CRITICAL - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.8	608C7C1A-97A1-	Exploit for Stack-based Buffer Overflow in Microsoft_608C7C1A-97A1-5E81-B84A-32A69CDBDD74 CVE-2026-41089 ██████╗██╗ ██╗███████╗ ██╗ ██╗ ██╗ ██████╗ ██████╗ ██╔════╝██║ ██║██╔════╝ ██║ ██║███║██╔═████╗██╔═████╗ ██║ ██║ ██║█████╗ ███████║╚...	N/A	N/A	Jun 4, 2026	GITHUBEXPLOIT
CRITICAL 9.6	CVE-2026-8037	OS Command Injection Remote Code Execution Vulnerability in Progress LoadMaster, ECS Connection Manager, Object Scale Connection Manager & MOVEit WAF_CVE-2026-8037 OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC Products allows an un-authenticated attacker to execute arbitrary c...	Progress Software	LoadMaster V7.2.60.0	Jun 4, 2026	CVE
CRITICAL 10	34F15F9E-3DE3-	Exploit for CVE-2026-34234_34F15F9E-3DE3-5F98-9A00-51E6DAA3B16B CVE-2026-34234 - CtrlPanel Installer RCE Lab Local Docker lab for demonstrating CVE-2026-34234 in CtrlPanel. This repository compares: - vuln: Ctrl...	N/A	N/A	Jun 4, 2026	GITHUBEXPLOIT
CRITICAL 9.8	CVE-2026-4104	SQLi in Akmer Informatics’ TeknoPass_CVE-2026-4104 Authorization bypass through User-Controlled SQL primary key vulnerability in Akmer Informatics Automation Industry and Trade Ltd. Co. TeknoPass al...	Akmer Informatics Automation Industry and Trade Ltd. Co.	TeknoPass 20210501	Jun 4, 2026	CVE
CRITICAL 9.6	CVE-2026-10840	Openshift-pipelines-operator-rh: openshift-pipelines-operator: tekton-scheduler-rolebinding grants system:authenticated write access to kueue and cert-manager resources_CVE-2026-10840 A flaw was found in the OpenShift Pipelines operator. The tekton-scheduler-rolebinding ClusterRoleBinding grants the system:authenticated group wri...	Red Hat	Builds for Red Hat OpenShift	Jun 4, 2026	CVE
CRITICAL 9.3	CVE-2026-50214	Shared Secret Quota Inflation_CVE-2026-50214 The /v1/Plan service relies entirely on a shared global API token for full administrative management, allowing arbitrary creation of zero-cost netw...	Acer	Connect M6E 5G Portable WiFi Router *	Jun 4, 2026	CVE
CRITICAL 9.3	CVE-2026-50209	MDM Server Registration Overriding_CVE-2026-50209 Broadcast events allow malicious software to rewrite the device's default Mobile Device Management (MDM) endpoint address, shifting administrative ...	Acer	Connect M6E 5G Portable WiFi Router *	Jun 4, 2026	CVE
CRITICAL 9.2	CVE-2026-50208	Permissive TrustAllCerts TLS Verification_CVE-2026-50208 High-risk TrustAllCerts routines disable standard TLS certificate validation. Combined with hard-coded DES symmetric encryption keys, a Man-in-the-...	Acer	Connect M6E 5G Portable WiFi Router *	Jun 4, 2026	CVE
CRITICAL 9.8	THN:E195CBEDCCA...	CISA Adds Exploited Magento RCE Flaw CVE-2026-45247 to KEV Catalog_THN:E195CBEDCCA2595694FC42E56D695411 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi8P5o_wfJsxsTaxY4OONIm2y5N5x9heoFeLchfLU13YA36tGQGJtu00tOCQSKhCTBFobAAWfhXLtNGMu8ZCG...	N/A	N/A	Jun 4, 2026	THN
CRITICAL 9.4	CVE-2026-49194	SCREEN_CLICK Authentication Bypass_CVE-2026-49194 The debugging routine SCREEN_CLICK(5053) enables a connection to skip the standard device login prompt entirely and directly enter an interactive s...	Acer	Connect M6E 5G Portable WiFi Router *	Jun 4, 2026	CVE