ZDI Advisories
729 advisoriesZero Day Initiative vulnerability advisories – published disclosures and upcoming publications.
Ashlar-Vellum
Ashlar-Vellum is a software company known for architectural and design tools used by professionals in construction and engineering.
Hugging Face
Hugging Face is a well-known AI/ML platform that hosts machine learning models and provides collaborative development tools for the AI community.
mcp-kubernetes-server
The mcp-kubernetes-server, a Kubernetes management component, contains a critical remote code execution vulnerability (CVSS 9.8) that requires no…
Bosch Rexroth
Bosch Rexroth, a major industrial automation and hydraulics manufacturer, has a high-severity vulnerability (CVSS 7.8) that requires local access and…
Bosch Rexroth
Bosch Rexroth is a major industrial automation and hydraulics manufacturer whose products are widely used in manufacturing and control systems.
Fortinet
Fortinet is a major cybersecurity company known for network firewalls and security appliances.
Fortinet
Fortinet is a major cybersecurity vendor known for firewalls, VPNs, and network security appliances.
Microsoft
Microsoft has a high-severity vulnerability (CVSS 7.5) that requires local access and high-level privileges to exploit, but delivers significant…
QNAP
QNAP is a well-known manufacturer of network-attached storage (NAS) devices and storage solutions for both enterprise and consumer markets.
Ashlar-Vellum
Ashlar-Vellum is a software company known for 2D and 3D design and drafting tools used in architecture and engineering.
Synology
Synology, a well-known network-attached storage (NAS) and surveillance solutions provider, has a medium-severity vulnerability (CVSS 4.3) that…
Linux
This vulnerability affects Linux, the widely-used open-source operating system kernel used across servers, desktops, and embedded systems worldwide.
Krita
Krita is a well-known open-source digital painting and illustration software application.
GIMP
GIMP is a widely-used open-source image editing application, and this high-severity vulnerability (CVSS 7.8) can be exploited locally without…
Synology
Synology is a network-attached storage (NAS) and surveillance system vendor.
Synology
Synology is a well-known network storage and surveillance systems vendor.
Linux
Linux is the open-source operating system kernel used across servers, desktops, and embedded systems worldwide.
pdfforge
PDFforge is a software company known for PDF creation and editing tools.
Ivanti
Ivanti is a well-known enterprise IT management and cybersecurity software vendor.
MindsDB
MindsDB is an open-source machine learning and AI database platform that allows developers to build AI applications with simplified data access.
QEMU
QEMU is a widely-used open-source machine emulator and virtualization platform.
Linux
A high-severity vulnerability (CVSS 7.5) has been discovered in Linux that requires local access and high-level privileges to exploit, but can result…
Ashlar-Vellum
Ashlar-Vellum is a CAD and design software company known for products like Vellum and Cobalt used in architecture and engineering.
GIMP
GIMP is a widely-used open-source image editing software that allows users to create and modify graphics.
Ashlar-Vellum
Ashlar-Vellum is a software company known for CAD and design applications.
JumpCloud
JumpCloud is a cloud-based directory and identity management platform used for managing user access across IT environments.
ByteDance
ByteDance, the Chinese technology company behind TikTok and other platforms, has a high-severity local vulnerability (CVSS 7.8) that requires user…
Airbyte
Airbyte is a popular open-source data integration platform that allows users to sync data between various sources and destinations.
JumpCloud
JumpCloud is a cloud-based directory and identity management platform used by organizations for user authentication and device management.
Airbyte
Airbyte is a popular open-source data integration platform used for ETL/ELT operations.