news - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 5.3	MS:CVE-2026-11696	Chromium: CVE-2026-11695 Inappropriate implementation in Passwords_MS:CVE-2026-11696 This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...	N/A	N/A	Jun 16, 2026	MSCVE
CRITICAL 9.6	MS:CVE-2026-11697	Chromium: CVE-2026-11696 Uninitialized Use in Video_MS:CVE-2026-11697 This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...	N/A	N/A	Jun 16, 2026	MSCVE
CRITICAL 9.6	MS:CVE-2026-11698	Chromium: CVE-2026-11697 Insufficient validation of untrusted input in UI_MS:CVE-2026-11698 This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...	N/A	N/A	Jun 16, 2026	MSCVE
HIGH 8.8	MS:CVE-2026-11699	Chromium: CVE-2026-11698 Use after free in Bluetooth_MS:CVE-2026-11699 This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...	N/A	N/A	Jun 16, 2026	MSCVE
HIGH 8.8	MS:CVE-2026-11700	Chromium: CVE-2026-11699 Use after free in Bluetooth_MS:CVE-2026-11700 This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...	N/A	N/A	Jun 16, 2026	MSCVE
HIGH 8.3	MS:CVE-2026-11701	Chromium: CVE-2026-11700 Use after free in Tracing_MS:CVE-2026-11701 This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...	N/A	N/A	Jun 16, 2026	MSCVE
HIGH 8.5	CVE-2026-5064	HP One Agent Software – Security Update_CVE-2026-5064 Potential security vulnerabilities have been identified in the HP One Agent for certain HP PC products, which might allow for escal...	HP Inc.	HP One Agent Software	Jun 15, 2026	CVE
CRITICAL 9.1	CVE-2026-48714	i18next-http-middleware missingKeyHandler does not reject keys whose segments contain prototype-polluting names_CVE-2026-48714 i18next-http-middleware is a middleware to be used with Node.js web frameworks like express or Fastify and also for Deno. In versions prior to 3.9....	i18next	i18next-http-middleware < 3.9.7	Jun 15, 2026	CVE
CRITICAL 9.1	CVE-2026-48713	i18next-fs-backend: Prototype pollution via crafted missing-key string_CVE-2026-48713 Versions prior to 2.6.6 are vulnerable to prototype pollution via crafted missing-key strings when used to persist missing translation keys (e.g. v...	i18next	i18next-fs-backend < 2.6.6	Jun 15, 2026	CVE
MEDIUM 6.1	CVE-2026-48157	Slim has Reflected XSS in the HtmlErrorRenderer_CVE-2026-48157 Slim is a PHP micro framework that enables users to write simple web applications and APIs. In versions 4.4.0 through 4.15, if an application uses ...	slimphp	Slim >= 4.4.0, < 4.15.2	Jun 15, 2026	CVE