ZDI Advisories
400 advisoriesZero Day Initiative vulnerability advisories – published disclosures and upcoming publications.
Trend Micro Apex Central Hub Server Server-Side Request Forgery Vulnerability
Trend Micro Apex Central contains an information disclosure vulnerability (CVE-2025-71205) that allows authenticated remote attackers to access…
Trend Micro Apex Central Improper Authentication Privilege Escalation Vulnerability
Trend Micro Apex Central contains a high-severity privilege escalation vulnerability (CVE-2025-71209, CVSS 8.1) that allows authenticated attackers…
Trend Micro Apex Central Improper Authentication Privilege Escalation Vulnerability
A privilege escalation vulnerability affects Trend Micro Apex Central that allows authenticated remote attackers to gain elevated permissions on the…
Trend Micro Apex Central Manual Update Server-Side Request Forgery Vulnerability
Trend Micro Apex Central contains an information disclosure vulnerability (CVE-2025-71207) that allows authenticated remote attackers to access…
Trend Micro Apex One Security Agent iCore Service Origin Validation Error Local Privilege Escalation Vulnerability
Trend Micro Apex One Security Agent contains a privilege escalation vulnerability (CVE-2025-71214) that allows local attackers with low-privileged…
Trend Micro Apex One Virus Scan Engine Link Following Local Privilege Escalation Vulnerability
Trend Micro Apex One Security Agent contains a privilege escalation vulnerability (CVE-2025-71212) that allows attackers with low-level code…
Trend Micro Apex One Security Agent TmSelfProtect Origin Validation Error Local Privilege Escalation Vulnerability
This advisory describes a privilege escalation vulnerability in Trend Micro Apex One Security Agent that allows an attacker with low-privileged code…
Trend Micro Apex One Security Agent Cache Mechanism Time-Of-Check Time-Of-Use Local Privilege Escalation Vulnerability
Trend Micro Apex One Security Agent contains a privilege escalation vulnerability (CVE-2025-71216) that allows local attackers with low-privileged…
Trend Micro Apex One Security Agent iCore Service Signature Verification Time-Of-Check Time-Of-Use Local Privilege Escalation Vulnerability
A privilege escalation vulnerability exists in Trend Micro Apex One Security Agent that allows local attackers with low-privileged code execution to…
Trend Micro Apex One Origin Validation Error Local Privilege Escalation Vulnerability
A privilege escalation vulnerability (CVE-2025-71213) in Trend Micro Apex One Security Agent allows attackers with low-level code execution on a…
LangChain LangGraph BaseCache Deserialization of Untrusted Data Remote Code Execution Vulnerability
LangChain's LangGraph component contains a remote code execution vulnerability (CVE-2026-27794) that allows unauthenticated attackers to execute…
Docker Desktop for Mac Docker Model Runner Exposed Dangerous Function Denial-of-Service Vulnerability
Docker Desktop contains a local denial-of-service vulnerability (CVE-2026-28400) that allows low-privileged attackers to crash or disable the…
Socomec DIRIS A-40 HTTP API Authentication Bypass Vulnerability
A medium-severity authentication bypass vulnerability (CVE-2026-2491) affects Socomec DIRIS A-40 power monitoring devices, allowing network-adjacent…
Siemens SINEC NMS Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
A local privilege escalation vulnerability has been discovered in Siemens SINEC NMS (CVE-2026-25655) that allows attackers with low-level code…
IceWarp collaboration Directory Traversal Information Disclosure Vulnerability
IceWarp contains a high-severity information disclosure vulnerability (CVE-2026-2493) that allows unauthenticated remote attackers to access…
claude-hovercraft executeClaudeCode Command Injection Remote Code Execution Vulnerability
Claude-hovercraft contains a critical remote code execution vulnerability (CVE-2025-15060) that allows unauthenticated attackers to execute arbitrary…
Siemens SINEC NMS Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
A privilege escalation vulnerability exists in Siemens SINEC NMS that allows local attackers with low-level code execution capabilities to elevate…
Ubiquiti Networks AI Pro Cleartext Transmission Information Disclosure Vulnerability
Ubiquiti Networks AI Pro contains an information disclosure vulnerability (CVE-2026-21633) that allows nearby network attackers to access sensitive…
Ubiquiti Networks AI Pro Uncaught Exception Denial-of-Service Vulnerability
A denial-of-service vulnerability affecting Ubiquiti Networks AI Pro allows network-adjacent attackers to crash or disable the device without…
Ubiquiti Networks AI Pro Discovery Protocol Missing Encryption Protocol Downgrade Vulnerability
Ubiquiti Networks AI Pro contains a medium-severity protocol downgrade vulnerability (CVE-2026-21633) that allows network-adjacent attackers to force…
Docker Desktop grpcfuse Kernel Module Out-Of-Bounds Read Information Disclosure Vulnerability
CVE-2026-2664 is a medium-severity information disclosure vulnerability in Docker Desktop that allows local attackers with low-privileged code…
Docker Desktop MCP Server Cleartext Storage of Sensitive Information Vulnerability
Docker Desktop contains a local information disclosure vulnerability (ZDI-26-123) that allows low-privileged attackers to access sensitive…
GIMP PGM File Parsing Uninitialized Memory Remote Code Execution Vulnerability
GIMP contains a remote code execution vulnerability (CVE-2026-2044, CVSS 7.8) that allows attackers to execute arbitrary code when a user opens a…
PDF-XChange Editor TrackerUpdate Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
PDF-XChange Editor contains a local privilege escalation vulnerability (CVE-2026-2040) rated as HIGH severity with a CVSS score of 7.3.
Bosch Rexroth IndraWorks UA.TestClient XML File Parsing Deserialization Of Untrusted Data Remote Code Execution Vulnerability
Bosch Rexroth IndraWorks contains a remote code execution vulnerability (CVE-2025-60036) that allows attackers to execute arbitrary code if a user…
Dassault Systèmes eDrawings Viewer EPRT File Parsing Uninitialized Variable Remote Code Execution Vulnerability
A remote code execution vulnerability (CVE-2026-1333) exists in Dassault Systèmes eDrawings Viewer that allows attackers to execute arbitrary code if…
Dassault Systèmes eDrawings Viewer EPRT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
A high-severity remote code execution vulnerability (CVE-2026-1335) affects Dassault Systèmes eDrawings Viewer, allowing attackers to execute…
Bosch Rexroth IndraWorks OPC.TestClient XML File Parsing Deserialization Of Untrusted Data Remote Code Execution Vulnerability
A high-severity remote code execution vulnerability (CVE-2025-60035) has been identified in Bosch Rexroth IndraWorks that allows attackers to execute…
Dassault Systèmes eDrawings Viewer EPRT File Parsing Memory Corruption Remote Code Execution Vulnerability
A high-severity remote code execution vulnerability (CVE-2026-1334) has been identified in Dassault Systèmes eDrawings Viewer that allows attackers…
TensorFlow HDF5 Library Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
CVE-2026-2492 is a high-severity privilege escalation vulnerability in TensorFlow that allows local attackers with low-privileged code execution to…