CVSS - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 5.9	CVE-2026-10637	Use-after-free of net_pkt in IPv6 MLD send path triggerable by a link-local MLD Query_CVE-2026-10637 subsys/net/ip/ipv6_mld.c:mld_send() read the packet interface via net_pkt_iface(pkt) after net_send_data(pkt) returned successfully. Per the networ...	zephyrproject	zephyr 1.12.0	Jun 16, 2026	CVE
LOW 3.7	CVE-2026-10636	Use-after-free in Zephyr IPv4 IGMP send path (igmp_send)_CVE-2026-10636 In Zephyr's IPv4 IGMP implementation, igmp_send() in subsys/net/ip/igmp.c read the network interface back out of the packet via net_pkt_iface(pkt) ...	zephyrproject	zephyr 2.6.0	Jun 16, 2026	CVE
HIGH 8.8	CVE-2026-0647	Rockwell Automation FLEX I/O Dual-port EtherNet/IP Adapters – Multiple Vulnerabilities_CVE-2026-0647 An improper authentication security issue exists within the 1794-AENTR adapter's embedded web server. The vulnerability allows an unauthenticated a...	Rockwell Automation	FLEX I/O EtherNet/IP Adapters 2.012	Jun 16, 2026	CVE
HIGH 8.7	CVE-2026-0646	Rockwell Automation FLEX I/O Dual-port EtherNet/IP Adapters – Multiple Vulnerabilities_CVE-2026-0646 A denial-of-service security issue exists within the 1794-AENTR adapter due to improper memory handling of CIP protocol requests. This vulnerabilit...	Rockwell Automation	FLEX I/O EtherNet/IP Adapters 2.012	Jun 16, 2026	CVE
HIGH 8.8	CVE-2026-12161	CVE-2026-12161_CVE-2026-12161 Improper input validation in the SSH Elevate Shell feature in Devolutions Remote Desktop Manager 2026.2.7 allows an authenticated user with permi...	Devolutions	Remote Desktop Manager 2026.2.7	Jun 15, 2026	CVE
HIGH 8.3	CVE-2025-14272	Rockwell Automation FactoryTalk Analytics PavilionX_CVE-2025-14272 A security issue was identified in Pavilion due to improper authorization enforcement in API endpoints. This vulnerability can allow an unauthorize...	Rockwell Automation	FactoryTalk Analytics PavilionX 7.0	Jun 16, 2026	CVE
CRITICAL 9.2	CVE-2025-13036	Rockwell Automation FactoryTalk Historian Site Edition – Authentication Bypass_CVE-2025-13036 An authentication bypass security issue exists within FactoryTalk Historian Site Edition. By continually sending requests to the login endpoint, an...	Rockwell Automation	FactoryTalk Historian SE v11	Jun 16, 2026	CVE
HIGH 8.7	CVE-2025-11694	Rockwell Automation CompactLogix 5370 Controllers – Multiple Vulnerabilities_CVE-2025-11694 A security issue exists within 1769 CompactLogix controllers due to the missing validation of sequence numbers and source IP addresses in the CIP p...	Rockwell Automation	CompactLogix 5370 V36	Jun 16, 2026	CVE
NONE	HACKREAD:8D8B67...	Developer laptops are the credential store attackers are picking through in 2026, GitGuardian announces Endpoint Protection_HACKREAD:8D8B679E77BF5C743A5E3229C071F8C4 New York, New York, 16th June 2026, CyberNewswire	N/A	N/A	Jun 16, 2026	HACKREAD
NONE	MALWAREBYTES:A0...	Cardiac patients’ medical data stolen and held to ransom_MALWAREBYTES:A07E43DF2B3765D39F76CAAEDAEDFB80 Cardiac monitoring provider iRhythm has been hit by a data theft followed by an extortion attempt. In a filing with the Securities and Exchange Co...	N/A	N/A	Jun 16, 2026	MALWAREBYTES