CRITICAL - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.3	CVE-2026-35075	Hardcoded default Password for Service Account_CVE-2026-35075 An unauthenticated remote attacker can recover a default, hard coded password from a firmware image and thus gain full access to all affected devices.	MBS	Single-A V1_0_0_0	Jun 3, 2026	CVE
CRITICAL 9.1	CVE-2026-4035	Environment Variable Resolution Vulnerability in mlflow/mlflow_CVE-2026-4035 A vulnerability in mlflow/mlflow versions prior to 3.11.0 allows for the resolution of environment variables in AI Gateway secrets, which can be ex...	mlflow	mlflow/mlflow unspecified	Jun 3, 2026	CVE
CRITICAL 9.8	CVE-2026-47065	Apache MINA: Critical Deserialization Allow-list Bypass via resolveProxyClass – ZDRES-232_CVE-2026-47065 ZDRES-232: resolveProxyClass Not Overridden - acceptMatchers Filter Bypass via java.lang.reflect.Proxy Assessment: Fully addressed. When the se...	Apache Software Foundation	Apache MINA 2.2.0, 2.1.0, 2.0.0	Jun 3, 2026	CVE
CRITICAL 9.9	CVE-2025-14771	File Disclosure in ABB T-MAC Plus web application and in ABB T-MAC plus Server – Default IIS Web Site_CVE-2025-14771 Files or directories accessible to external parties vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24.	ABB	T-MAC Plus 4.0-24	Jun 3, 2026	CVE
CRITICAL 9.1	0FCEE4B1-32D3-	Exploit for Reliance on Cookies without Validation and Integrity Checking in Paloaltonetworks Pan-Os_0FCEE4B1-32D3-513A-A4F5-F36C896CDED8 CVE-2026-0257 Palo Alto Networks PAN-OS contains an authentication bypass caused by flaws in the GlobalProtect portal and gateway, letting attacker...	N/A	N/A	Jun 3, 2026	GITHUBEXPLOIT
CRITICAL 9.8	903D328B-6435-	Exploit for Missing Authentication for Critical Function in Mcpjam Inspector_903D328B-6435-59B6-B1CB-0ECF3BF14DB4 CVE-2026-23744 — MCPJam Unauthenticated Remote Code Execution Summary MCPJam is an open-source MCP Model Context Protocol inspector and proxy used ...	N/A	N/A	Jun 3, 2026	GITHUBEXPLOIT
CRITICAL 9.8	8A498307-0EFC-	Exploit for Stack-based Buffer Overflow in Microsoft_8A498307-0EFC-5390-A979-A85CF2BE1F27 CVE-2026-41089 Detector Safe detection script for CVE-2026-41089, the Microsoft Windows Netlogon remote code execution vulnerability disclosed in t...	N/A	N/A	Jun 3, 2026	GITHUBEXPLOIT
CRITICAL 10	74E570DB-A721-	cybersec-mcp_74E570DB-A721-5253-AF4D-820CFCB2BA98 🛡️ Cybersecurity Professor MCP Server Prof. Null — Tu profesor de ciberseguridad impulsado por Claude AI, sin censuras, de cero a experto. ¿Qué es ...	N/A	N/A	Jun 3, 2026	GITHUBEXPLOIT
CRITICAL 9.2	ACDFF314-157E-	Exploit for CVE-2026-9256_ACDFF314-157E-5A20-868D-9DAFBC9A20A4 CVE-2026-9256-POC CVE-2026-9256 Nginx heap buffer overflow POC...	N/A	N/A	Jun 3, 2026	GITHUBEXPLOIT
CRITICAL 9.8	65E0C16C-7DAE-	eCPPT-Penetration-Testing-Reports_65E0C16C-7DAE-5E13-820B-B2415659245F eCPPT Penetration Testing Reports Penetration testing lab reports and CTF writeups documenting offensive security techniques, vulnerability exploit...	N/A	N/A	Jun 3, 2026	GITHUBEXPLOIT