ZDI Advisories

474 advisories

Zero Day Initiative vulnerability advisories – published disclosures and upcoming publications.

All 722 Published 248 Upcoming 474 Overdue 337
ZDI-CAN-28254 9.8 Upcoming – -72d All Hands Oct 07, 2025

All Hands

A critical remote code execution vulnerability (CVSS 9.8) has been discovered in All Hands' product that requires no authentication or user…
ZDI-CAN-27556 6.1 Upcoming – -76d BusyBox Oct 03, 2025

BusyBox

BusyBox is a widely-used lightweight Unix utility suite commonly embedded in Linux distributions, IoT devices, and embedded systems.
ZDI-CAN-28222 5.3 Upcoming – -76d Trend Micro Oct 03, 2025

Trend Micro

Trend Micro, a major cybersecurity and antivirus software vendor, has a medium-severity vulnerability (CVSS 5.3) that allows authenticated attackers…
ZDI-CAN-28202 8.8 Upcoming – -76d Quest Oct 03, 2025

Quest

Quest Software, known for IT management and security solutions, has a critical remote vulnerability (ZDI-CAN-28202) with a CVSS score of 8.8 that…
ZDI-CAN-27329 7.5 Upcoming – -76d EmbedThis Oct 03, 2025

EmbedThis

EmbedThis, known for embedded web server and IoT connectivity solutions, has a high-severity vulnerability (CVSS 7.5) that requires adjacent network…
ZDI-CAN-28221 5.0 Upcoming – -76d EmbedThis Oct 03, 2025

EmbedThis

EmbedThis is a vendor known for embedded web server and IoT connectivity software used in various networked devices.
ZDI-CAN-28122 7.2 Upcoming – -76d Trend Micro Oct 03, 2025

Trend Micro

Trend Micro is a well-established cybersecurity software vendor known for antivirus, endpoint protection, and cloud security solutions.
ZDI-CAN-27626 8.8 Upcoming – -85d Quest Sep 24, 2025

Quest

Quest Software has a high-severity vulnerability (CVSS 8.8) that can be exploited remotely by an authenticated attacker with no user interaction…
ZDI-CAN-28096 7.8 Upcoming – -85d Lightning AI Sep 24, 2025

Lightning AI

Lightning AI is a company known for machine learning and AI development tools.
ZDI-CAN-27666 8.8 Upcoming – -85d Quest Sep 24, 2025

Quest

A high-severity vulnerability (CVSS 8.8) has been discovered in Quest software, a vendor known for identity and access management solutions.
ZDI-CAN-27809 8.8 Upcoming – -85d Quest Sep 24, 2025

Quest

Quest Software, a major provider of IT management and security solutions, has a high-severity vulnerability (CVSS 8.8) that can be exploited remotely…
ZDI-CAN-27630 8.8 Upcoming – -85d Quest Sep 24, 2025

Quest

Quest Software, a well-known enterprise software vendor, has a high-severity vulnerability (CVSS 8.8) that can be exploited remotely by authenticated…
ZDI-CAN-27631 8.8 Upcoming – -85d Quest Sep 24, 2025

Quest

Quest Software, known for IT management and backup solutions, has a high-severity vulnerability (CVSS 8.8) that can be exploited remotely by an…
ZDI-CAN-27632 8.8 Upcoming – -85d Quest Sep 24, 2025

Quest

Quest Software, a vendor specializing in identity and access management, backup, and disaster recovery solutions, has a high-severity vulnerability…
ZDI-CAN-27625 8.8 Upcoming – -85d Quest Sep 24, 2025

Quest

Quest Software has a high-severity vulnerability (CVSS 8.8) that can be exploited remotely by authenticated users without requiring user interaction,…
ZDI-CAN-27633 8.8 Upcoming – -85d Quest Sep 24, 2025

Quest

Quest Software, a provider of IT management and security solutions, has a high-severity vulnerability (CVSS 8.8) that can be exploited remotely by…
ZDI-CAN-27648 8.8 Upcoming – -85d Quest Sep 24, 2025

Quest

Quest Software, known for backup, recovery, and identity management solutions, has a high-severity vulnerability (CVSS 8.8) that can be exploited…
ZDI-CAN-28148 9.9 Upcoming – -92d Trend Micro Sep 17, 2025

Trend Micro

Trend Micro, a major cybersecurity software vendor, has a critical vulnerability (CVSS 9.9) that can be exploited remotely by authenticated users…
ZDI-CAN-27982 7.8 Upcoming – -98d Trend Micro Sep 11, 2025

Trend Micro

Trend Micro, a major cybersecurity software vendor, has a high-severity local privilege escalation vulnerability (CVSS 7.8) that requires local…
ZDI-CAN-28102 9.8 Upcoming – -98d Super Magic Sep 11, 2025

Super Magic

A critical vulnerability (CVSS 9.8) has been discovered in Super Magic's product that can be exploited remotely without authentication or user…
ZDI-CAN-27670 7.8 Upcoming – -98d Fuji Electric Sep 11, 2025

Fuji Electric

Fuji Electric, a major Japanese manufacturer of industrial automation and power systems, has a high-severity local privilege escalation vulnerability…
ZDI-CAN-27671 7.8 Upcoming – -99d Fuji Electric Sep 10, 2025

Fuji Electric

Fuji Electric, a major Japanese industrial automation and power systems company, has a high-severity local privilege escalation vulnerability (CVSS…
ZDI-CAN-27792 7.8 Upcoming – -107d GIMP Sep 02, 2025

GIMP

GIMP is a widely-used open-source image editing application that has a high-severity vulnerability (CVSS 7.8) requiring local access with user…
ZDI-CAN-27975 9.8 Upcoming – -114d Trend Micro Aug 26, 2025

Trend Micro

Trend Micro, a major cybersecurity software vendor, has a critical vulnerability (CVSS 9.8) that can be exploited remotely over the network without…
ZDI-CAN-27976 9.8 Upcoming – -114d Trend Micro Aug 26, 2025

Trend Micro

Trend Micro, a major cybersecurity software vendor, has a critical vulnerability (CVSS 9.8) that can be exploited remotely over the network without…
ZDI-CAN-27389 7.8 Upcoming – -119d Siemens Aug 21, 2025

Siemens

Siemens, a major industrial automation and control systems manufacturer, has a high-severity vulnerability (CVSS 7.8) that requires local access and…
ZDI-CAN-27349 7.8 Upcoming – -128d Siemens Aug 12, 2025

Siemens

Siemens, a major industrial automation and control systems manufacturer, has a high-severity local vulnerability (CVSS 7.8) that requires user…
ZDI-CAN-27555 6.5 Upcoming – -140d BusyBox Jul 31, 2025

BusyBox

BusyBox is a widely-used lightweight Unix utility suite commonly embedded in IoT devices, routers, and embedded Linux systems.
ZDI-CAN-27757 2.4 Upcoming – -142d Toyota Jul 29, 2025

Toyota

Toyota, the major automotive manufacturer, has a low-severity vulnerability (CVSS 2.4) that requires physical access to exploit and causes only minor…
ZDI-CAN-27629 7.8 Upcoming – -149d Trend Micro Jul 22, 2025

Trend Micro

Trend Micro, a major cybersecurity software vendor, has a high-severity local privilege escalation vulnerability (CVSS 7.8) that requires local…
Prev Page 14 of 16 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy