Zero Day Initiative Advisories - Page 12

ZDI-CAN-28656 7.8 Upcoming – 6d Krita Dec 24, 2025

Krita

Krita is a popular open-source digital painting and illustration software.

ZDI-CAN-28657 7.8 Upcoming – 6d Krita Dec 24, 2025

Krita

Krita is a popular open-source digital painting and illustration software.

ZDI-CAN-28646 7.8 Upcoming – 6d Krita Dec 24, 2025

Krita

Krita is a popular open-source digital painting and illustration software used by artists and designers.

ZDI-CAN-28494 7.8 Upcoming – 6d NoMachine Dec 24, 2025

NoMachine

NoMachine is a remote desktop and access software company. This high-severity vulnerability (CVSS 7.8) requires local access and low-level privileges…

ZDI-CAN-28205 7.0 Upcoming – 5d Microsoft Dec 23, 2025

Microsoft

Microsoft has a high-severity vulnerability (CVSS 7.0) that requires local access and low-level user privileges to exploit, but once compromised…

ZDI-CAN-28054 7.8 Upcoming – 5d Microsoft Dec 23, 2025

Microsoft

Microsoft has a high-severity local privilege escalation vulnerability (CVSS 7.8) that requires user interaction but no authentication to exploit,…

ZDI-CAN-27465 7.8 Upcoming – 5d Oumi Dec 23, 2025

Oumi

A high-severity vulnerability (CVSS 7.8) has been discovered in Oumi's product that allows local attackers to achieve significant compromise without…

ZDI-CAN-28624 7.2 Upcoming – 0d LiteLLM Dec 18, 2025

LiteLLM

LiteLLM, a popular open-source library that provides a unified interface for multiple large language models, has a high-severity vulnerability (CVSS…

ZDI-CAN-28593 7.8 Upcoming – 0d X.Org Dec 18, 2025

X.Org

X.Org is the open-source organization responsible for the X Window System, the fundamental display server used in most Linux and Unix environments.

ZDI-CAN-28157 3.5 Upcoming – 0d Microsoft Dec 18, 2025

Microsoft

Microsoft has patched a low-severity information disclosure vulnerability (CVSS 3.5) that requires adjacent network access and user interaction to…

ZDI-CAN-28115 7.8 Upcoming – 0d Bosch Rexroth Dec 18, 2025

Bosch Rexroth

Bosch Rexroth is a major industrial automation and hydraulics manufacturer whose products are widely deployed in manufacturing and infrastructure…

ZDI-CAN-28709 7.2 Upcoming – 0d Cisco Dec 18, 2025

Cisco

Cisco, a major networking and cybersecurity equipment manufacturer, has a high-severity vulnerability (CVSS 7.2) that can be exploited remotely over…

ZDI-CAN-28708 4.9 Upcoming – 0d Cisco Dec 18, 2025

Cisco

This vulnerability affects Cisco, a major networking and cybersecurity infrastructure vendor.

ZDI-CAN-28556 8.8 Upcoming – -2d Signal Dec 16, 2025

Signal

Signal is a widely-used encrypted messaging application known for providing end-to-end encrypted communications to millions of users globally.

ZDI-CAN-28587 7.8 Upcoming – -2d Ashlar-Vellum Dec 16, 2025

Ashlar-Vellum

Ashlar-Vellum is a software company known for architectural and design tools used by professionals in construction and engineering.

ZDI-CAN-28705 7.8 Upcoming – -2d Samsung Dec 16, 2025

Samsung

Samsung, a major consumer electronics and computing manufacturer, has a high-severity vulnerability (CVSS 7.8) that requires local access and…

ZDI-CAN-28055 9.8 Upcoming – -6d Hugging Face Dec 12, 2025

Hugging Face

Hugging Face is a well-known AI/ML platform that hosts machine learning models and provides collaborative development tools for the AI community.

ZDI-CAN-28550 9.8 Upcoming – -7d mcp-kubernetes-server Dec 11, 2025

mcp-kubernetes-server

The mcp-kubernetes-server, a Kubernetes management component, contains a critical remote code execution vulnerability (CVSS 9.8) that requires no…

ZDI-CAN-28113 7.8 Upcoming – -9d Bosch Rexroth Dec 09, 2025

Bosch Rexroth

Bosch Rexroth is a major industrial automation and hydraulics manufacturer whose products are widely used in manufacturing and control systems.

ZDI-CAN-28660 6.5 Upcoming – -9d Fortinet Dec 09, 2025

Fortinet

Fortinet is a major cybersecurity vendor known for firewalls, VPNs, and network security appliances.

ZDI-CAN-28189 7.5 Upcoming – -9d Microsoft Dec 09, 2025

Microsoft

Microsoft has a high-severity vulnerability (CVSS 7.5) that requires local access and high-level privileges to exploit, but delivers significant…

ZDI-CAN-28661 8.8 Upcoming – -9d Fortinet Dec 09, 2025

Fortinet

Fortinet is a major cybersecurity company known for network firewalls and security appliances.

ZDI-CAN-28114 7.8 Upcoming – -9d Bosch Rexroth Dec 09, 2025

Bosch Rexroth

Bosch Rexroth, a major industrial automation and hydraulics manufacturer, has a high-severity vulnerability (CVSS 7.8) that requires local access and…

ZDI-CAN-28517 7.8 Upcoming – -14d Krita Dec 04, 2025

Krita

Krita is a well-known open-source digital painting and illustration software application.

ZDI-CAN-28447 7.8 Upcoming – -14d Ashlar-Vellum Dec 04, 2025

Ashlar-Vellum

Ashlar-Vellum is a software company known for 2D and 3D design and drafting tools used in architecture and engineering.

ZDI-CAN-28534 6.0 Upcoming – -14d Linux Dec 04, 2025

Linux

This vulnerability affects Linux, the widely-used open-source operating system kernel used across servers, desktops, and embedded systems worldwide.

ZDI-CAN-28594 6.0 Upcoming – -14d Linux Dec 04, 2025

Linux

Linux is the open-source operating system kernel used across servers, desktops, and embedded systems worldwide.

ZDI-CAN-28485 4.3 Upcoming – -14d Synology Dec 04, 2025

Synology

Synology, a well-known network-attached storage (NAS) and surveillance solutions provider, has a medium-severity vulnerability (CVSS 4.3) that…

ZDI-CAN-28486 7.5 Upcoming – -14d QNAP Dec 04, 2025

QNAP

QNAP is a well-known manufacturer of network-attached storage (NAS) devices and storage solutions for both enterprise and consumer markets.

ZDI-CAN-28553 3.1 Upcoming – -14d Synology Dec 04, 2025

Synology

Synology is a well-known network storage and surveillance systems vendor.

ZDI Advisories