HIGH - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.6	CVE-2026-9261	CVE-2026-9261_CVE-2026-9261 Use of weak SSH cryptographic algorithms in Canon EOS Network Setting Tool Version 1.5.0 or earlier	Canon Inc.	EOS Network Setting Tool for Windows 1.5.0 or earlier	Jun 15, 2026	CVE
HIGH 7.1	CVE-2026-9259	CVE-2026-9259_CVE-2026-9259 Improper validation of server certificates in Canon EOS Network Setting Tool Version 1.5.0 or earlier	Canon Inc.	EOS Network Setting Tool for Windows 1.5.0 or earlier	Jun 15, 2026	CVE
HIGH 7.1	CVE-2026-9258	CVE-2026-9258_CVE-2026-9258 Improper validation of SSH host keys in Canon EOS Network Setting Tool Version 1.5.0 or earlier	Canon Inc.	EOS Network Setting Tool for Windows 1.5.0 or earlier	Jun 15, 2026	CVE
HIGH 7.8	CVE-2026-41158	GPU DDK – Backed sparse PMRs are not handled by deferred free mechanism after shrink_CVE-2026-41158 Software installed and run as a non-privileged user may conduct GPU system calls to write to arbitrary freed physical pages. Physical memory all...	Imagination Technologies	Graphics DDK 1.18 RTM	Jun 12, 2026	CVE
HIGH 8.8	CVE-2026-34195	GPU DDK – Kernel heap OOB write in PMRChangeSparseMemOSMem due to incorrect physical page translation from virtual page indexes_CVE-2026-34195 Software installed and run as a non-privileged user may conduct intentional GPU sparse memory API calls to cause out of bounds write in the kernel....	Imagination Technologies	Graphics DDK 1.18 RTM	Jun 12, 2026	CVE
HIGH 7.8	CVE-2025-56814	CVE-2025-56814_CVE-2025-56814 A code injection vulnerability in the wxExecute() function of OpenCPN v5.12.0 allows attackers to execute arbitrary code via embedding shell metach...	n/a	n/a n/a	Jun 15, 2026	CVE
HIGH 7.1	CVE-2026-52702	WordPress SEO Redirection plugin <= 9.17 - Cross Site Scripting (XSS) vulnerability_CVE-2026-52702 Unauthenticated Cross Site Scripting (XSS) in SEO Redirection	wp-buy	SEO Redirection n/a	Jun 15, 2026	CVE
HIGH 8.5	CVE-2026-52700	WordPress WCMultiShipping plugin <= 3.0.2 - SQL Injection vulnerability_CVE-2026-52700 Subscriber SQL Injection in WCMultiShipping	WcMultishipping – Mondial Relay & Chronopost for Wooommerce	WCMultiShipping n/a	Jun 15, 2026	CVE
HIGH 7.5	CVE-2026-52699	WordPress VikRentCar plugin <= 1.4.5 - Insecure Direct Object References (IDOR) vulnerability_CVE-2026-52699 Unauthenticated Insecure Direct Object References (IDOR) in VikRentCar	e4jvikwp	VikRentCar n/a	Jun 15, 2026	CVE
HIGH 8.5	CVE-2026-52697	WordPress Taskbuilder plugin <= 5.0.7 - SQL Injection vulnerability_CVE-2026-52697 Subscriber SQL Injection in Taskbuilder	Taskbuilder	Taskbuilder n/a	Jun 15, 2026	CVE