CRITICAL - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.8	CVE-2026-46289	lib/scatterlist: fix length calculations in extract_kvec_to_sg_CVE-2026-46289 In the Linux kernel, the following vulnerability has been resolved: lib/scatterlist: fix length calculations in extract_kvec_to_sg Patch series "...	Linux	Linux 0185846975339a5c348373aa450a977f5242366b	Jun 8, 2026	CVE
CRITICAL 9.3	CVE-2026-46316	KVM: arm64: vgic-its: Drop the translation cache reference only for the erased entry_CVE-2026-46316 In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Drop the translation cache reference only for the erased...	Linux	Linux 8201d1028caa4fae88e222c4e8cf541fdf45b821	Jun 9, 2026	CVE
CRITICAL 9.8	CVE-2026-46325	RDMA/rxe: Fix iova-to-va conversion for MR page sizes != PAGE_SIZE_CVE-2026-46325 In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix iova-to-va conversion for MR page sizes != PAGE_SIZE The curren...	Linux	Linux 592627ccbdff0ec6fff00fc761142a76db750dd4	Jun 9, 2026	CVE
CRITICAL 10	D6099C25-1141-	Exploit for Deserialization of Untrusted Data in Facebook React_D6099C25-1141-56E6-8EF9-3CFD8897013F CVE-2025-55182 - React2Shell Pre-authentication RCE in React Server Components. Summary of the CVE A pre-authentication remote code execution vulne...	N/A	N/A	Jun 13, 2026	GITHUBEXPLOIT
CRITICAL 9.8	CDF7493E-7394-	Exploit for Authentication Bypass Using an Alternate Path or Channel in Gitlab_CDF7493E-7394-51A6-B8C6-ED65CE3C2ED6 CVE-2025-4524 WordPress Madara Theme 2.2.2.1 - Local File Inclusion ---...	N/A	N/A	Jun 13, 2026	GITHUBEXPLOIT
CRITICAL 9.3	CVE-2026-12183	CVE-2026-12183_CVE-2026-12183 Nefteprodukttekhnika BUK TS-G Gas Station Automation System 2.9.1 through 2.10.2 on Linux contains an Improper Authentication vulnerability (CWE-28...	Nefteprodukttekhnika LLC	BUK TS-G Gas Station Automation System 2.9.1, 2.10.2	Jun 13, 2026	CVE
CRITICAL 9.3	FD4AA5D0-761A-	Exploit for CVE-2026-42647_FD4AA5D0-761A-574B-BE76-55A50B193227 CVE-2026-42647 - JoomSport Unauthenticated Time-Based Blind SQL Injection via sortf Executive Summary This repository contains a local Docker lab f...	N/A	N/A	Jun 13, 2026	GITHUBEXPLOIT
CRITICAL 10	548ECB08-BE83-	Exploit for Embedded Malicious Code in Tukaani Xz_548ECB08-BE83-5A35-9E83-965AB296DFB4 XZ Backdoor Labs CVE-2024-3094 Safe, hands-on labs for understanding the xz-utils supply-chain backdoor — built for defenders, students, and blue-t...	N/A	N/A	Jun 13, 2026	GITHUBEXPLOIT
CRITICAL 9.8	DF2E3CB4-78E1-	Exploit for CVE-2026-1555_DF2E3CB4-78E1-50A5-8D6D-0BAD9ED75E23 CVE-2026-1555: Unauthenticated Arbitrary File Upload in WebStack WordPress Theme Proof of Concept PoC Credits \| \| \| \|---\|---\| \| PoC Author: \| Secur...	N/A	N/A	Jun 13, 2026	GITHUBEXPLOIT
CRITICAL 9.8	THN:8375823B34D...	Critical Splunk Enterprise Flaw Lets Attackers Run Code Without Authentication_THN:8375823B34DF93A93B46E3192643E1ED ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi7NRzSRKbGdsTj1TIWcks4nX5u6n1U2vl5hxJ8KKFZ-JCAKlMQPXQNHA1i0otd63wcKJoZbeEc3oVa9o4uYN...	N/A	N/A	Jun 13, 2026	THN