HIGH - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.7	CVE-2026-40677	CVE-2026-40677_CVE-2026-40677 The use of insecure HTTP transport within AMD optional tools could allow an attacker to conduct a man-in-the-middle attack, potentially leading to ...	AMD	AMD Management Console (AMC) 14.0.0	Jun 12, 2026	CVE
HIGH 7.8	505F1E52-4323-	Exploit for CVE-2022-38694_505F1E52-4323-5C51-843E-6F1628F070BF ZTE Blade X1001 — Root con Magisk Android 15, Unisoc UMS9230 ⚠️ ADVERTENCIA: Rootear un dispositivo puede anular la garantía, brickear el dispositi...	N/A	N/A	Jun 12, 2026	GITHUBEXPLOIT
HIGH 8.8	EF699315-4D7C-	Exploit for Deserialization of Untrusted Data in Jenkins_EF699315-4D7C-5726-948A-21FDB30656FD CVE-2026-53435 — Jenkins Deserialization → Arbitrary File Read PoC First public proof-of-concept for CVE-2026-53435, built when only the advisory e...	N/A	N/A	Jun 12, 2026	GITHUBEXPLOIT
HIGH 8.7	CFFDFA33-A926-	Exploit for Authorization Bypass Through User-Controlled Key in Saleor_CFFDFA33-A926-5333-9A7E-5C544AED218A CVE-2026-24136 - Saleor GraphQL IDOR / Unauthenticated PII Exfiltration Tổng quan \| Trường \| Chi tiết \| \|---\|---\| \| CVE ID \| CVE-2026-24136 \| \| Loạ...	N/A	N/A	Jun 12, 2026	GITHUBEXPLOIT
HIGH 8.5	CVE-2026-11879	Arbitrary code execution in MobaXterm Personal Edition (Portable)_CVE-2026-11879 MobaXterm Personal Edition (Portable), in its 26.3 version (Build 5154), allows arbitrary code execution by loading malicious DLLs from a temporary...	Mobatek	MobaXterm Personal Edition (Portable) 26.3	Jun 12, 2026	CVE
HIGH 8.8	CVE-2026-12035	CVE-2026-12035_CVE-2026-12035 Use after free in Views in Google Chrome on Windows prior to 149.0.7827.115 allowed a remote attacker to potentially exploit heap corruption via a ...	Google	Chrome 149.0.7827.115	Jun 11, 2026	CVE
HIGH 8.8	CVE-2026-47342	Apache OFBiz: Privilege Escalation via updateOrRemove Authorization Bypass_CVE-2026-47342 A privilege escalation vulnerability in Apache OFBiz allows a low-privileged authenticated user to obtain higher privileges This issue affects A...	Apache Software Foundation	Apache OFBiz	Jun 10, 2026	CVE
HIGH 7.2	CVE-2026-47197	Quest Bot: Discord moderation role hierarchy bypass in ban, kick, mute, unmute, warn, and nickname commands_CVE-2026-47197 Quest Bot is an opensource Discord Bot. Prior to version 1.1.6, a moderator with the relevant Discord permission bit can use the bot to moderate us...	duck-organization	questbot < 1.1.6	Jun 12, 2026	CVE
HIGH 8.4	CVE-2026-47196	Quest Bot: Empty automod rule causes every guild message to be deleted_CVE-2026-47196 Quest Bot is an opensource Discord Bot. Prior to version 1.1.6, the automod add command trims user input but does not reject an empty result. Addin...	duck-organization	questbot < 1.1.6	Jun 12, 2026	CVE
HIGH 7.1	CVE-2026-47195	Quest Bot: Per-channel permission overwrite bypass in purge and slowmode commands._CVE-2026-47195 Quest Bot is an opensource Discord Bot. Prior to version 1.1.6, the purge and slowmode commands check only guild-level permissions on the invoking ...	duck-organization	questbot < 1.1.6	Jun 12, 2026	CVE