CVE - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 8.8	CVE-2026-46519	mcp-server-kubernetes Affected By Tool Access Control Bypass: Presentation-Layer Filtering Without Execution-Layer Enforcement_CVE-2026-46519 mcp-server-kubernetes is a Model Context Protocol server for Kubernetes cluster management. Prior to version 3.6.0, mcp-server-kubernetes exposes t...	Flux159	mcp-server-kubernetes < 3.6.0	Jun 11, 2026	CVE
HIGH 8.4	CVE-2026-45178	Idira Secrets Manager Self-Hosted: Improper Access Control in Internal Cluster Endpoints_CVE-2026-45178 Idira Secrets Manager Self-Hosted versions 13.8.0 and lower exhibit improper access control within internal cluster endpoints. A remote, authentica...	CyberArk Software, a Palo Alto Networks Company	Conjur Enterprise 13.0	Jun 11, 2026	CVE
CRITICAL 9.1	CVE-2026-45177	Idira Secrets Manager SaaS Edge: Authentication Bypass of an internal validation mechanism_CVE-2026-45177 Idira Secrets Manager SaaS Edge versions prior to 1.8 exhibit improper access control within its internal authentication components. A remote, unau...	CyberArk Software, a Palo Alto Networks Company	Conjur Cloud (Edge Finding only) 1.0	Jun 11, 2026	CVE
HIGH 8.9	CVE-2026-45176	Idira Endpoint Privilege Manager Agent: Local Privilege Escalation via Internal Communication or File Operation Manipulation_CVE-2026-45176 Idira Endpoint Privilege Manager Agent versions prior to 26.5 exhibit improper access control within high-privileged agent components. A local, low...	CyberArk Software, a Palo Alto Networks Company	Idira Endpoint Privilege Manager 26.0	Jun 11, 2026	CVE
HIGH 7.6	CVE-2026-11774	389-ds-base: 389-ds-base: integer overflow in sasl packet length bypasses size limit leading to heap buffer overflow_CVE-2026-11774 An integer overflow flaw was found in the SASL I/O layer of 389 Directory Server (389-ds-base). In sasl_io_start_packet(), adding sizeof(uint32_t) ...	Red Hat	Red Hat Directory Server 11	Jun 11, 2026	CVE
NONE	859A6E2D-6A39-	ExploitOracle_859A6E2D-6A39-5E6F-A61C-DC7ECBD99794 No description provided...	N/A	N/A	Jun 11, 2026	GITHUBEXPLOIT
CRITICAL 9.8	1B4E1928-22BA-	Systems-and-Cyber-Security-Coursework_1B4E1928-22BA-58AE-868A-852185F77BAA CSI6SCS2526 — Systems and Cyber Security Coursework Grey-Box Vulnerability Assessment \| LSBU \| 2025/26 Student ID: 4214293 \| Group 10 \| Network: 10...	N/A	N/A	Jun 11, 2026	GITHUBEXPLOIT
HIGH 10	98BE5734-F77A-	Exploit for Command Injection in Tp-Link Tapo_C200_Firmware_98BE5734-F77A-5A56-9B28-1D46096CE816 🔍 CVE-2021-4045: Vulnerabilidad de Inyección de Comandos en TP-Link Tapo C200 CVE-2021-4045 --- 📌 Resumen CVE-2021-4045 es una vulnerabilidad de ...	N/A	N/A	Jun 11, 2026	GITHUBEXPLOIT
NONE	WIRED:1B749EB0B...	Drug Sites Hijacked Spotify’s Search Ranking Through Fake Podcasts_WIRED:1B749EB0BA0493554134BC07299E5B25 A joint congressional report describes a spam operation that turned tens of thousands of fake podcasts into search-engine bait for illegal pharmacy...	N/A	N/A	Jun 11, 2026	WIRED
NONE	MALWAREBYTES:D5...	Google can be liable for false AI Overviews, court rules_MALWAREBYTES:D5028D634DF12F241ACB0EB1A1FC9334 A German court has ruled that Google can be held directly responsible for defamatory claims produced by its AI Overviews. Basically, the court said...	N/A	N/A	Jun 11, 2026	MALWAREBYTES