthorized actor in Microsoft Graph allows an authorized attacker to disclose information over a network.	N/A	N/A	Jun 4, 2026	MSCVE
MEDIUM 6.5	MS:CVE-2026-42824	M365 Copilot Information Disclosure Vulnerability_MS:CVE-2026-42824 Improper neutralization of special elements used in a command ('command injection') in M365 Copilot allows an unauthorized attacker to disclose inf...	N/A	N/A	Jun 4, 2026	MSCVE
MEDIUM 6.5	MS:CVE-2026-47644	Copilot Chat (Microsoft Edge) Information Disclosure Vulnerability_MS:CVE-2026-47644 Improper neutralization of special elements in output used by a downstream component ('injection') in Copilot Chat (Microsoft Edge) allows an unaut...	N/A	N/A	Jun 4, 2026	MSCVE
CRITICAL 10	MS:CVE-2026-48567	Azure HorizonDB Elevation of Privilege Vulnerability_MS:CVE-2026-48567 Authentication bypass by spoofing in Azure HorizonDB allows an unauthorized attacker to elevate privileges over a network.	N/A	N/A	Jun 4, 2026	MSCVE
HIGH 7.7	MS:CVE-2026-45497	Microsoft M365 Copilot Remote Code Execution Vulnerability_MS:CVE-2026-45497 Improper neutralization of special elements used in a command ('command injection') in Microsoft Copilot allows an authorized attacker to execute c...	N/A	N/A	Jun 4, 2026	MSCVE
CRITICAL 9.1	MS:CVE-2026-48579	Microsoft Exchange Online Information Disclosure Vulnerability_MS:CVE-2026-48579 Improper authorization in Microsoft Exchange Online allows an unauthorized attacker to disclose information over a network.	N/A	N/A	Jun 4, 2026	MSCVE
NONE	QUALYSBLOG:0472...	From Operating Model to Product: How We Built the ROC for Detection-Speed Remediation_QUALYSBLOG:04729DC1A0A66FE61A5E92D6718FDCAE In the first article in this series, we made the case for a prevention-led operating model. This article is about what happened next: the decision ...	N/A	N/A	Jun 4, 2026	QUALYSBLOG
NONE	HACKREAD:E76C8A...	iFood Confirms Data Breach Affecting 1.2 Million Users in Brazil_HACKREAD:E76C8A57911F89FC6DCB15EC931ED6CD iFood confirms a data breach affecting 1.2 million customers in Brazil, while hackers on BreachForums claim the actual theft is much larger.	N/A	N/A	Jun 4, 2026	HACKREAD