exploit - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	MALWAREBYTES:B6...	Watch out for renewal scams pretending to be Malwarebytes_MALWAREBYTES:B676169C29D86A2482A9B5FF7B0079BF Fake subscription renewal notices are doing the rounds again. Some of these scams impersonate Malwarebytes, and we've also seen them reach our cust...	N/A	N/A	Jun 24, 2026	MALWAREBYTES
NONE	AKAMAIBLOG:7719...	Agentic Disconnect: The Latency Crisis Facing Modern AI Architecture_AKAMAIBLOG:77195A7A6163C40EBA50663B96454FF6 {“lastseen”:”2026-06-24T15:36:50″,”description”:””,”published”:”2026-06-24T15:00:...	N/A	N/A	Jun 24, 2026	AKAMAIBLOG
NONE	HACKREAD:E22B93...	New GhostShell Hacking Group Targets Ukraine’s Drone Defense Sector_HACKREAD:E22B933FD8A720970D5E26F2221C9E54 Researchers warn GhostShell is using fake drone documents to target Ukrainian defence teams, stealing passwords and sensitive data in a new cyber c...	N/A	N/A	Jun 24, 2026	HACKREAD
NONE	THN:36DFCEAE362...	Amadey and StealC Malware Network Disrupted, 27M Stolen Credentials Recovered_THN:36DFCEAE362DA3903693266D7CB713F8 ![Amadey and StealC Malware](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjBVSibdiZdJ1tNYJFrsHtZ8Vr1EG28rqKLY4E7HvAtuax2i3vgpcaMZjEAc...	N/A	N/A	Jun 24, 2026	THN
HIGH 7.6	CVE-2025-71361	picklescan – Remote Code Execution via Undetected idlelib.calltip.Calltip.fetch_tip_CVE-2025-71361 picklescan before 0.0.29 fails to detect malicious idlelib.calltip.Calltip.fetch_tip calls in pickle files, allowing remote code execution. Attacke...	picklescan	picklescan	Jun 24, 2026	CVE
MEDIUM 4.2	CVE-2026-57307	CVE-2026-57307_CVE-2026-57307 A missing permission check in Jenkins Zowe zDevOps Plugin 1.1.3.50.ve350c9b_450b_1 and earlier allows attackers with Overall/Read permission to con...	Jenkins Project	Jenkins Zowe zDevOps Plugin	Jun 24, 2026	CVE
MEDIUM 4.2	CVE-2026-57306	CVE-2026-57306_CVE-2026-57306 A cross-site request forgery (CSRF) vulnerability in Jenkins Zowe zDevOps Plugin 1.1.3.50.ve350c9b_450b_1 and earlier allows attackers to connect t...	Jenkins Project	Jenkins Zowe zDevOps Plugin	Jun 24, 2026	CVE
MEDIUM 5.4	CVE-2026-57305	CVE-2026-57305_CVE-2026-57305 A cross-site request forgery (CSRF) vulnerability in Jenkins Assembla Plugin 1.4 and earlier allows attackers to connect to an attacker-specified U...	Jenkins Project	Jenkins Assembla Plugin	Jun 24, 2026	CVE
MEDIUM 5.4	CVE-2026-57304	CVE-2026-57304_CVE-2026-57304 A missing permission check in Jenkins Assembla Plugin 1.4 and earlier allows attackers with Overall/Read permission to connect to an attacker-speci...	Jenkins Project	Jenkins Assembla Plugin	Jun 24, 2026	CVE
HIGH 7.1	CVE-2026-57303	CVE-2026-57303_CVE-2026-57303 Jenkins Assembla Plugin 1.4 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks, allowing attackers able to ...	Jenkins Project	Jenkins Assembla Plugin	Jun 24, 2026	CVE