CRITICAL - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 10	34F15F9E-3DE3-	Exploit for CVE-2026-34234_34F15F9E-3DE3-5F98-9A00-51E6DAA3B16B CVE-2026-34234 - CtrlPanel Installer RCE Lab Local Docker lab for demonstrating CVE-2026-34234 in CtrlPanel. This repository compares: - vuln: Ctrl...	N/A	N/A	Jun 4, 2026	GITHUBEXPLOIT
CRITICAL 9.8	CVE-2026-4104	SQLi in Akmer Informatics’ TeknoPass_CVE-2026-4104 Authorization bypass through User-Controlled SQL primary key vulnerability in Akmer Informatics Automation Industry and Trade Ltd. Co. TeknoPass al...	Akmer Informatics Automation Industry and Trade Ltd. Co.	TeknoPass 20210501	Jun 4, 2026	CVE
CRITICAL 9.6	CVE-2026-10840	Openshift-pipelines-operator-rh: openshift-pipelines-operator: tekton-scheduler-rolebinding grants system:authenticated write access to kueue and cert-manager resources_CVE-2026-10840 A flaw was found in the OpenShift Pipelines operator. The tekton-scheduler-rolebinding ClusterRoleBinding grants the system:authenticated group wri...	Red Hat	Builds for Red Hat OpenShift	Jun 4, 2026	CVE
CRITICAL 9.3	CVE-2026-50214	Shared Secret Quota Inflation_CVE-2026-50214 The /v1/Plan service relies entirely on a shared global API token for full administrative management, allowing arbitrary creation of zero-cost netw...	Acer	Connect M6E 5G Portable WiFi Router *	Jun 4, 2026	CVE
CRITICAL 9.3	CVE-2026-50209	MDM Server Registration Overriding_CVE-2026-50209 Broadcast events allow malicious software to rewrite the device's default Mobile Device Management (MDM) endpoint address, shifting administrative ...	Acer	Connect M6E 5G Portable WiFi Router *	Jun 4, 2026	CVE
CRITICAL 9.2	CVE-2026-50208	Permissive TrustAllCerts TLS Verification_CVE-2026-50208 High-risk TrustAllCerts routines disable standard TLS certificate validation. Combined with hard-coded DES symmetric encryption keys, a Man-in-the-...	Acer	Connect M6E 5G Portable WiFi Router *	Jun 4, 2026	CVE
CRITICAL 9.8	THN:E195CBEDCCA...	CISA Adds Exploited Magento RCE Flaw CVE-2026-45247 to KEV Catalog_THN:E195CBEDCCA2595694FC42E56D695411 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi8P5o_wfJsxsTaxY4OONIm2y5N5x9heoFeLchfLU13YA36tGQGJtu00tOCQSKhCTBFobAAWfhXLtNGMu8ZCG...	N/A	N/A	Jun 4, 2026	THN
CRITICAL 9.4	CVE-2026-49194	SCREEN_CLICK Authentication Bypass_CVE-2026-49194 The debugging routine SCREEN_CLICK(5053) enables a connection to skip the standard device login prompt entirely and directly enter an interactive s...	Acer	Connect M6E 5G Portable WiFi Router *	Jun 4, 2026	CVE
CRITICAL 9.3	CVE-2026-49191	Exposed Hard-coded M3WebServer Backend API Key_CVE-2026-49191 The production build of the M3WebServer hard-codes its backend API keys, which can be easily intercepted through verbose error handling pages.	Acer	Connect M6E 5G Portable WiFi Router *	Jun 4, 2026	CVE
CRITICAL 9.4	CVE-2026-49190	Missing Per-Instruction Authorization Checks_CVE-2026-49190 The system fails to evaluate instructional permissions over multiple internal operation codes (opcodes), permitting unauthorized application instal...	Acer	Connect M6E 5G Portable WiFi Router *	Jun 4, 2026	CVE