ZDI Advisories
875 advisoriesZero Day Initiative vulnerability advisories – published disclosures and upcoming publications.
Flowise
Flowise is a popular open-source low-code platform for building AI applications and chatbots.
AOMEI
AOMEI is a software vendor known for backup, cloning, and disk management utilities commonly used in enterprise and consumer environments.
Parallels
Parallels, a well-known provider of virtualization and desktop management software, has a high-severity vulnerability (CVSS 7.8) that requires local…
AOMEI
AOMEI, known for backup and disk utility software, has a high-severity vulnerability (CVSS 7.5) that allows unauthenticated remote attackers to…
Parallels
Parallels, known for virtualization and remote access software, has a high-severity vulnerability (CVSS 7.8) that requires local access and valid…
Docker
Docker, a leading containerization platform, has a high-severity vulnerability (CVSS 8.8) that requires local access and low-level user privileges to…
Microsoft
Microsoft has a high-severity local privilege escalation vulnerability (CVSS 7.8) that requires local access and low-level user privileges to…
Parallels
Parallels, known for virtualization and desktop software solutions, has a high-severity vulnerability (CVSS 7.8) that requires local access and…
OpenAI
OpenAI, the artificial intelligence company behind ChatGPT and related AI services, has a high-severity local vulnerability (CVSS 8.6) that requires…
Adobe
Adobe, a major software vendor known for creative and productivity applications, has a high-severity local vulnerability (CVSS 7.8) that requires…
Meta
Meta, the parent company of Facebook, Instagram, and WhatsApp, has a high-severity local vulnerability (CVSS 7.8) that requires user interaction but…
Flowise
Flowise is an open-source low-code platform for building AI applications, and this vulnerability has a high severity rating of 8.8.
Progress Software
Progress Software is a well-known vendor of enterprise application development and management solutions.
Progress Software
Progress Software is a well-known vendor of enterprise integration, workflow automation, and database solutions widely used across organizations…
n8n
n8n is a workflow automation platform that allows users to connect and automate tasks across multiple applications.
Hong Kong University Data Intelligence Lab
Hong Kong University Data Intelligence Lab has a high-severity vulnerability (CVSS 7.5) that allows remote attackers to gain unauthorized access to…
Hong Kong University Data Intelligence Lab
A critical vulnerability (CVSS 9.3) has been discovered in the Hong Kong University Data Intelligence Lab's products or services, which focuses on…
n8n
n8n, a popular open-source workflow automation and integration platform, contains a critical remote code execution vulnerability with a CVSS score of…
Apple
Apple has a high-severity vulnerability (CVSS 7.8) that requires local access to a user's device but no authentication or user privileges to exploit,…
Apple
Apple has a low-severity local vulnerability (CVSS 3.3) that requires user interaction to exploit but poses minimal risk, affecting only…
X.Org
X.Org is the open-source organization behind the X Window System, a fundamental display server used across Linux and Unix environments.
pdfforge
pdfforge is a software company known for PDF creation and manipulation tools.
aeon
This vulnerability affects aeon, a vendor whose specific product line is not widely documented in major security databases.
Flowise
Flowise is an open-source low-code platform for building AI applications and chatbots.
aeon
This vulnerability affects Aeon, a vendor whose specific product details aren't widely established in public databases.
X.Org
X.Org is the open-source implementation of the X Window System, the foundational display server for Linux and Unix graphical interfaces.
X.Org
X.Org is the widely-used open-source display server that manages graphical output on Linux and Unix systems.
X.Org
X.Org is the widely-used open-source display server software that manages graphics and input on Linux and Unix systems.
aeon
This vulnerability affects Aeon, a vendor in the industrial automation and IoT device space.
Databricks
Databricks, a major cloud data analytics and AI platform company, has a high-severity local vulnerability (CVSS 7.8) that requires no authentication…