exploit - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.2	CVE-2026-55477	Authenticated Arbitrary File Write via Database Import and Xray Log Path Manipulation_CVE-2026-55477 3X-UI is a web control panel for managing Xray-core servers. Prior to 3.3.1, an authenticated administrator can abuse the database import functiona...	MHSanaei	3x-ui < 3.3.1	Jun 25, 2026	CVE
MEDIUM 5.3	CVE-2026-54036	LibreChat: 2FA Re-enrollment Allows Full Account 2FA Takeover Without OTP Verification_CVE-2026-54036 LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. Prior to 0.8.4-rc1, the GET /api/auth/2fa/enable endpoint can be called...	danny-avila	LibreChat < 0.8.4-rc1	Jun 25, 2026	CVE
MEDIUM 6.7	CVE-2026-4522	CVE-2026-4522_CVE-2026-4522 Missing authentication for critical function vulnerability in HYPR Passwordless on Windows allows Credentials Interception. This issue affects HYP...	HYPR	Passwordless	Jun 25, 2026	CVE
HIGH 7.5	616C2155-98D5-	Exploit for Classic Buffer Overflow in Qualcomm Apq8097_Firmware_616C2155-98D5-5316-BB35-BF924B098C71 Katana A BootROM exploit for Qualcomm devices released within 2016 til 2019. Brief Explanation of the Exploit With the MSM8998 Nazgul SoC, the comm...	N/A	N/A	Jun 25, 2026	GITHUBEXPLOIT
NONE	HACKREAD:30D641...	Suspected Cyberattack Sends Fake Emergency Alert to Phones Across Brazil_HACKREAD:30D64137BBAEF523BEACA95B9C593977 Brazil’s alert system was taken offline after a fake emergency alert reached phones, with officials investigating a suspected cyberattack and secur...	N/A	N/A	Jun 25, 2026	HACKREAD
NONE	AKAMAIBLOG:897F...	Linode Interfaces and Default Firewall Now Generally Available_AKAMAIBLOG:897F576B3A37AEC3F67BFBDDBAA22474 {“lastseen”:”2026-06-25T13:36:50″,”description”:””,”published”:”2026-06-25T12:00:...	N/A	N/A	Jun 25, 2026	AKAMAIBLOG
NONE	AKAMAIBLOG:86E7...	Your AI Cost Model Stops at the Token Price. The Bill Doesn’t._AKAMAIBLOG:86E718C1FDCAE676A8C175C07AA31106 Your AI cost model stops at the token price, but the bill doesn't. Discover why almost 80% of production AI spend sits in inference and how to opti...	N/A	N/A	Jun 25, 2026	AKAMAIBLOG
NONE	THN:1613ADFA6FD...	Chrome Ad Blocker with 10M+ Installs Found with Dormant Script Injection Capability_THN:1613ADFA6FDBFEBD884E352668BB4595 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhqtdBDQ0Y38i0JZmDwU6XKiZ1R6HJ0KHe59012E0krnPubG5pJgiTg6IUg4fHEzoW5jm7QyEk8fXOL9swj7F...	N/A	N/A	Jun 25, 2026	THN
MEDIUM 5.5	8FA4E1EF-9BCF-	Exploit for CVE-2025-61155_8FA4E1EF-9BCF-5027-85E0-2F420F5171B6 CVE-2025-61155 — Arbitrary Process Termination in GameDriverX64.sys A signed kernel-mode anti-cheat driver — GameDriverX64.sys, shipped with Tower ...	N/A	N/A	Jun 25, 2026	GITHUBEXPLOIT
NONE	THN:3365FE334D2...	ThreatsDay Bulletin: Smart TV Proxyware, 24-Year curl Bug, AI Crime Forums + 13 More Stories_THN:3365FE334D2647D032BFF59430956DD2 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhO1f6pZmhVaPQd2FjrrAG-IbL0vMk7zHVZ6BqjzkzJS8qd7HlAtIJ-7chRUbqR7tZHPNqdZFbm0QL9O03mkW...	N/A	N/A	Jun 25, 2026	THN