Skip to main content

ZDI Advisories

875 advisories

Zero Day Initiative vulnerability advisories – published disclosures and upcoming publications.

ZDI-CAN-28722 7.5 Upcoming – -162d DriveLock Feb 06, 2026

DriveLock

DriveLock is a German endpoint security and data protection software vendor.

ZDI-CAN-28906 7.8 Upcoming – -162d Krita Feb 06, 2026

Krita

Krita is a popular open-source digital painting and illustration software application.

ZDI-CAN-28719 5.3 Upcoming – -162d DriveLock Feb 06, 2026

DriveLock

DriveLock is a German endpoint security and data protection company known for device control and encryption solutions.

ZDI-CAN-28785 7.8 Upcoming – -162d Krita Feb 06, 2026

Krita

Krita is a popular open-source digital painting and illustration software.

ZDI-CAN-27987 7.8 Upcoming – -163d Hugging Face Feb 05, 2026

Hugging Face

Hugging Face is a well-known AI/machine learning platform that provides pretrained models and collaborative tools for developers.

ZDI-CAN-28889 7.8 Upcoming – -163d Intel Feb 05, 2026

Intel

Intel, a major semiconductor and processor manufacturer, has a high-severity local vulnerability (CVSS 7.8) that requires user interaction but no…

ZDI-CAN-28192 8.2 Upcoming – -163d MLflow Feb 05, 2026

MLflow

MLflow is an open-source machine learning platform used for experiment tracking and model management.

ZDI-CAN-28091 7.8 Upcoming – -163d DeepSpeed Feb 05, 2026

DeepSpeed

DeepSpeed is a deep learning optimization library developed by Microsoft for training large-scale AI models.

ZDI-CAN-28651 4.3 Upcoming – -163d Microsoft Feb 05, 2026

Microsoft

Microsoft has a medium-severity information disclosure vulnerability (CVSS 4.3) that can be exploited remotely by an unauthenticated attacker through…

ZDI-CAN-29171 7.8 Upcoming – -163d npm Feb 05, 2026

npm

npm is the JavaScript package manager and repository used by millions of developers worldwide.

ZDI-CAN-27466 7.8 Upcoming – -163d verl Feb 05, 2026

verl

A high-severity vulnerability (CVSS 7.8) has been discovered in Verl, affecting the confidentiality, integrity, and availability of systems.

ZDI-CAN-29187 7.8 Upcoming – -163d npm Feb 05, 2026

npm

npm is the largest package manager for JavaScript and Node.js, used by millions of developers worldwide.

ZDI-CAN-28092 7.8 Upcoming – -163d verl Feb 05, 2026

verl

This advisory concerns a high-severity vulnerability (CVSS 7.8) in Verl, a lesser-known vendor product.

ZDI-CAN-28677 7.8 Upcoming – -163d NVIDIA Feb 05, 2026

NVIDIA

NVIDIA, a leading manufacturer of graphics processors and AI computing hardware, has a high-severity local vulnerability (CVSS 7.8) that requires…

ZDI-CAN-28090 7.8 Upcoming – -163d NVIDIA Feb 05, 2026

NVIDIA

NVIDIA is a major technology company known for graphics processors, AI chips, and data center hardware.

ZDI-CAN-27986 7.8 Upcoming – -163d Hugging Face Feb 05, 2026

Hugging Face

Hugging Face is a well-known AI/ML platform that hosts machine learning models and provides collaborative tools for developers.

ZDI-CAN-28816 7.8 Upcoming – -165d Adobe Feb 03, 2026

Adobe

Adobe has released a high-severity vulnerability (CVSS 7.8) affecting one of their products that requires local access and user interaction to…

ZDI-CAN-29162 8.8 Upcoming – -165d Apple Feb 03, 2026

Apple

Apple, a major technology company known for iPhones, Macs, and iOS/macOS operating systems, has a high-severity vulnerability (CVSS 8.8) reported by…

ZDI-CAN-28734 7.7 Upcoming – -169d Medplum Jan 30, 2026

Medplum

Medplum is a healthcare data platform that manages patient records and medical information systems.

ZDI-CAN-29041 7.5 Upcoming – -49d ATEN Jan 30, 2026

ATEN

ATEN is a Taiwan-based manufacturer of IT infrastructure and KVM switch products widely used in data centers and enterprise environments.

ZDI-CAN-28733 7.2 Upcoming – -49d Medplum Jan 30, 2026

Medplum

Medplum is a healthcare data platform that manages patient health records and medical information systems.

ZDI-CAN-28673 7.8 Upcoming – -52d pdfforge Jan 27, 2026

pdfforge

pdfforge is a vendor known for PDF manipulation and conversion software tools.

ZDI-CAN-28834 7.8 Upcoming – -57d Netdata Jan 22, 2026

Netdata

Netdata is a popular open-source real-time system monitoring and visualization platform.

ZDI-CAN-28759 8.8 Upcoming – -57d Siemens Jan 22, 2026

Siemens

Siemens, a major industrial automation and control systems manufacturer, has a high-severity vulnerability (CVSS 8.8) that can be exploited remotely…

ZDI-CAN-28675 7.8 Upcoming – -57d Ashlar-Vellum Jan 22, 2026

Ashlar-Vellum

Ashlar-Vellum is a software company known for design and visualization tools used in architecture and engineering.

ZDI-CAN-28327 8.8 Upcoming – -57d QNAP Jan 22, 2026

QNAP

QNAP is a leading manufacturer of network-attached storage (NAS) devices used by businesses and consumers for data backup and management.

ZDI-CAN-27843 7.8 Upcoming – -87d Delta Electronics Jan 22, 2026

Delta Electronics

Delta Electronics, a major industrial automation and power management company, has a high-severity local vulnerability (CVSS 7.8) that requires user…

ZDI-CAN-28516 7.8 Upcoming – -59d NI Jan 20, 2026

NI

National Instruments (NI) has a high-severity vulnerability (CVSS 7.8) that requires local access and user interaction to exploit, but when…

ZDI-CAN-28892 6.7 Upcoming – -66d Linux Jan 13, 2026

Linux

A medium-severity vulnerability (CVSS 6.7) has been discovered in Linux that requires local access and high-level privileges to exploit, resulting in…

ZDI-CAN-28893 8.2 Upcoming – -66d Linux Jan 13, 2026

Linux

A high-severity vulnerability (CVSS 8.2) has been discovered in Linux that requires local access and high-level privileges to exploit, but once…

Prev Page 24 of 30 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy