ZDI Advisories
359 advisoriesZero Day Initiative vulnerability advisories – published disclosures and upcoming publications.
Quest NetVault Backup NVBUDashboard SQL Injection Remote Code Execution Vulnerability
Oracle VirtualBox VMSVGA Stack-based Buffer Overflow Local Privilege Escalation Vulnerability
X.Org Server ChangeDrawableAttributes Out-Of-Bounds Read Information Disclosure Vulnerability
X.Org Server CreateSaverWindow Use-After-Free Information Disclosure Vulnerability
Unraid Web Server FileUpload Command Injection Remote Code Execution Vulnerability
X.Org Server FreeCounter Use-After-Free Privilege Escalation Vulnerability
ATEN Unizon uploadSSL Directory Traversal Arbitrary File Deletion Vulnerability
ATEN Unizon updateLicense Directory Traversal Arbitrary File Deletion Vulnerability
ATEN Unizon restoreDB Directory Traversal Remote Code Execution Vulnerability
X.Org Server miSyncDestroyFence Use-After-Free Privilege Escalation Vulnerability
X.Org Server Font Alias Stack-based Buffer Overflow Privilege Escalation Vulnerability
Quest NetVault Backup NVBULibraryPort SQL Injection Remote Code Execution Vulnerability
Quest NetVault Backup NVBULibrarySlot SQL Injection Remote Code Execution Vulnerability
MATE Desktop Atril Document Viewer EPUB File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
Samsung rlottie Numeric Truncation Remote Code Execution Vulnerability
Allegra downloadAttachment Cross-Site Scripting Authentication Bypass Vulnerability
Apache HTTP Server mod_proxy_ajp Out-Of-Bounds Read Information Disclosure Vulnerability
Allegra exportReport Directory Traversal Information Disclosure Vulnerability
Adobe Acrobat Reader DC Annotation Use-After-Free Remote Code Execution Vulnerability
NVIDIA Transformers4Rec Model.load Deserialization of Untrusted Data Remote Code Execution Vulnerability
X.Org Server CheckKeyTypes Buffer Overflow Privilege Escalation Vulnerability
X.Org Server CheckKeyActions Out-Of-Bounds Read Information Disclosure Vulnerability
Progress Software Kemp LoadMaster dolistapikeys Uninitialized Memory Remote Code Execution Vulnerability
X.Org Server XkbSetCompatMap Integer Underflow Privilege Escalation Vulnerability
Progress Software Kemp LoadMaster dodelapikey Uninitialized Memory Remote Code Execution Vulnerability
Adobe Acrobat Reader DC Font Handling Use-After-Free Remote Code Execution Vulnerability
Adobe Acrobat Reader DC Annotation Use-After-Free Information Disclosure Vulnerability
Progress Software Kemp LoadMaster apiuser Uninitialized Memory Remote Code Execution Vulnerability
Microsoft Windows Narrator Braille Support brlapi Exposed Dangerous Function Local Privilege Escalation Vulnerability
Adobe Acrobat Reader DC Doc Object Out-Of-Bounds Read Information Disclosure Vulnerability