Vulnerability - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	HACKREAD:5CB111...	New EvilTokens Attack Exposes Browser Visibility Gap in Enterprise SOCs_HACKREAD:5CB111601946A41581FBDA03554214D0 EvilTokens phishing hides takeover clues until browser execution leaving SOC teams needing deeper visibility to validate threats faster and reduce ...	N/A	N/A	Jun 30, 2026	HACKREAD
NONE	THN:56D673F9C00...	RustDuck Botnet Rebuilds in Rust to Hijack Routers and Servers for DDoS_THN:56D673F9C000319584F3260FEEE6F37F ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi2XzOOqoX4E_CfxUMxd0YAH9MRjvZ8-kBBiVhd2VvCvbie3zla8PA80fO2xZ4Ux3_gmreVKG7ANFrSGpDk1l...	N/A	N/A	Jun 30, 2026	THN
NONE	THN:37D29293C42...	Microsoft Warns Poisoned MCP Tool Descriptions Can Make AI Agents Leak Data_THN:37D29293C42AEFD7504A2E2BEBB8A524 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjbjfrraZ05p0kN5CedcQSOZYouoHGrdpCvi9TGxEZM_9zlXc_juWZ1F8VsvjV9c-iD7Ejgj0V6b0uYwOb9mL...	N/A	N/A	Jun 30, 2026	THN
NONE	PACKETSTORM:224715	📄 ProtonVPN 4.4.1 Unquoted Service Path_PACKETSTORM:224715 ProtonVPN version 4.4.1 suffers from an unquoted service path vulnerability...	N/A	N/A	Jun 30, 2026	PACKETSTORM
NONE	BE0CD08D-6728-	nationstate-cyber-tools_BE0CD08D-6728-58C0-8A1A-553F21FB9D74 NATION-STATE CYBER WEAPONS ARSENAL Live Web Page: https://adhihub.github.io/nationstate-cyber-tools/ --- TABLE OF CONTENTS - 1. NSA / EQUATION GROU...	N/A	N/A	Jun 30, 2026	GITHUBEXPLOIT
MEDIUM 6.5	CVE-2026-43713	CVE-2026-43713_CVE-2026-43713 A permissions issue was addressed with additional restrictions. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26....	Apple	Safari	Jun 29, 2026	CVE
HIGH 7.5	CVE-2026-43707	CVE-2026-43707_CVE-2026-43707 A memory corruption issue was addressed with improved memory handling. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Ta...	Apple	Safari	Jun 29, 2026	CVE
HIGH 8.6	CVE-2026-11590	WP Support Plus Responsive Ticket System <= 9.1.2 - Unauthenticated SQL Injection via filter[elements] Array Keys_CVE-2026-11590 The WP Support Plus Responsive Ticket System WordPress plugin through 9.1.2 does not sanitize user-supplied array keys before using them in a SQL s...	Unknown	WP Support Plus Responsive Ticket System	Jun 30, 2026	CVE
HIGH 7.5	CVE-2026-54475	Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ: Temporary destination ownership takeover_CVE-2026-54475 Missing Authorization vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ. Apache ActiveMQ Classic temporary destination...	Apache Software Foundation	Apache ActiveMQ Broker	Jun 30, 2026	CVE
HIGH 7.5	CVE-2026-53917	Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ Client, Apache ActiveMQ Broker: Unbounded memory allocation in OpenWire property unmarshalling_CVE-2026-53917 Memory Allocation with Excessive Size Value vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ Client, Apache ActiveMQ Broker. ...	Apache Software Foundation	Apache ActiveMQ	Jun 30, 2026	CVE