CVSS - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	THN:1F786937811...	Fake Sites Mimicking Open-Source Tools Rank High on Google to Deliver Malware via TDS_THN:1F786937811F472CF314E0DC06C0FB68 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiM7j9PG_c741so0RmX7eIB48xO-ndyZSF0pIU5j2anTqxJNj8A3XVstoIjq3iMnuQxhgyhl3LKP5laenFIj7...	N/A	N/A	Jun 4, 2026	THN
NONE	THN:D07D4F29461...	Hackers Spied on a Stock Exchange Executive’s Outlook Mailbox for Five Months_THN:D07D4F29461BAF6A9F60B9C610F2AA13 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjpg8pBdHkENT_CKClsSR7f4Rb7BQpM27ynGrkRdJg-bbUfI2NIHQ_rFmkOVHjK8RggTD-XMvVdGGI_qrYyIx...	N/A	N/A	Jun 4, 2026	THN
HIGH 8.7	CVE-2026-50213	Bulk User Private Data Harvesting_CVE-2026-50213 The account validation endpoint /v1/User/validate returns comprehensive user profile data sheets, which can be crawled by iterating predictable ide...	Acer	Connect M6E 5G Portable WiFi Router *	Jun 4, 2026	CVE
HIGH 7.1	CVE-2026-50212	Arbitrary Remote Device Unbinding_CVE-2026-50212 Weak validation logic within device dissociation API routines allows a remote entity to forcefully unbind unrelated user endpoints, causing severe ...	Acer	Connect M6E 5G Portable WiFi Router *	Jun 4, 2026	CVE
HIGH 8.8	CVE-2026-50211	Exposed Factory Testing App Boundaries_CVE-2026-50211 Leftover engineering diagnostics and factory-level diagnostic software remain exposed on retail builds, giving malicious apps write privileges to i...	Acer	Connect M6E 5G Portable WiFi Router *	Jun 4, 2026	CVE
MEDIUM 6.9	CVE-2026-50210	Weak Static Cryptographic Initialization Vectors_CVE-2026-50210 The device encrypts data using AES-CBC with static zero-filled Initialization Vectors (IVs), making it susceptible to replay attacks and known-plai...	Acer	Connect M6E 5G Portable WiFi Router *	Jun 4, 2026	CVE
CRITICAL 9.3	CVE-2026-50209	MDM Server Registration Overriding_CVE-2026-50209 Broadcast events allow malicious software to rewrite the device's default Mobile Device Management (MDM) endpoint address, shifting administrative ...	Acer	Connect M6E 5G Portable WiFi Router *	Jun 4, 2026	CVE
CRITICAL 9.2	CVE-2026-50208	Permissive TrustAllCerts TLS Verification_CVE-2026-50208 High-risk TrustAllCerts routines disable standard TLS certificate validation. Combined with hard-coded DES symmetric encryption keys, a Man-in-the-...	Acer	Connect M6E 5G Portable WiFi Router *	Jun 4, 2026	CVE
HIGH 8.5	CVE-2026-50207	Local Modem Manipulation via Binder Interfaces_CVE-2026-50207 The system Binder boundary accepts unverified pass-through AT commands, giving local applications the power to read baseband files or disable cellu...	Acer	Connect M6E 5G Portable WiFi Router *	Jun 4, 2026	CVE
HIGH 7.2	CVE-2026-3820	Supermicro BMC’s SMTP service contains a command injection vulnerability_CVE-2026-3820 There is a vulnerability in the Supermicro BMC SMTP service at Supermicro AS-2115HS-TNR. An attacker may obtain administrator privileges and inje...	SMCI	AS-2115HS-TNR 01.08.01	Jun 4, 2026	CVE