NONE - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	H1:3823932	curl: CURLOPT_HAPROXY_CLIENT_IP lacks input validation, enabling HAProxy PROXY protocol injection_H1:3823932 Summary The CURLOPT_HAPROXY_CLIENT_IP option accepts an arbitrary string without validating that it is a valid IP address, and without stripping...	N/A	N/A	Jun 25, 2026	HACKERONE
NONE	H1:3826199	curl: mbedTLS / wolfSSL / rustls backends silently skip hostname verification when CURLOPT_SSL_VERIFYPEER=0_H1:3826199 ## Summary When an application sets `CURLOPT_SSL_VERIFYPEER=0` while keeping `CURLOPT_SSL_VERIFYHOST=2` (the default), the mbedTLS, wolfSSL, and r...	N/A	N/A	Jun 26, 2026	HACKERONE
NONE	AKAMAIBLOG:978E...	The Cloud Giants Are Architecting an Agentic Future They Can’t Run_AKAMAIBLOG:978E7ED61CD644037FCD4A69D3E06906 {“lastseen”:”2026-06-26T13:36:50″,”description”:””,”published”:”2026-06-26T12:00:...	N/A	N/A	Jun 26, 2026	AKAMAIBLOG
NONE	MALWAREBYTES:78...	Malware steals Chrome session cookies to take over your accounts_MALWAREBYTES:788C013A9E21914EAA8C63074A6CEDAB An email attachment leads to the installation of a malicious Chrome extension. Researchers say it is part of a Windows backdoor delivered via a phi...	N/A	N/A	Jun 26, 2026	MALWAREBYTES
NONE	HACKREAD:93DAA7...	macOS Flaw Allowed Standard Users to Disable CrowdStrike and Kandji Security Tools_HACKREAD:93DAA706F3622B28554D356980224D24 A macOS XPC flaw let regular users disable CrowdStrike and Kandji tools, exposing security gaps that vendors patched after XM Cyber reported the se...	N/A	N/A	Jun 26, 2026	HACKREAD
NONE	THN:73F078ED386...	New Linux pedit COW Exploit Enables Root Access by Poisoning Cached Binaries_THN:73F078ED386CEDEB92973C14C2CA14DB ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj0PC1aWOiorYx2AGD7fl-IVefJBKPJvjy7sMo5MURoMlaq492QcSdpSqqdGZRZk3u3e6BMS7qVzrJXBuWk-k...	N/A	N/A	Jun 26, 2026	THN
NONE	2DE71726-382B-	web-security-auditor_2DE71726-382B-5653-8780-93100257F741 Web Security Auditor Auditor automático de seguridad web desarrollado en Python. Esta herramienta está diseñada para ayudar a administradores y des...	N/A	N/A	Jun 26, 2026	GITHUBEXPLOIT
NONE	48329317-B6F8-	CSP-Exploitation_48329317-B6F8-5615-9745-63DAED1542EF No description provided...	N/A	N/A	Jun 26, 2026	GITHUBEXPLOIT
NONE	SCHNEIER:5A984D...	One Million Passports Leaked Online_SCHNEIER:5A984DD8586ACE6B522ADEED9725C85A A database of almost a million passports from around the world was leaked online. Note what happened. A high-value credential--a passport--was use...	N/A	N/A	Jun 26, 2026	SCHNEIER
NONE	HACKREAD:960293...	A decade of infrastructure development, one new name: Coinspaid Dev_HACKREAD:9602933FD11EA2646234963F1ED0448F The team behind Coinspaid Solutions steps into the spotlight with a mission to become the engineering voice of blockchain infrastructure.	N/A	N/A	Jun 26, 2026	HACKREAD