HIGH - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 8.8	D785B7F1-5FCD-	Exploit for Improper Access Control in Graylog_D785B7F1-5FCD-57AF-BA95-D33887F2F1C7 Exploiting Arbitrary Class Loading on the JVM This repository contains the proof-of-concept exploit presented in my talk: Exploiting Arbitrary Clas...	N/A	N/A	Jun 29, 2026	GITHUBEXPLOIT
HIGH 7.5	7CABEA7D-2DC5-	Exploit for Uncontrolled Resource Consumption in Github Cmark-Gfm_7CABEA7D-2DC5-58B7-AF42-1DF51CCE3D29 graylog-cve-2023-24824-exploit Proof-of-concept exploit for CVE-2023-24824 demonstrating how an arbitrary class loading primitive can be transforme...	N/A	N/A	Jun 29, 2026	GITHUBEXPLOIT
HIGH 7.5	CVE-2026-46604	Panic decoding image with out-of-bounds strip offset in x/image/tiff in golang.org/x/image_CVE-2026-46604 The TIFF decoder can panic when decoding an invalid image with an out-of-bounds strip offset.	golang.org/x/image	golang.org/x/image/tiff	Jun 26, 2026	CVE
HIGH 8.1	CVE-2026-10820	ProfilePress < 4.16.17 - Subscriber+ Subscription Cancellation via IDOR_CVE-2026-10820 The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content WordPress plugin before 4.16.17 does no...	Unknown	Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content	Jun 27, 2026	CVE
HIGH 7	CVE-2026-49417	Multiple vulnerabilities in the sound(4) mmap path_CVE-2026-49417 Second, the audio buffer backing a mapping could be freed when the device was closed even though the mapping remained valid. The freed memory coul...	FreeBSD	FreeBSD 15.0-RELEASE	Jun 27, 2026	CVE
HIGH 7.1	CVE-2026-49413	Flaw in Linuxulator execution of setugid binaries_CVE-2026-49413 The Linuxulator determined whether a binary was set-user-ID or set-group-ID by checking the P_SUGID process flag. During execve(2), this flag is n...	FreeBSD	FreeBSD 15.0-RELEASE	Jun 27, 2026	CVE
HIGH 7.8	CVE-2026-49412	Use-after-free bug in the IPV6_MSFILTER socket option handler_CVE-2026-49412 The kernel handler for IPV6_MSFILTER dropped a serializing lock in order to copy the source-filter list from userspace, then reacquired the lock. ...	FreeBSD	FreeBSD 15.0-RELEASE	Jun 27, 2026	CVE
HIGH 7.8	CVE-2026-45258	Multiple vulnerabilities in the sound(4) mmap path_CVE-2026-45258 dsp_mmap_single() validated the requested mapping by checking the sum of the user-supplied offset and length against the buffer size. This additio...	FreeBSD	FreeBSD 15.0-RELEASE	Jun 27, 2026	CVE
HIGH 7.8	CVE-2026-49414	ASLR bypass for setuid executables via procctl(2)_CVE-2026-49414 The ELF image activator cleared per-process ASLR preference flags for setuid binaries after the code that computes the PIE base address, rather tha...	FreeBSD	FreeBSD 15.0-RELEASE	Jun 27, 2026	CVE
HIGH 7.5	CVE-2026-10083	APCu Manager < 4.5.0 - Unauthenticated Stored XSS via Cache Key Pollution_CVE-2026-10083 The APCu Manager WordPress plugin before 4.5.0 does not escape APCu object-cache keys before rendering them in an admin-area page, leading to a Sto...	Unknown	APCu Manager	Jun 29, 2026	CVE