category_news - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 6.5	MS:CVE-2026-47655	Microsoft Graph Information Disclosure Vulnerability_MS:CVE-2026-47655 Exposure of sensitive information to an unauthorized actor in Microsoft Graph allows an authorized attacker to disclose information over a network.	N/A	N/A	Jun 4, 2026	MSCVE
MEDIUM 6.5	MS:CVE-2026-42824	M365 Copilot Information Disclosure Vulnerability_MS:CVE-2026-42824 Improper neutralization of special elements used in a command ('command injection') in M365 Copilot allows an unauthorized attacker to disclose inf...	N/A	N/A	Jun 4, 2026	MSCVE
MEDIUM 6.5	MS:CVE-2026-47644	Copilot Chat (Microsoft Edge) Information Disclosure Vulnerability_MS:CVE-2026-47644 Improper neutralization of special elements in output used by a downstream component ('injection') in Copilot Chat (Microsoft Edge) allows an unaut...	N/A	N/A	Jun 4, 2026	MSCVE
CRITICAL 10	MS:CVE-2026-48567	Azure HorizonDB Elevation of Privilege Vulnerability_MS:CVE-2026-48567 Authentication bypass by spoofing in Azure HorizonDB allows an unauthorized attacker to elevate privileges over a network.	N/A	N/A	Jun 4, 2026	MSCVE
HIGH 7.7	MS:CVE-2026-45497	Microsoft M365 Copilot Remote Code Execution Vulnerability_MS:CVE-2026-45497 Improper neutralization of special elements used in a command ('command injection') in Microsoft Copilot allows an authorized attacker to execute c...	N/A	N/A	Jun 4, 2026	MSCVE
CRITICAL 9.1	MS:CVE-2026-48579	Microsoft Exchange Online Information Disclosure Vulnerability_MS:CVE-2026-48579 Improper authorization in Microsoft Exchange Online allows an unauthorized attacker to disclose information over a network.	N/A	N/A	Jun 4, 2026	MSCVE
NONE	QUALYSBLOG:0472...	From Operating Model to Product: How We Built the ROC for Detection-Speed Remediation_QUALYSBLOG:04729DC1A0A66FE61A5E92D6718FDCAE In the first article in this series, we made the case for a prevention-led operating model. This article is about what happened next: the decision ...	N/A	N/A	Jun 4, 2026	QUALYSBLOG
NONE	HACKREAD:E76C8A...	iFood Confirms Data Breach Affecting 1.2 Million Users in Brazil_HACKREAD:E76C8A57911F89FC6DCB15EC931ED6CD iFood confirms a data breach affecting 1.2 million customers in Brazil, while hackers on BreachForums claim the actual theft is much larger.	N/A	N/A	Jun 4, 2026	HACKREAD
NONE	WIRED:C77ECB950...	Meta Silently Added Face-Recognition Code for Its Smart Glasses to Millions of Phones_WIRED:C77ECB95084C1F6FBDFEEA6C41728C41 Code reviewed by WIRED uncovered an unreleased face-recognition system embedded in Meta’s smart glasses platform. It’s designed to identify people ...	N/A	N/A	Jun 4, 2026	WIRED
HIGH 8.6	THN:3045B0C60DC...	Cisco Patches CVE-2026-20230 in Unified CM as Exploit Code Goes Public_THN:3045B0C60DCD251B7744C460F8FD4A2C ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi6_xkmI_c8KreZ4cr2oC9gHJERU9xWsLGDrCNCaB11IQVGmJ-r0MYUjqGllvOFc0IVwGYBqnzLJl96WBTSVX...	N/A	N/A	Jun 4, 2026	THN