tapic - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.1	CVE-2025-52612	HCL iControl was affected by Export CSV – CSV Injection vulnerability._CVE-2025-52612 HCL iControl was affected by Export CSV - CSV Injection vulnerability. It is vulnerable to a reflected cross-site scripting vulnerability. This was...	HCL	iControl 4.0.0	Jun 4, 2026	CVE
LOW 3.1	CVE-2025-52611	HCL iControl was affected by Unhandled Exception – Stack Trace Disclosure vulnerability_CVE-2025-52611 HCL iControl v4.0.0 was affected by Unhandled Exception - Stack Trace Disclosure vulnerability. The error occurs due to an undefined property being...	HCL	iControl 4.0.0	Jun 4, 2026	CVE
LOW 3.7	CVE-2025-52609	HCL iControl was affected by Missing Security Headers vulnerability._CVE-2025-52609 HCL iControl was affected by Missing Security Headers vulnerability. which lead to cross-site scripting (XSS) attacks by enabling the built-in XSS ...	HCL	iControl 4.0.0	Jun 4, 2026	CVE
LOW 3.1	CVE-2025-52608	HCL iControl was affected by Missing Cookie Attributes vulnerability._CVE-2025-52608 HCL iControl was affected by Missing Cookie Attributes vulnerability. It was observed that the application is missing several critical cookie attr...	HCL	iControl 4.0.0	Jun 4, 2026	CVE
MEDIUM 4.3	CVE-2025-52606	HCL iControl was affected by Weak Input Validation vulnerability. ._CVE-2025-52606 HCL iControl was affected by Weak Input Validation vulnerability. This weakness is caused during implementation of an architectural security tactic...	HCL	iControl 4.0.0	Jun 4, 2026	CVE
HIGH 8.5	CVE-2025-12694	Local Privilege Escalation in VPN Client_CVE-2025-12694 A local privilege escalation vulnerability exists in Forcepoint VPN Client that allows a local non-administrative user to escalate privileges to SY...	Forcepoint	VPN Client	Jun 4, 2026	CVE
NONE	SCHNEIER:8A680A...	Hacking Meta’s AI Chatbot_SCHNEIER:8A680AEC3DA693237BFE6028B6FF0086 Hackers are convincing Meta's AI support chatbot to let them take over other peoples' accounts: > A video posted on X showed the step-by-step proc...	N/A	N/A	Jun 4, 2026	SCHNEIER
NONE	HACKREAD:DFDAF6...	Five Eyes Warns Chinese Spies Are Using Fake Job Ads to Target Military Staff_HACKREAD:DFDAF60C8E197CEB1861A3DB81CC35C8 Five Eyes warns that Chinese spies are using fake job ads on LinkedIn, Indeed, and Upwork to target military staff and steal sensitive data.	N/A	N/A	Jun 4, 2026	HACKREAD
NONE	THN:7772C7500F8...	China-Linked TA4922 Expands Phishing Attacks to UK, Germany, Italy, and South Africa_THN:7772C7500F8409C55C2323F8C3FE6D02 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhq_JkP80d1IA8rz-SoYEBmuGqK_K7OpGrqiki4vB1ShMW5mFBVSMvl8H5MnYylZMl3AWeqdAmp19oZIL_7am...	N/A	N/A	Jun 4, 2026	THN
NONE	MALWAREBYTES:0B...	Travel scams are everywhere. Here’s how to avoid them_MALWAREBYTES:0B6BB298C2F0444A8B1A9883FCD12DF5 Planning a holiday should be exciting, fun, and not a cybersecurity risk. But booking flights, hotels, and rental properties often means sharing se...	N/A	N/A	Jun 4, 2026	MALWAREBYTES