ZDI Advisories
1275 advisoriesZero Day Initiative vulnerability advisories – published disclosures and upcoming publications.
Cisco Snort _bnfa_search_csparse_nfa Out-Of-Bounds Read Information Disclosure Vulnerability
Cisco Snort contains a medium-severity information disclosure vulnerability (CVE-2026-20027) that allows unauthenticated remote attackers to access…
pdfforge
pdfforge is a vendor known for PDF manipulation and conversion software tools.
Delta Electronics
Delta Electronics, a major industrial automation and power management company, has a high-severity local vulnerability (CVSS 7.8) that requires user…
Siemens
Siemens, a major industrial automation and control systems manufacturer, has a high-severity vulnerability (CVSS 8.8) that can be exploited remotely…
QNAP
QNAP is a leading manufacturer of network-attached storage (NAS) devices used by businesses and consumers for data backup and management.
Netdata
Netdata is a popular open-source real-time system monitoring and visualization platform.
Ashlar-Vellum
Ashlar-Vellum is a software company known for design and visualization tools used in architecture and engineering.
NI
National Instruments (NI) has a high-severity vulnerability (CVSS 7.8) that requires local access and user interaction to exploit, but when…
Linux
A medium-severity vulnerability (CVSS 6.7) has been discovered in Linux that requires local access and high-level privileges to exploit, resulting in…
Linux
A high-severity vulnerability (CVSS 8.2) has been discovered in Linux that requires local access and high-level privileges to exploit, but once…
Microsoft
Microsoft has disclosed a high-severity vulnerability (CVSS 7.8) that requires local access and low-level user privileges to exploit, but delivers…
Microsoft
Microsoft has released a medium-severity vulnerability (CVSS 4.4) that requires local access and low-level user privileges to exploit, with no user…
Docker
A high-severity privilege escalation vulnerability (CVSS 8.8) has been discovered in Docker, the widely-used containerization platform, requiring…
FontForge
FontForge is an open-source font editor software used for creating and modifying typeface files.
Trend Micro
Trend Micro is a major cybersecurity software vendor known for antivirus, endpoint protection, and cloud security products.
Microsoft
Microsoft has released a high-severity vulnerability (CVSS 7.8) that requires local access and low-level user privileges to exploit, but delivers…
Cisco
Cisco, a major networking and security equipment manufacturer, has a medium-severity vulnerability (CVSS 5.5) that requires high-level privileges and…
NVIDIA
NVIDIA, a leading manufacturer of graphics processors and AI computing hardware, has a high-severity local vulnerability (CVSS 7.8) that requires…
NVIDIA
NVIDIA, a major manufacturer of graphics processors and AI computing hardware, has a high-severity local vulnerability (CVSS 7.8) that requires user…
Foxit
Foxit is a well-known software company specializing in PDF readers and document management solutions.
Krita
Krita is a popular open-source digital painting and illustration software used by artists and designers.
Siemens
Siemens, a major industrial automation and control systems manufacturer, has a high-severity vulnerability (CVSS 7.3) that can be exploited remotely…
Krita
Krita is a popular open-source digital painting and illustration software.
Krita
Krita is a popular open-source digital painting and illustration software.
NoMachine
NoMachine is a remote desktop and access software company. This high-severity vulnerability (CVSS 7.8) requires local access and low-level privileges…
Microsoft
Microsoft has a high-severity vulnerability (CVSS 7.0) that requires local access and low-level user privileges to exploit, but once compromised…
Microsoft
Microsoft has a high-severity local privilege escalation vulnerability (CVSS 7.8) that requires user interaction but no authentication to exploit,…
Oumi
A high-severity vulnerability (CVSS 7.8) has been discovered in Oumi's product that allows local attackers to achieve significant compromise without…
X.Org
X.Org is the open-source organization responsible for the X Window System, the fundamental display server used in most Linux and Unix environments.
Cisco
This vulnerability affects Cisco, a major networking and cybersecurity infrastructure vendor.