CVE - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 8.4	CVE-2026-45173	Idira Identity Browser Extension: Unauthorized Application Interaction via Origin Validation Failure_CVE-2026-45173 Idira Identity Browser Extension (Chrome, Firefox, and Edge builds) versions prior to 26.8.1 exhibit an origin validation flaw within its internal ...	CyberArk Software, a Palo Alto Networks Company	Identity Browser Extensions 26.0.0	Jun 11, 2026	CVE
HIGH 8.7	CVE-2026-45172	Idira Privileged Session Manager for SSH (PSMP): Arbitrary Command Execution via Improper Neutralization of Special Elements used in an OS Command_CVE-2026-45172 Due to incomplete input validation in Idira Privileged Session Manager for SSH (PSMP) versions prior to 15.0.2, 14.6.3, 14.2.5, and 14.0.6, an auth...	CyberArk Software, a Palo Alto Networks Company	PAM Self-Hosted, Privilege Cloud 14.0	Jun 11, 2026	CVE
CRITICAL 9.3	CVE-2026-45171	Idira Privileged Session Manager (PSM): Potential Code Execution due to an Incomplete Input Validation_CVE-2026-45171 Incomplete input validation and improperly configured folder permissions within Idira Privileged Session Manager (PSM) versions prior to 15.0.3, 14...	CyberArk Software, a Palo Alto Networks Company	Privileged Session Manager, Vault 14.0	Jun 11, 2026	CVE
MEDIUM 6.5	CVE-2026-47238	ClipBucket: IDOR in videos subtitle editor_CVE-2026-47238 ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 - #133, a normal authenticated user can edit another user's video su...	MacWarrior	clipbucket-v5 < 5.5.3 - #133	Jun 11, 2026	CVE
HIGH 8.8	CVE-2026-45418	ClipBucket: Blind SQL Injection in subtitle_edit.php_CVE-2026-45418 ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 - #132, any authenticated user who can upload videos can add multipl...	MacWarrior	clipbucket-v5 < 5.5.3 - #132	Jun 11, 2026	CVE
CRITICAL 9.8	CVE-2026-45060	ClipBucket: Blind SQL Injection in progress_video.php_CVE-2026-45060 ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 - #129, the actions/progress_video.php endpoint is vulnerable to bli...	MacWarrior	clipbucket-v5 < 5.5.3 - #129	Jun 11, 2026	CVE
CRITICAL 9.8	CVE-2026-42846	ClipBucket: Remote Play URL Command Injection_CVE-2026-42846 ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 - #140, ClipBucket's Remote Play feature allows any authenticated us...	MacWarrior	clipbucket-v5 < 5.5.3 - #140	Jun 11, 2026	CVE
NONE	HACKREAD:18A341...	ShinyHunters Leak 40GB of University of Nottingham Student Data_HACKREAD:18A341377290768C65B199E19E06E3E6 ShinyHunters hackers leak 40GB of University of Nottingham personal and financial data, allegedly impacting 450,000 students and staff records.	N/A	N/A	Jun 11, 2026	HACKREAD
HIGH 8.8	5EA55261-60BA-	Exploit for Write-what-where Condition in Linux Linux_Kernel_5EA55261-60BA-5F5A-A245-187C0E4791C3 DirtyFrag CVE-2026-43284 PoC Validation and auditd Detection Scope: Linux Local Privilege Escalation LPE validation focused on the XFRM/ESP path as...	N/A	N/A	Jun 11, 2026	GITHUBEXPLOIT
CRITICAL 9.1	CVE-2026-50638	Metrics::Any::Adapter::DogStatsd versions before 0.04 for Perl does not protect against metric injections_CVE-2026-50638 Metrics::Any::Adapter::DogStatsd versions before 0.04 for Perl does not protect against metric injections. The statsd protocol (and extensions suc...	PEVANS	Metrics::Any::Adapter::DogStatsd	Jun 10, 2026	CVE