news - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.8	9FE892C1-2347-	Exploit for Double Free in Microsoft_9FE892C1-2347-5D92-9FE3-8227B56D4622 CVE-2026-26179 PoC for CVE-2026-26179 / ZDI-26-276, my very own Secure Kernel bug. I'm well aware that I have a dedicated repository for my vulnera...	N/A	N/A	Jun 5, 2026	GITHUBEXPLOIT
NONE	THN:51F8DAC1E19...	PCPJack Hijacks 230 AWS, Google Cloud, and Azure Servers for Covert SMTP Relay Network_THN:51F8DAC1E193E414EB3FF79AC2684016 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEibu0mX9Tusu3siXFJzPskfA1ZYZ2OdRJTegsJFkffBc9cBBPGWguTUAI3PPAaFy-WIjziA9PIrMrZNVuFVNm...	N/A	N/A	Jun 5, 2026	THN
NONE	3F7376C1-CE9F-	Kernel-Dojo-Labs_3F7376C1-CE9F-5F14-9701-5E3C1C613D73 Kernel-Dojo Lab An interactive practice environment for the Kernel-Exploit-Dojo challenge archive. Pick any of the 112+ Linux kernel CTF challenges...	N/A	N/A	Jun 5, 2026	GITHUBEXPLOIT
HIGH 10	A7A90EE8-8AB4-	Exploit for OS Command Injection in Vsftpd_Project Vsftpd_A7A90EE8-8AB4-5A6C-B232-E81EB21F6397 vsftpd 2.3.4 Backdoor Exploit A small, dependency-free Python 3 exploit for the vsftpd 2.3.4 backdoor CVE-2011-2523. It triggers the backdoor over ...	N/A	N/A	Jun 5, 2026	GITHUBEXPLOIT
CRITICAL 9.8	C38CCF85-8514-	Exploit for Missing Authentication for Critical Function in Mcpjam Inspector_C38CCF85-8514-59A1-A7BA-090EC4E421AC CVE-2026-23744-MCPJAM-RCE-exploit This Python proof-of-concept targets a vulnerable MCP Model Context Protocol service exposed by the target applic...	N/A	N/A	Jun 5, 2026	GITHUBEXPLOIT
HIGH 7.3	CVE-2026-50593	CVE-2026-50593_CVE-2026-50593 Graphite before 1.3.15 has an integer underflow and resultant out-of-bounds write via Graphite actions, because slotat does not ensure that an offs...	Graphite project	Graphite	Jun 5, 2026	CVE
CRITICAL 9.8	FD2F22BC-B368-	Exploit for CVE-2026-5076_FD2F22BC-B368-5D42-BB39-892D5E41FF92 No description provided...	N/A	N/A	Jun 5, 2026	GITHUBEXPLOIT
CRITICAL 10	9D30DABE-ADB1-	Exploit for Deserialization of Untrusted Data in Facebook React_9D30DABE-ADB1-56FF-8B77-C3E72945C771 CVE-2025-55182 react CVE-2025-55182...	N/A	N/A	Jun 5, 2026	GITHUBEXPLOIT
HIGH 8.1	CVE-2026-36603	CVE-2026-36603_CVE-2026-36603 Mercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 exposes 15 of 18 UPnP IGD actions without authentication on port 1900, including Ad...	n/a	n/a n/a	Jun 3, 2026	CVE
MEDIUM 4.3	CVE-2026-36602	CVE-2026-36602_CVE-2026-36602 Mercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 discloses kernel memory layout via the UPnP GetStatusInfo action. An unauthenticate...	n/a	n/a n/a	Jun 3, 2026	CVE