tapic - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	SCHNEIER:1F1BE9...	Interesting Paper Exploring Prompt Injection_SCHNEIER:1F1BE9719845C1CDD988983813F0567D This is a fascinating explotation of how LLMs fall for prompt injection attacks. It turns out that they learn to recognize the style of text in dif...	N/A	N/A	Jun 25, 2026	SCHNEIER
CRITICAL 9.2	E06F62BF-FA49-	Exploit for Command Injection in Tenda Ac8_Firmware_E06F62BF-FA49-5F5D-A835-777DE385E17D CVE-2026-42530 — Safe-Check Scanner Non-destructive mass scanner for the NGINX HTTP/3 QUIC use-after-free Inventory which of your hosts are exposed...	N/A	N/A	Jun 25, 2026	GITHUBEXPLOIT
MEDIUM 4.3	CVE-2026-42005	Insufficient input validation of internal web server_CVE-2026-42005 An attacker can send a web request that causes unlimited memory allocation in the internal web server, leading to a denial of service. The intern...	PowerDNS	Authoritative 4.9.0	Jun 25, 2026	CVE
HIGH 7.8	42AB7263-83ED-	Exploit for Use After Free in Linux Linux_Kernel_42AB7263-83ED-599E-9DD2-2E97F2B90A99 CVE-2026-23111 PoC Linux Kernel nftables Use-After-Free Local Privilege Escalation Vulnerability Summary - CVE: CVE-2026-23111 - Type: Use-After-Fr...	N/A	N/A	Jun 25, 2026	GITHUBEXPLOIT
NONE	THN:18D345EFB30...	Surviving the Mythos Era: Richard Bejtlich on the Case for NDR_THN:18D345EFB30E0C4B48C8E47EDFAA777B ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjGC4Kd3HcSGw5TQ1GQNwgQST4imnVTlHZ4yW1dDr_kwUksDH1MHmlPUMzW8LhePZZTM1HszkIQwL8Ggm-cxl...	N/A	N/A	Jun 25, 2026	THN
HIGH 8.6	CCA10CC3-6319-	Exploit for CVE-2026-20230_CCA10CC3-6319-542C-ADD9-3605DA4D116A CVE-2026-20230 Cisco Unified Communications Manager SSRF: Arbitrary File Write to RCE—PoC Derivation Process and Analysis Scope: For use only in lo...	N/A	N/A	Jun 25, 2026	GITHUBEXPLOIT
NONE	IMPERVABLOG:0E4...	API Security Demystified: Which Tools Actually Protect Your APIs (And Where the Gaps Are)_IMPERVABLOG:0E46C9861D1FFFD49FEDC3014985F0E1 ## Introduction Quick answer: No single tool secures an API. API security is a layered discipline. Secure-coding analyzers and SCA scanners catch ...	N/A	N/A	Jun 25, 2026	IMPERVABLOG
NONE	THN:BD25B0B3685...	New Gaslight macOS Malware Uses Prompt Injection to Disrupt AI-Assisted Analysis_THN:BD25B0B3685DF00067DD7045F2EFCD97 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgbTrOy7FP80AfVcwyuiLtJx1T9YECQ6fxHaelQKUn3MNwSV9P3tiVq4_-pOB-gmU3lF9GpWnc5ebVSAbp0MZ...	N/A	N/A	Jun 25, 2026	THN
NONE	MALWAREBYTES:8D...	Elite network says it was hacked after members’ personal data was left exposed_MALWAREBYTES:8DD20C3A275E37B4123FD763E33A138B Some organizations exist to be exclusive. They're invite-only, and discreet, the kind of place where the membership directory is the product. Dia...	N/A	N/A	Jun 25, 2026	MALWAREBYTES
LOW 2	CVE-2026-56130	Apache Shiro: Remember-me cookie isn’t checked for expiry on the server_CVE-2026-56130 "Remember me" cookie age is not verified on the server. This potentially allows an attacker to intercept a valid cookie and reuse it indefinitely, ...	Apache Software Foundation	Apache Shiro 1.2.4	Jun 25, 2026	CVE