Vulnerability - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.5	CVE-2026-44914	Apache NiFi: Missing Authorization of Restricted Permissions when Replacing Flow Contents_CVE-2026-44914 Apache NiFi 1.12.0 through 2.9.0 are missing authorization when replacing Process Groups that include extension components with specific Required P...	Apache Software Foundation	Apache NiFi 1.12.0	Jun 22, 2026	CVE
MEDIUM 5.2	CVE-2026-44913	Apache NiFi: Improper Escaping of Table Names in CaptureChangeMySQL_CVE-2026-44913 Improper escaping of database table names in the CaptureChangeMySQL Processor included with Apache NiFi 1.2.0 through 2.9.0 allows for injecting SQ...	Apache Software Foundation	Apache NiFi 1.2.0	Jun 22, 2026	CVE
LOW 2.3	CVE-2026-44911	Apache NiFi: Incorrect Authorization for Configuration Verification Requests_CVE-2026-44911 Authorization handling for component configuration verification requests in Apache NiFi 1.15.0 through 2.9.0 allows clients with read access to sub...	Apache Software Foundation	Apache NiFi 1.15.0	Jun 22, 2026	CVE
NONE	410A7F1F-5142-	python-SQLiscanner_410A7F1F-5142-5466-94C6-96D489CE0302 No description provided...	N/A	N/A	Jun 22, 2026	GITHUBEXPLOIT
CRITICAL 9.8	BC1EFC7B-C6E0-	Exploit for Authentication Bypass by Spoofing in Zabbix_BC1EFC7B-C6E0-528C-BD5D-A2D2ECE15187 CVE-2022-23131 - Zabbix SAML SSO Authentication Bypass + RCE Overview When SAML SSO is enabled, Zabbix stores session data in a client-side cookie ...	N/A	N/A	Jun 22, 2026	GITHUBEXPLOIT
HIGH 8.1	976F9104-D05C-	Exploit for Use After Free in Google Android_976F9104-D05C-54A5-8EAF-248D039A5569 CVE-2023-20938 — Android binder UAF privilege escalation A local privilege escalation proof-of-concept for CVE-2023-20938, a use-after-free in the ...	N/A	N/A	Jun 22, 2026	GITHUBEXPLOIT
CRITICAL 10	2B539108-1D8B-	Exploit for Deserialization of Untrusted Data in Facebook React_2B539108-1D8B-56B5-A8AC-B8E1E8E96640 CVE-2025-55182-POC React2Shell POC Usage: bash sudo python3 hehe.py -t -c Example: bash ❯ sudo python3 hehe-t 12.05.12.05 -c "id" . .. . \| \ \| \| / ...	N/A	N/A	Jun 22, 2026	GITHUBEXPLOIT
NONE	MALWAREBYTES:83...	A week in security (June 15 – June 21)_MALWAREBYTES:83CDAA45A9C2B45553FD8E42C9D9A1EC Last week on Malwarebytes Labs: * Nearly 15,000 infected websites cleaned in SocGholish crackdown * Apple patches Beats Studio Buds flaw that ...	N/A	N/A	Jun 22, 2026	MALWAREBYTES
NONE	THN:1EBA8E96EF2...	AryStinger Malware Infects 4,300 Legacy Routers to Build Reconnaissance Proxy Network_THN:1EBA8E96EF2D7A3C37FF74C8D9DDA922 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjr0TUOEuqak_4OJNaS9ogmGXQl1QWTMkdmvIDNy6mlYVxjA-Z5qfywF_6OwxaJRDuvrq9E106Cx9hqmsFMKM...	N/A	N/A	Jun 22, 2026	THN
NONE	12C68D27-0DC2-	CVE-2026-KGSL-UAF_12C68D27-0DC2-5E20-B7DF-ADF40157122E CVE-2026-XXXXX — KGSL Syncsource Fence Use-After-Free Severity: Critical CVSS 7.8 Component: Qualcomm Adreno KGSL GPU Kernel Driver Affected: All A...	N/A	N/A	Jun 22, 2026	GITHUBEXPLOIT