HIGH - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 8.5	CVE-2026-12781	EaseUS Partition Master Kernel Driver epmntdrv.sys access control_CVE-2026-12781 A vulnerability was identified in EaseUS Partition Master up to 14.5. The affected element is an unknown function in the library epmntdrv.sys of th...	EaseUS	Partition Master 14.0	Jun 21, 2026	CVE
HIGH 8.5	CVE-2026-12780	AOMEI Backupper Kernel Driver amwrtdrv.sys access control_CVE-2026-12780 A vulnerability was determined in AOMEI Backupper up to 8.3.0. Impacted is an unknown function in the library amwrtdrv.sys of the component Kernel ...	AOMEI	Backupper 8.0	Jun 21, 2026	CVE
HIGH 8.5	CVE-2026-12779	AOMEI Dynamic Disk Manager Kernel Driver ddmdrv.sys access control_CVE-2026-12779 A vulnerability was found in AOMEI Dynamic Disk Manager up to 10.10.1. This issue affects some unknown processing in the library ddmdrv.sys of the ...	AOMEI	Dynamic Disk Manager 10.10.0	Jun 21, 2026	CVE
HIGH 8.5	CVE-2026-12778	AOMEI Partition Assistant Kernel Driver ampa10.sys access control_CVE-2026-12778 A vulnerability has been found in AOMEI Partition Assistant up to 10.10.1. This vulnerability affects unknown code in the library ampa10.sys of the...	AOMEI	Partition Assistant 10.10.0	Jun 21, 2026	CVE
HIGH 8.7	CVE-2026-56341	AVideo – Unauthenticated Access to Payment Log DataTables Endpoints via list.json.php_CVE-2026-56341 AVideo through version 26.0 contains multiple unauthenticated list.json.php endpoints in payment plugins lacking authorization checks, exposing Pay...	AVideo	AVideo	Jun 20, 2026	CVE
HIGH 8.7	CVE-2026-56340	vLLM – Denial of Service via Unvalidated Multimodal Embeddings_CVE-2026-56340 vLLM versions >= 0.10.2 and < 0.13.0 are missing sparse tensor validation in multimodal embeddings processing. Because PyTorch disables sparse tens...	vLLM	vLLM 0.10.2	Jun 20, 2026	CVE
HIGH 8.2	90EC8998-FB96-	explotability_analysis_ebpf_90EC8998-FB96-54C8-B382-EB8D24257354 eBPF Verifier Exploit Research — s344024 Romano Simone Research project for the Security Verification and Testing SVT course — analysis and exploit...	N/A	N/A	Jun 20, 2026	GITHUBEXPLOIT
HIGH 8.6	3E4275D3-0547-	Exploit for Server-Side Request Forgery in Vercel Next.Js_3E4275D3-0547-519B-A6B4-38321844D41A ╔══════════════════════════════════════════════════════════════╗ ║ NextSSRF — CVE-2026-44578 Scanner & Exploit ║ ║ Next.js WebSocket Upgrade Handle...	N/A	N/A	Jun 20, 2026	GITHUBEXPLOIT
HIGH 7.5	THN:3C02EE8690F...	Hackers Exploit Gravity SMTP WordPress Plugin Bug to Expose API Keys_THN:3C02EE8690F770FB334836241DFA97E7 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjL1kN23KhnFjdjHcR0i-iySK1Zv-kkApPs6yBq11670ubXx0NiAbgDMoYSfwQNyq9asso5AG9KcPRXEL4LU8...	N/A	N/A	Jun 20, 2026	THN
HIGH 7.5	CVE-2026-11912	Simple File List <= 6.3.7 - Missing Authorization to Unauthenticated File Modification via simplefilelist_edit_job AJAX Action_CVE-2026-11912 The Simple File List plugin for WordPress is vulnerable to arbitrary file modification due to insufficient authorization checks in all versions up ...	eemitch	Simple File List	Jun 20, 2026	CVE