ZDI Advisories

474 advisories

Zero Day Initiative vulnerability advisories – published disclosures and upcoming publications.

All 722 Published 248 Upcoming 474 Overdue 337
ZDI-CAN-28092 7.8 Upcoming – -71d verl Feb 05, 2026

verl

This advisory concerns a high-severity vulnerability (CVSS 7.8) in Verl, a lesser-known vendor product.
ZDI-CAN-27986 7.8 Upcoming – -71d Hugging Face Feb 05, 2026

Hugging Face

Hugging Face is a well-known AI/ML platform that hosts machine learning models and provides collaborative tools for developers.
ZDI-CAN-29171 7.8 Upcoming – -71d npm Feb 05, 2026

npm

npm is the JavaScript package manager and repository used by millions of developers worldwide.
ZDI-CAN-27466 7.8 Upcoming – -71d verl Feb 05, 2026

verl

A high-severity vulnerability (CVSS 7.8) has been discovered in Verl, affecting the confidentiality, integrity, and availability of systems.
ZDI-CAN-28651 4.3 Upcoming – -71d Microsoft Feb 05, 2026

Microsoft

Microsoft has a medium-severity information disclosure vulnerability (CVSS 4.3) that can be exploited remotely by an unauthenticated attacker through…
ZDI-CAN-28816 7.8 Upcoming – -73d Adobe Feb 03, 2026

Adobe

Adobe has released a high-severity vulnerability (CVSS 7.8) affecting one of their products that requires local access and user interaction to…
ZDI-CAN-29162 8.8 Upcoming – -73d Apple Feb 03, 2026

Apple

Apple, a major technology company known for iPhones, Macs, and iOS/macOS operating systems, has a high-severity vulnerability (CVSS 8.8) reported by…
ZDI-CAN-28734 7.7 Upcoming – -77d Medplum Jan 30, 2026

Medplum

Medplum is a healthcare data platform that manages patient records and medical information systems.
ZDI-CAN-28733 7.2 Upcoming – 43d Medplum Jan 30, 2026

Medplum

Medplum is a healthcare data platform that manages patient health records and medical information systems.
ZDI-CAN-29041 7.5 Upcoming – 43d ATEN Jan 30, 2026

ATEN

ATEN is a Taiwan-based manufacturer of IT infrastructure and KVM switch products widely used in data centers and enterprise environments.
ZDI-CAN-28673 7.8 Upcoming – 40d pdfforge Jan 27, 2026

pdfforge

pdfforge is a vendor known for PDF manipulation and conversion software tools.
ZDI-CAN-28675 7.8 Upcoming – 35d Ashlar-Vellum Jan 22, 2026

Ashlar-Vellum

Ashlar-Vellum is a software company known for design and visualization tools used in architecture and engineering.
ZDI-CAN-28759 8.8 Upcoming – 35d Siemens Jan 22, 2026

Siemens

Siemens, a major industrial automation and control systems manufacturer, has a high-severity vulnerability (CVSS 8.8) that can be exploited remotely…
ZDI-CAN-27843 7.8 Upcoming – 5d Delta Electronics Jan 22, 2026

Delta Electronics

Delta Electronics, a major industrial automation and power management company, has a high-severity local vulnerability (CVSS 7.8) that requires user…
ZDI-CAN-28834 7.8 Upcoming – 35d Netdata Jan 22, 2026

Netdata

Netdata is a popular open-source real-time system monitoring and visualization platform.
ZDI-CAN-28327 8.8 Upcoming – 35d QNAP Jan 22, 2026

QNAP

QNAP is a leading manufacturer of network-attached storage (NAS) devices used by businesses and consumers for data backup and management.
ZDI-CAN-28516 7.8 Upcoming – 33d NI Jan 20, 2026

NI

National Instruments (NI) has a high-severity vulnerability (CVSS 7.8) that requires local access and user interaction to exploit, but when…
ZDI-CAN-28893 8.2 Upcoming – 26d Linux Jan 13, 2026

Linux

A high-severity vulnerability (CVSS 8.2) has been discovered in Linux that requires local access and high-level privileges to exploit, but once…
ZDI-CAN-28892 6.7 Upcoming – 26d Linux Jan 13, 2026

Linux

A medium-severity vulnerability (CVSS 6.7) has been discovered in Linux that requires local access and high-level privileges to exploit, resulting in…
ZDI-CAN-28605 4.4 Upcoming – 25d Microsoft Jan 12, 2026

Microsoft

Microsoft has released a medium-severity vulnerability (CVSS 4.4) that requires local access and low-level user privileges to exploit, with no user…
ZDI-CAN-28540 7.8 Upcoming – 25d Microsoft Jan 12, 2026

Microsoft

Microsoft has disclosed a high-severity vulnerability (CVSS 7.8) that requires local access and low-level user privileges to exploit, but delivers…
ZDI-CAN-28822 8.8 Upcoming – 22d Docker Jan 09, 2026

Docker

A high-severity privilege escalation vulnerability (CVSS 8.8) has been discovered in Docker, the widely-used containerization platform, requiring…
ZDI-CAN-28710 7.8 Upcoming – 22d FontForge Jan 09, 2026

FontForge

FontForge is an open-source font editor software used for creating and modifying typeface files.
ZDI-CAN-27921 7.8 Upcoming – 21d Trend Micro Jan 08, 2026

Trend Micro

Trend Micro is a major cybersecurity software vendor known for antivirus, endpoint protection, and cloud security products.
ZDI-CAN-28724 5.5 Upcoming – 21d Cisco Jan 08, 2026

Cisco

Cisco, a major networking and security equipment manufacturer, has a medium-severity vulnerability (CVSS 5.5) that requires high-level privileges and…
ZDI-CAN-28559 7.8 Upcoming – 21d Microsoft Jan 08, 2026

Microsoft

Microsoft has released a high-severity vulnerability (CVSS 7.8) that requires local access and low-level user privileges to exploit, but delivers…
ZDI-CAN-28649 7.8 Upcoming – 19d NVIDIA Jan 06, 2026

NVIDIA

NVIDIA, a leading manufacturer of graphics processors and AI computing hardware, has a high-severity local vulnerability (CVSS 7.8) that requires…
ZDI-CAN-28595 7.8 Upcoming – 13d Foxit Dec 31, 2025

Foxit

Foxit is a well-known software company specializing in PDF readers and document management solutions.
ZDI-CAN-28536 7.8 Upcoming – 13d NVIDIA Dec 31, 2025

NVIDIA

NVIDIA, a major manufacturer of graphics processors and AI computing hardware, has a high-severity local vulnerability (CVSS 7.8) that requires user…
ZDI-CAN-27564 7.3 Upcoming – 6d Siemens Dec 24, 2025

Siemens

Siemens, a major industrial automation and control systems manufacturer, has a high-severity vulnerability (CVSS 7.3) that can be exploited remotely…
Prev Page 11 of 16 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy