CRITICAL - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9	CVE-2026-9311	IBM WebSphere Application Server is affected by remote code execution_CVE-2026-9311 IBM WebSphere Application Server 9.0, and 8.5 is vulnerable to remote code execution caused by the bypass of security controls.	IBM	WebSphere Application Server 9.0	Jun 1, 2026	CVE
CRITICAL 9.1	CVE-2026-8644	IBM WebSphere Application Server is affected by an identity spoofing vulnerability_CVE-2026-8644 IBM WebSphere Application Server 9.0, and 8.5 is vulnerable to identity spoofing.	IBM	WebSphere Application Server 9.0	Jun 1, 2026	CVE
CRITICAL 9.2	CVE-2026-49121	AI Tensor Engine for ROCm (AITER) 0.1.14 Unauthenticated RCE via MessageQueue.recv() Pickle Deserialization_CVE-2026-49121 AI Tensor Engine for ROCm (AITER) through 0.1.14 contains an unauthenticated remote code execution vulnerability in the MessageQueue.recv() functio...	ROCm	aiter 0.1.14	Jun 1, 2026	CVE
CRITICAL 10	CVE-2026-0072	CVE-2026-0072_CVE-2026-0072 In addInputMethodListener of com.android.server.inputmethod.InputMethodManagerService, there is a missing permission check. This could lead to loca...	Google	Android XR 14	Jun 1, 2026	CVE
CRITICAL 10	PACKETSTORM:222403	📄 Mennekes Amtron Series and Smart-T PnC 5.22.3 Authentication Bypass / Privilege Escalation_PACKETSTORM:222403 Mennekes Amtron Series and Smart-T PnC version 5.22.3 suffers from authentication bypass and privilege escalation vulnerabilities...	N/A	N/A	Jun 1, 2026	PACKETSTORM
CRITICAL 9.8	EDB-ID:52608	Drupal Core 10.5.5 – Error-Based SQL Injection_EDB-ID:52608 Exploit Title: Drupal Core 10.5.5 - Error-Based SQL Injection Google Dork: N/A Date: 2026-05-31 Exploit Author: cardosource Vendor Homepage: https:...	N/A	N/A	Jun 1, 2026	EXPLOITDB
CRITICAL 9.6	MS:CVE-2026-9875	Chromium: CVE-2026-9875 Out of bounds read in WebGL_MS:CVE-2026-9875 This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...	N/A	N/A	May 31, 2026	MSCVE
CRITICAL 9.6	MS:CVE-2026-9876	Chromium: CVE-2026-9876 Use after free in WebGL_MS:CVE-2026-9876 This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...	N/A	N/A	May 31, 2026	MSCVE
CRITICAL 10	CVE-2026-45132	CloudPirates Open Source Helm Charts: GitHub Actions workflow leaks PAT and SSH signing key via unsafe credential handling_CVE-2026-45132 CloudPirates Open Source Helm Charts is a collection of Helm charts. Prior to commit fcf9302, a GitHub Actions workflow (generate-schema.yaml) expo...	CloudPirates-io	helm-charts < fcf930211604652aec15085895b6457bc8b73b54	Jun 1, 2026	CVE
CRITICAL 10	CVE-2026-45131	CloudPirates Open Source Helm Charts: GitHub Actions pull_request_target workflow allows secret exfiltration via fork pull requests_CVE-2026-45131 CloudPirates Open Source Helm Charts is a collection of Helm charts. Prior to commit fcf9302, a GitHub Actions workflow (pull-request.yaml) execute...	CloudPirates-io	helm-charts < fcf930211604652aec15085895b6457bc8b73b54	Jun 1, 2026	CVE