category_news - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 8.8	AVLEONOV:B200D3...	About Remote Code Execution – Apache ActiveMQ (CVE-2026-34197) vulnerability_AVLEONOV:B200D37BE94C4CD4E37571F1F134973F ![About Remote Code Execution - Apache ActiveMQ \(CVE-2026-34197\) vulnerability](https://avleonov.com/wp-content/uploads/2026/05/[email protected]...	N/A	N/A	May 14, 2026	AVLEONOV
CRITICAL 10	TALOSBLOG:51F51...	Ongoing exploitation of Cisco Catalyst SD-WAN vulnerabilities_TALOSBLOG:51F5173F108B01EE2E227083EBCF7F20 * Cisco Talos is tracking the active exploitation of CVE-2026-20182, an authentication bypass vulnerability in Cisco Catalyst SD-WAN Controller, fo...	N/A	N/A	May 14, 2026	TALOSBLOG
CRITICAL 10	THN:EDDA563BB16...	Cisco Catalyst SD-WAN Controller Auth Bypass Actively Exploited to Gain Admin Access_THN:EDDA563BB16421598D9FB2EF3ADEA225 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh9rok1ToP_K0gWug0GnICltZkvx6bMRyhHfTJG1AcSfrGpM_fOVc61O3Fpyen_IW-wpb4s6Hl3qZcU5nEs77...	N/A	N/A	May 14, 2026	THN
NONE	HACKREAD:BA57F3...	Fake Job Interview Apps Drop JobStealer Malware on Windows and macOS_HACKREAD:BA57F366CF1C1D01D9B515571AC2FED7 Hackers are using Fake interview apps to spread JobStealer malware on macOS and Windows to steal crypto wallets, browser data, and passwords.	N/A	N/A	May 14, 2026	HACKREAD
NONE	MS:CVE-2026-42897	Microsoft Exchange Server Spoofing Vulnerability_MS:CVE-2026-42897 Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Exchange Server allows an unauthorized attacker t...	N/A	N/A	May 14, 2026	MSCVE
NONE	MS:CVE-2026-41615	Microsoft Authenticator Information Disclosure Vulnerability_MS:CVE-2026-41615 Exposure of sensitive information to an unauthorized actor in Microsoft Authenticator allows an unauthorized attacker to disclose information over ...	N/A	N/A	May 14, 2026	MSCVE
NONE	THN:7E008AC2F41...	Stealer Backdoor Found in 3 Node-IPC Versions Targeting Developer Secrets_THN:7E008AC2F41F8784721A7FC21B43DBC0 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhTj2m9-HHmDEDzKIsalsJ_HJcwcUsIFajvcpTLP9QMyqS9F_JroTH7lXeOGZFuO6j6F-RzbIo1kBIQ0udSFQ...	N/A	N/A	May 14, 2026	THN
NONE	MSSECURE:5FF080...	Kazuar: Anatomy of a nation-state botnet_MSSECURE:5FF080091E3A5D8496F976B20054123D In this article 1. Delivery 2. Module types 3. Botnet operations 4. Who is Secret Blizzard? 5. Mitigation and protection guidance 6. M...	N/A	N/A	May 14, 2026	MSSECURE
NONE	MSSECURE:BBC2B9...	When configuration becomes a vulnerability: Exploitable misconfigurations in AI apps_MSSECURE:BBC2B9AF8AFED240AD1386E73E990660 In this article 1. Background 2. What is an exploitable misconfiguration? 3. Exploitable misconfigurations in popular AI applications 4. M...	N/A	N/A	May 14, 2026	MSSECURE
NONE	HACKREAD:DA4583...	How Fintech APIs Are Modernizing Business Cash Flow Management_HACKREAD:DA45837A73556DD9F9B886183C242732 Business cash flow is often harder to manage than revenue. A company can have strong sales and still…	N/A	N/A	May 14, 2026	HACKREAD