ZDI Advisories
875 advisoriesZero Day Initiative vulnerability advisories – published disclosures and upcoming publications.
Fuji Electric
Fuji Electric, a major Japanese manufacturer of industrial automation and power systems, has a high-severity local privilege escalation vulnerability…
Trend Micro
Trend Micro, a major cybersecurity software vendor, has a high-severity local privilege escalation vulnerability (CVSS 7.8) that requires local…
Fuji Electric
Fuji Electric, a major Japanese industrial automation and power systems company, has a high-severity local privilege escalation vulnerability (CVSS…
GIMP
GIMP is a widely-used open-source image editing application that has a high-severity vulnerability (CVSS 7.8) requiring local access with user…
Trend Micro
Trend Micro, a major cybersecurity software vendor, has a critical vulnerability (CVSS 9.8) that can be exploited remotely over the network without…
Trend Micro
Trend Micro, a major cybersecurity software vendor, has a critical vulnerability (CVSS 9.8) that can be exploited remotely over the network without…
Siemens
Siemens, a major industrial automation and control systems manufacturer, has a high-severity vulnerability (CVSS 7.8) that requires local access and…
Siemens
Siemens, a major industrial automation and control systems manufacturer, has a high-severity local vulnerability (CVSS 7.8) that requires user…
BusyBox
BusyBox is a widely-used lightweight Unix utility suite commonly embedded in IoT devices, routers, and embedded Linux systems.
Toyota
Toyota, the major automotive manufacturer, has a low-severity vulnerability (CVSS 2.4) that requires physical access to exploit and causes only minor…
Trend Micro
Trend Micro, a major cybersecurity software vendor, has a high-severity local privilege escalation vulnerability (CVSS 7.8) that requires local…
OceanBase
OceanBase, a distributed relational database platform, has a critical vulnerability (CVSS 9.8) that can be exploited remotely without authentication…
Bytebase
A critical vulnerability (CVSS 9.8) has been discovered in Bytebase, a database management and version control platform.
Docker
Docker, the widely-used containerization platform, has a high-severity vulnerability (CVSS 7.5) that requires local access and high-level privileges…
Docker
Docker is a widely-used containerization platform that allows developers to package and run applications in isolated environments.
Docker
Docker is a widely-used containerization platform that enables developers to package and deploy applications in isolated environments.
Lorex
Lorex is a well-known manufacturer of surveillance and security camera systems.
Linux
Linux is the widely-used open-source operating system kernel found across servers, desktops, and embedded systems worldwide.
NetBSD
NetBSD is an open-source operating system used in servers, embedded systems, and research environments.
LiteLLM
LiteLLM is a popular open-source library that provides a unified interface for accessing various large language models and AI APIs.
NVIDIA
NVIDIA, a major graphics processor and AI computing company, has a high-severity vulnerability (CVSS 7.5) that can be exploited remotely over the…
Trend Micro
Trend Micro is a well-known cybersecurity company that produces antivirus, endpoint protection, and threat management software.
Glarysoft
Glarysoft is a well-known developer of system optimization and cleaning utilities for Windows.
Docker
Docker, the widely-used containerization platform, has a high-severity vulnerability (CVSS 8.2) that requires local access and elevated privileges to…
Ollama
Ollama is an open-source platform for running large language models locally.
Microsoft
Microsoft has a high-severity vulnerability (CVSS 8.8) that requires adjacent network access but no authentication or user interaction, allowing…
Microsoft
Microsoft has a critical remote vulnerability (CVSS 8.8) that allows unauthenticated attackers to compromise systems over the network with only user…
Lorex
Lorex is a well-known manufacturer of surveillance and security camera systems.
Rockwell Automation
Rockwell Automation, a major industrial control systems and manufacturing software vendor, has a high-severity local vulnerability that requires user…
Labcenter Electronics
Labcenter Electronics, a well-known developer of circuit simulation and PCB design software, has a high-severity vulnerability (CVSS 7.8) that can be…