ZDI Advisories
400 advisoriesZero Day Initiative vulnerability advisories – published disclosures and upcoming publications.
Microsoft Hyper-V netvsc Out-Of-Bounds Read Local Privilege Escalation Vulnerability
Samsung rlottie Numeric Truncation Remote Code Execution Vulnerability
Microsoft Windows ServerManager Exposed Dangerous Method Local Privilege Escalation Vulnerability
Autel MaxiCharger AC Elite Home WebSockets Integer Underflow Remote Code Execution Vulnerability
NVIDIA NeMo Framework Deserialization of Untrusted Data Remote Code Execution Vulnerability
Synology DiskStation DS925+ MailPlus Redis Weak Cryptography for Passwords Remote Code Execution Vulnerability
Cisco Identity Services Engine validFileNameOrPath Directory Traversal Information Disclosure Vulnerability
Microsoft SharePoint SPFieldMultiLineText Cross-Site Scripting Vulnerability
dnsmasq DNS Response Heap-based Buffer Overflow Remote Code Execution Vulnerability
Rockwell Automation Arena Simulation DOE File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
Autel MaxiCharger AC Elite Home Software Update Improper Verification of Cryptographic Signature Arbitrary Code Execution Vulnerability
MSI Center NTIOLib_X64 Origin Validation Error Local Privilege Escalation Vulnerability
OpenSSL X.509 Email Validation Out-Of-Bounds Read Information Disclosure Vulnerability
Synology DiskStation DS925+ MailPlus Improper Restriction of Communication Channel to Intended Endpoints Vulnerability
7-Zip XZ Decompression Heap-based Buffer Overflow Remote Code Execution Vulnerability
Autel MaxiCharger AC Elite Home USB Heap-based Buffer Overflow Arbitrary Code Execution Vulnerability
Adobe Creative Cloud AGSService Incorrect Permission Assignment Local Privilege Escalation Vulnerability
Adobe Creative Cloud AdobeUpdateService Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
Linux Kernel vmwgfx Integer Overflow Local Privilege Escalation Vulnerability
Linux Kernel CAN ISO-TP Protocol Race Condition Local Privilege Escalation Vulnerability
Fuji Electric Tellus pcid64 Driver Untrusted Pointer Dereference Denial of Service Vulnerability
Fuji Electric Tellus pcid64 Driver Exposed Dangerous Method Local Privilege Escalation Vulnerability
Autel MaxiCharger AC Elite Home NFC Stack-based Buffer Overflow Arbitrary Code Execution Vulnerability
Autel MaxiCharger AC Elite Home USB Authentication Bypass Vulnerability
G DATA Total Security Backup Service Link Following Local Privilege Escalation Vulnerability
ASUS Business Manager Service Client-Side Authentication Local Privilege Escalation Vulnerability
WatchGuard FireWare OS admd Stack-based Buffer Overflow Remote Code Execution Vulnerability
WatchGuard FireWare OS iked ike2_hmac Null Pointer Dereference Denial-of-Service Vulnerability
OpenSSL OCSP Stapling Verification Double Free Remote Code Execution Vulnerability
Microsoft Windows WMI Providers Incorrect Authorization Local Privilege Escalation Vulnerability