ZDI Advisories
331 advisoriesZero Day Initiative vulnerability advisories – published disclosures and upcoming publications.
Trend Micro
Trend Micro, a major cybersecurity software vendor, has a critical vulnerability (CVSS 9.8) that can be exploited remotely over the network without…
GIMP
GIMP is a widely-used open-source image editing application that has a high-severity vulnerability (CVSS 7.8) requiring local access with user…
Fuji Electric
Fuji Electric, a major Japanese industrial automation and power systems company, has a high-severity local privilege escalation vulnerability (CVSS…
Super Magic
A critical vulnerability (CVSS 9.8) has been discovered in Super Magic's product that can be exploited remotely without authentication or user…
Fuji Electric
Fuji Electric, a major Japanese manufacturer of industrial automation and power systems, has a high-severity local privilege escalation vulnerability…
Trend Micro
Trend Micro, a major cybersecurity software vendor, has a high-severity local privilege escalation vulnerability (CVSS 7.8) that requires local…
Trend Micro
Trend Micro, a major cybersecurity software vendor, has a critical vulnerability (CVSS 9.9) that can be exploited remotely by authenticated users…
Lightning AI
Lightning AI is a company known for machine learning and AI development tools.
Quest
Quest Software, known for IT management and backup solutions, has a high-severity vulnerability (CVSS 8.8) that can be exploited remotely by an…
Quest
Quest Software, a well-known enterprise software vendor, has a high-severity vulnerability (CVSS 8.8) that can be exploited remotely by authenticated…
Quest
Quest Software, a major provider of IT management and security solutions, has a high-severity vulnerability (CVSS 8.8) that can be exploited remotely…
Quest
A high-severity vulnerability (CVSS 8.8) has been discovered in Quest software, a vendor known for identity and access management solutions.
Quest
Quest Software, a vendor specializing in identity and access management, backup, and disaster recovery solutions, has a high-severity vulnerability…
Quest
Quest Software has a high-severity vulnerability (CVSS 8.8) that can be exploited remotely by an authenticated attacker with no user interaction…
Quest
Quest Software, known for backup, recovery, and identity management solutions, has a high-severity vulnerability (CVSS 8.8) that can be exploited…
Quest
Quest Software, a provider of IT management and security solutions, has a high-severity vulnerability (CVSS 8.8) that can be exploited remotely by…
Quest
Quest Software has a high-severity vulnerability (CVSS 8.8) that can be exploited remotely by authenticated users without requiring user interaction,…
Medplum
Medplum is a healthcare data platform that manages patient records and medical information systems.
EmbedThis
EmbedThis is a vendor known for embedded web server and IoT connectivity software used in various networked devices.
Trend Micro
Trend Micro is a well-established cybersecurity software vendor known for antivirus, endpoint protection, and cloud security solutions.
Quest
Quest Software, known for IT management and security solutions, has a critical remote vulnerability (ZDI-CAN-28202) with a CVSS score of 8.8 that…
EmbedThis
EmbedThis, known for embedded web server and IoT connectivity solutions, has a high-severity vulnerability (CVSS 7.5) that requires adjacent network…
Trend Micro
Trend Micro, a major cybersecurity and antivirus software vendor, has a medium-severity vulnerability (CVSS 5.3) that allows authenticated attackers…
BusyBox
BusyBox is a widely-used lightweight Unix utility suite commonly embedded in Linux distributions, IoT devices, and embedded systems.
Adobe
Adobe has released a high-severity vulnerability (CVSS 7.8) affecting one of their products that requires local access and user interaction to…
Apple
Apple, a major technology company known for iPhones, Macs, and iOS/macOS operating systems, has a high-severity vulnerability (CVSS 8.8) reported by…
All Hands
A critical remote code execution vulnerability (CVSS 9.8) has been discovered in All Hands' product that requires no authentication or user…
Trend Micro
Trend Micro is a well-known cybersecurity software vendor that produces antivirus, endpoint protection, and threat defense solutions.
Trend Micro
Trend Micro is a major cybersecurity vendor known for antivirus, endpoint protection, and cloud security products.
Allegra
Allegra's product contains a medium-severity vulnerability (CVSS 4.6) that can be exploited remotely by an authenticated user through a clickable…