CVE - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	WIRED:1B749EB0B...	Drug Sites Hijacked Spotify’s Search Ranking Through Fake Podcasts_WIRED:1B749EB0BA0493554134BC07299E5B25 A joint congressional report describes a spam operation that turned tens of thousands of fake podcasts into search-engine bait for illegal pharmacy...	N/A	N/A	Jun 11, 2026	WIRED
NONE	MALWAREBYTES:D5...	Google can be liable for false AI Overviews, court rules_MALWAREBYTES:D5028D634DF12F241ACB0EB1A1FC9334 A German court has ruled that Google can be held directly responsible for defamatory claims produced by its AI Overviews. Basically, the court said...	N/A	N/A	Jun 11, 2026	MALWAREBYTES
NONE	HACKREAD:5DEFAC...	Decade-Long SniperDz Phishing Network Disrupted in Operation Ramz_HACKREAD:5DEFAC400DBBE407A0914E1F8F22E331 Group-IB, INTERPOL and Algerian Police dismantle decade-old SniperDZ phishing network used to steal credentials, with its alleged developer arrested.	N/A	N/A	Jun 11, 2026	HACKREAD
MEDIUM 6.8	THN:D6DFE9A733B...	New GreatXML Exploit Bypasses Windows BitLocker via Recovery Partition XML Files_THN:D6DFE9A733B5347827F7FD40C745A868 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhqKyNLbT9WYm7m6ZsvIgv0mNbGJCrgEjUUXLbRZV9mmQUVi7jT9IiwlXh2kYKiMOrsCnJ-ZaoAK9GnL9jy6R...	N/A	N/A	Jun 11, 2026	THN
NONE	THN:D5D60D7DB19...	New Attacks Trick OpenClaw AI Agent Into Running Code and Leaking Secrets_THN:D5D60D7DB19D929D8A808718ADD09C7F ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi6r68iB-MZv_eNGG3y0evEVbk7WXNkMzcKno1phHiSyOwfKd0G7bv8VCCrxQgmZOutmZdP1Nz-Xr1mxxUIx_...	N/A	N/A	Jun 11, 2026	THN
NONE	PACKETSTORM:223278	📄 MEmu Android Emulator 9.2.7.0 Privilege Escalation_PACKETSTORM:223278 MEmu Android Emulator version 9.2.7.0 suffers from a local privilege escalation vulnerability via insecure permissions...	N/A	N/A	Jun 11, 2026	PACKETSTORM
NONE	THN:0BD4A62DBE4...	The Gentlemen Ransomware Claims 478 Victims, Can Spread Like a Worm_THN:0BD4A62DBE41A6B9A27B7AEF56EC0C96 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiT390XWb8ahl36RgVGzdXiIpEJ43hxHfayY1i2C_rBLbVyu5A2Q-uOFptUFJL33Ehedvbx97RiUV2NivTy-F...	N/A	N/A	Jun 11, 2026	THN
HIGH 8.8	CVE-2026-50223	Apache OFBiz: DataResource Low-Privileged Authenticated FreeMarker Template Injection Leads to Remote Code Execution_CVE-2026-50223 Improper Control of Generation of Code ('Code Injection') vulnerability in Apache OFBiz allows a low-privileged authenticated user with Content/Dat...	Apache Software Foundation	Apache OFBiz before 24.09.07	Jun 10, 2026	CVE
CRITICAL 9.8	CVE-2026-38581	CVE-2026-38581_CVE-2026-38581 SQL Injection vulnerability in damasac thaipalliative_lte through version 3.0 allows remote attackers to execute arbitrary SQL commands via the idF...	damasac	thaipalliative_lte 3.0	Jun 11, 2026	CVE
CRITICAL 9.1	CVE-2026-9648	CVE-2026-9648_CVE-2026-9648 The crypton-x509-validation Haskell library fails to enforce X.509 NameConstraints, allowing TLS clients to accept certificates whose Subject Alter...	Haskell Programming Language	crypton-certificate	Jun 11, 2026	CVE