CRITICAL - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.1	CVE-2026-34182	CMS AuthEnvelopedData Processing May Accept Forged Messages_CVE-2026-34182 Issue Summary: Cryptographic Message Services (CMS) processing fails to perform sufficient input validation on the cipher and tag length fields of ...	OpenSSL	OpenSSL 4.0.0, 3.6.0, 3.5.0, 3.4.0, 3.0.0	Jun 9, 2026	CVE
CRITICAL 9.8	THN:F7E7D468AF7...	China-Linked JDY Botnet Expands to 1,500+ Devices for Cyber Reconnaissance_THN:F7E7D468AF7210FBEDEFCF347D48B054 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgQC0_BYMuNpY7re4OHHsytEfC6fW3KsonxN6e2X0Dj03fJoMazI6EZnvPj_hOUZ99yJLq6RrH3ZSCsfDWOB6...	N/A	N/A	Jun 10, 2026	THN
CRITICAL 10	PACKETSTORM:223077	📄 UniFi Network 9.0.118 Path Traversal / File Disclosure_PACKETSTORM:223077 UniFi Network version9.0.118 suffers from a path traversal vulnerability that can lead to arbitrary file disclosure...	N/A	N/A	Jun 10, 2026	PACKETSTORM
CRITICAL 9.3	1562A58E-1A45-	Exploit for Improper Authentication in Checkpoint Gaia_Os_1562A58E-1A45-56EF-BDBE-A65E8A6B3F77 CVE-2026-50751 Check Point IKEv1 Scanner A multi-threaded vulnerability scanner for CVE-2026-50751, a critical IKEv1 authentication bypass vulnerab...	N/A	N/A	Jun 10, 2026	GITHUBEXPLOIT
CRITICAL 10	THN:3E49862488C...	Ivanti, Fortinet, and SAP Release Patches for Multiple Critical Vulnerabilities_THN:3E49862488C9D9A0EC9213C02A5BB679 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhs2l0GUUy91D4hHU067eYWpRzvSJGcfOkHce2jcVXZGWI9sld0hgaomhoKTc3dYEXEbz05oZQ5mFzo34eXp-...	N/A	N/A	Jun 10, 2026	THN
CRITICAL 9.8	CVE-2026-38615	CVE-2026-38615_CVE-2026-38615 DedeCMS V5.7.118 is vulnerable to Command Execution in file_manage_control.php.	DedeCMS Team	DedeCMS V5.7.118	Jun 9, 2026	CVE
CRITICAL 9.8	CVE-2026-36721	CVE-2026-36721_CVE-2026-36721 A lack of cryptographic signature verification in the validateAccessToken function of bookcars v8.3 allows attackers to bypass authentication via a...	CC-T-454455	bookcars v8.3	Jun 9, 2026	CVE
CRITICAL 9.6	CVE-2026-53476	Assisted-migration-agent: vddk tarball chained-symlink arbitrary file write_CVE-2026-53476 A flaw was found in assisted-migration-agent. An unauthenticated attacker, located on the same local area network (LAN), can exploit a path travers...	Red Hat	assisted-migration-agent	Jun 10, 2026	CVE
CRITICAL 9.3	CVE-2026-53475	Assisted-migration-agent: tls verification disabled on all vcenter connections_CVE-2026-53475 A flaw was found in assisted-migration-agent. The application hardcodes insecure Transport Layer Security (TLS) connections when communicating with...	kubev2v	assisted-migration-agent	Jun 10, 2026	CVE
CRITICAL 9.6	CVE-2026-53474	Migration-planner: second-order sql injection via rvtools upload_CVE-2026-53474 A flaw was found in migration-planner. A remote authenticated attacker could exploit this vulnerability by uploading a specially crafted RVTools .x...	KubeV2V	migration-planner	Jun 10, 2026	CVE