category_news - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	THN:99E23D8DD96...	TanStack Supply Chain Attack Hits Two OpenAI Employee Devices, Forces macOS Updates_THN:99E23D8DD967F6B2FAA3C78801102B2F ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj1l4Vq20M4553fkDfGbO9VqLV9Au-6EefivLp8HT2W5QxJvgWf1mr6pg5xsbC5j3FCJzOOCJv_CImY1LjjFY...	N/A	N/A	May 15, 2026	THN
HIGH 8.1	THN:447FEC50CA1...	On-Prem Microsoft Exchange Server CVE-2026-42897 Exploited via Crafted Email_THN:447FEC50CA106F9CB4074F9C587F2AFE ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEirN79ZRjEd5wnVbOTlJJsWjQ54cwSj2bM5NDzBSgAFO8f_9LrlIwQRI0ZogQX42iejmhgc1n2YcA91pFrVqt...	N/A	N/A	May 15, 2026	THN
CRITICAL 10	THN:7C7BFE7AC47...	CISA Adds Cisco SD-WAN CVE-2026-20182 to KEV After Admin Access Exploits_THN:7C7BFE7AC4797BAAFB9E8B8BD5CC58BE ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg4XG5z00sF3uL0ZbhtZNiergQ9QVaZJydwP1pXEdPh2o29mwvTS2nPKRbxHftwnEJ1pvxMQS9TQknWqbovk-...	N/A	N/A	May 15, 2026	THN
NONE	TALOSBLOG:57890...	The time of much patching is coming_TALOSBLOG:5789026EF53D30E3F9C3E6C8927FC37B ![The time of much patching is coming](https://storage.ghost.io/c/af/a0/afa04ee3-414f-4481-8d23-7e7c146f192e/content/images/2026/05/threat_source-1...	N/A	N/A	May 14, 2026	TALOSBLOG
HIGH 8.8	AVLEONOV:B200D3...	About Remote Code Execution – Apache ActiveMQ (CVE-2026-34197) vulnerability_AVLEONOV:B200D37BE94C4CD4E37571F1F134973F ![About Remote Code Execution - Apache ActiveMQ \(CVE-2026-34197\) vulnerability](https://avleonov.com/wp-content/uploads/2026/05/[email protected]...	N/A	N/A	May 14, 2026	AVLEONOV
CRITICAL 10	TALOSBLOG:51F51...	Ongoing exploitation of Cisco Catalyst SD-WAN vulnerabilities_TALOSBLOG:51F5173F108B01EE2E227083EBCF7F20 * Cisco Talos is tracking the active exploitation of CVE-2026-20182, an authentication bypass vulnerability in Cisco Catalyst SD-WAN Controller, fo...	N/A	N/A	May 14, 2026	TALOSBLOG
CRITICAL 10	THN:EDDA563BB16...	Cisco Catalyst SD-WAN Controller Auth Bypass Actively Exploited to Gain Admin Access_THN:EDDA563BB16421598D9FB2EF3ADEA225 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh9rok1ToP_K0gWug0GnICltZkvx6bMRyhHfTJG1AcSfrGpM_fOVc61O3Fpyen_IW-wpb4s6Hl3qZcU5nEs77...	N/A	N/A	May 14, 2026	THN
NONE	HACKREAD:BA57F3...	Fake Job Interview Apps Drop JobStealer Malware on Windows and macOS_HACKREAD:BA57F366CF1C1D01D9B515571AC2FED7 Hackers are using Fake interview apps to spread JobStealer malware on macOS and Windows to steal crypto wallets, browser data, and passwords.	N/A	N/A	May 14, 2026	HACKREAD
NONE	MS:CVE-2026-41615	Microsoft Authenticator Information Disclosure Vulnerability_MS:CVE-2026-41615 Exposure of sensitive information to an unauthorized actor in Microsoft Authenticator allows an unauthorized attacker to disclose information over ...	N/A	N/A	May 14, 2026	MSCVE
NONE	MS:CVE-2026-42897	Microsoft Exchange Server Spoofing Vulnerability_MS:CVE-2026-42897 Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Exchange Server allows an unauthorized attacker t...	N/A	N/A	May 14, 2026	MSCVE