CRITICAL - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.2	B132E072-36D8-	Exploit for CVE-2026-42530_B132E072-36D8-5390-949D-A06FA9ADC7B5 CVE-2026-42530 Scanner for CVE-2026-42530, a use-after-free in nginx's HTTP/3 module. Affected: nginx 1.31.0, 1.31.1 Fixed: nginx 1.31.2 Usage pip ...	N/A	N/A	Jun 19, 2026	GITHUBEXPLOIT
CRITICAL 10	A52A5B67-31DB-	Exploit for SQL Injection in Sangoma Freepbx_A52A5B67-31DB-5B86-B528-C2F4F2A57FB3 FreePBX 16 — Unauthenticated SQLi to RCE Proof-of-concept exploit chaining two FreePBX vulnerabilities to go from zero access to remote code execut...	N/A	N/A	Jun 19, 2026	GITHUBEXPLOIT
CRITICAL 9.8	B7F3888A-67A2-	Exploit for OS Command Injection in Ray_Project Ray_B7F3888A-67A2-5DAE-904A-1F178F5B69DD CVE-2023-6019 - Anyscale Ray Dashboard Unauthenticated RCE PoC exploit for CVE-2023-6019 — Remote Code Execution via unauthenticated Ray Dashboard ...	N/A	N/A	Jun 19, 2026	GITHUBEXPLOIT
CRITICAL 9.1	CVE-2026-56209	Libaom: libaom: arbitrary address write via svc layer context oob and cyclic refresh map pointer hijack_CVE-2026-56209 An arbitrary address write vulnerability was found in libaom, the reference AV1 codec implementation. A missing bounds check in the SVC (Scalable V...	Red Hat	Red Hat Enterprise Linux 10	Jun 19, 2026	CVE
CRITICAL 9.8	78CF8AD6-3E6A-	ghost-bits-toolkit_78CF8AD6-3E6A-58B5-B3C4-2D259401D82F Ghost Bits Toolkit Java Ghost Bits Vulnerability Detection and Exploitation Toolset. Vulnerability Background Ghost Bits is a security vulnerabilit...	N/A	N/A	Jun 19, 2026	GITHUBEXPLOIT
CRITICAL 9.1	703A79DC-60E9-	Exploit for Improper Authorization in Apache Tomcat_703A79DC-60E9-5AC8-928B-96E9607FCF0C CVE-2026-43515 — Apache Tomcat Security Constraint Bypass Exploitability verdict: confirmed exploitable. A POST request to a resource protected by ...	N/A	N/A	Jun 19, 2026	GITHUBEXPLOIT
CRITICAL 9	CVE-2026-55203	HAProxy – Integer Overflow in FCGI Demux Record Length Field_CVE-2026-55203 HAProxy through 3.4.0, fixed in commit 5985276, contains an integer overflow vulnerability in the fcgi_conn structure's drl field that allows buffe...	haproxy	haproxy	Jun 18, 2026	CVE
CRITICAL 9.8	CVE-2026-54103	U.S. GAO EPDS and CBCA EDS unauthenticated password change_CVE-2026-54103 The U.S. Government Accountability Office (GAO) Electronic Protest Docketing System (EPDS) and Civilian Board of Contract Appeals (CBCA) Electronic...	Government Accountability Office	Electronic Protest Docketing System (EPDS)	Jun 18, 2026	CVE
CRITICAL 9.8	CVE-2026-38717	CVE-2026-38717_CVE-2026-38717 InHand Networks IR912 V1.0.0.r20042 and IR915 V1.0.0.r20042 (including earlier versions) were discovered to contain a command injection vulnerabili...	n/a	n/a n/a	Jun 18, 2026	CVE
CRITICAL 9.8	CVE-2026-38716	CVE-2026-38716_CVE-2026-38716 InHand Networks IR912 V1.0.0.r20042 and IR915 V1.0.0.r20042 (including earlier versions) were discovered to contain a command injection vulnerabili...	n/a	n/a n/a	Jun 18, 2026	CVE