ZDI Advisories
1275 advisoriesZero Day Initiative vulnerability advisories – published disclosures and upcoming publications.
Digilent DASYLab DSA File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
A high-severity remote code execution vulnerability (CVE-2026-0957) affects Digilent DASYLab, allowing attackers to execute arbitrary code on…
oFono
oFono is an open-source telephony framework for Linux that manages mobile broadband and voice communication.
Foxit
Foxit is a well-known software company that develops PDF readers and document management solutions widely used in enterprise environments.
NoMachine External Control of File Path Local Privilege Escalation Vulnerability
Adobe
Adobe, a leading software company known for creative and productivity applications, has a low-severity local vulnerability (CVSS 3.3) that requires…
Adobe
Adobe has disclosed a low-severity local information disclosure vulnerability (CVE details pending) that requires user interaction to exploit but no…
Adobe
Adobe, a major software vendor known for creative and productivity applications, has a high-severity vulnerability (CVSS 7.8) that requires local…
TrendAI
TrendAI is a vendor in the artificial intelligence security space.
TrendAI
TrendAI is a vendor in the artificial intelligence and machine learning security space.
Meta
Meta, the social media and technology conglomerate, has a high-severity local vulnerability (CVSS 7.8) that requires user interaction but no…
Meta
Meta, the technology giant behind Facebook, Instagram, and WhatsApp, has a high-severity local vulnerability (CVSS 7.8) that requires user…
Meta
Meta, the social media and technology conglomerate, has a high-severity vulnerability (CVSS 7.8) that requires local access and user interaction to…
Meta
Meta, the social media and technology conglomerate, has a local privilege escalation vulnerability (CVSS 7.8) that requires user interaction but no…
Meta
Meta, a major social media and technology company, has a local privilege escalation vulnerability with a CVSS score of 7.8 that requires user…
Meta
Meta, a major social media and technology company, has a high-severity local vulnerability (CVSS 7.8) that requires no authentication but does need…
Meta
Meta, the social media and technology conglomerate, has a high-severity vulnerability (CVSS 7.8) that requires local access and user interaction but…
Meta
Meta, a major social media and technology company, has a high-severity local vulnerability (CVSS 7.8) that requires user interaction but no…
Meta
Meta, a major technology and social media company, has a high-severity vulnerability (CVSS 7.8) that requires local access to exploit and user…
Google has a local vulnerability (CVE pending) with a low CVSS score of 3.3, discovered by researcher Seiji Sakurai, that requires local access and…
Meta
Meta, the social media and technology conglomerate, has a high-severity local vulnerability (CVSS 7.8) that requires user interaction to exploit but…
Meta
Meta, the social media and technology conglomerate, has a high-severity local vulnerability (CVSS 7.8) that requires user interaction but no…
Meta
Meta, the social media and technology conglomerate behind Facebook, Instagram, and other services, has a high-severity vulnerability (CVSS 7.8) that…
Meta
Meta, the parent company of Facebook, Instagram, and WhatsApp, has a high-severity local vulnerability (CVSS 7.8) that requires user interaction but…
Meta
Meta, the social media and technology conglomerate, has a high-severity local vulnerability (CVSS 7.8) that requires user interaction but no…
Meta
Meta, a major social media and technology company, has a local privilege escalation vulnerability with a CVSS score of 7.8 that requires user…
Telegram
Telegram is a widely-used encrypted messaging and communication platform with millions of users globally.
Meta
Meta, the social media and technology conglomerate behind Facebook, Instagram, and other platforms, has a high-severity local vulnerability (CVSS…
Meta
Meta, the social media and technology conglomerate, has a high-severity local vulnerability (CVSS 7.8) that requires user interaction but no…
Meta
Meta, a major social media and technology company, has a local privilege escalation vulnerability with a CVSS score of 7.8 that requires user…
Meta
Meta, the technology company behind Facebook and Instagram, has a high-severity local vulnerability (CVSS 7.8) that requires no authentication and…