Skip to main content

ZDI Advisories

1275 advisories

Zero Day Initiative vulnerability advisories – published disclosures and upcoming publications.

ZDI-26-045 5.3 CVE-2026-20027 Cisco Jan 28, 2026

Cisco Snort _bnfa_search_csparse_nfa Out-Of-Bounds Read Information Disclosure Vulnerability

Cisco Snort contains a medium-severity information disclosure vulnerability (CVE-2026-20027) that allows unauthenticated remote attackers to access…

ZDI-CAN-28673 7.8 Upcoming – -52d pdfforge Jan 27, 2026

pdfforge

pdfforge is a vendor known for PDF manipulation and conversion software tools.

ZDI-CAN-27843 7.8 Upcoming – -87d Delta Electronics Jan 22, 2026

Delta Electronics

Delta Electronics, a major industrial automation and power management company, has a high-severity local vulnerability (CVSS 7.8) that requires user…

ZDI-CAN-28759 8.8 Upcoming – -57d Siemens Jan 22, 2026

Siemens

Siemens, a major industrial automation and control systems manufacturer, has a high-severity vulnerability (CVSS 8.8) that can be exploited remotely…

ZDI-CAN-28327 8.8 Upcoming – -57d QNAP Jan 22, 2026

QNAP

QNAP is a leading manufacturer of network-attached storage (NAS) devices used by businesses and consumers for data backup and management.

ZDI-CAN-28834 7.8 Upcoming – -57d Netdata Jan 22, 2026

Netdata

Netdata is a popular open-source real-time system monitoring and visualization platform.

ZDI-CAN-28675 7.8 Upcoming – -57d Ashlar-Vellum Jan 22, 2026

Ashlar-Vellum

Ashlar-Vellum is a software company known for design and visualization tools used in architecture and engineering.

ZDI-CAN-28516 7.8 Upcoming – -59d NI Jan 20, 2026

NI

National Instruments (NI) has a high-severity vulnerability (CVSS 7.8) that requires local access and user interaction to exploit, but when…

ZDI-CAN-28892 6.7 Upcoming – -66d Linux Jan 13, 2026

Linux

A medium-severity vulnerability (CVSS 6.7) has been discovered in Linux that requires local access and high-level privileges to exploit, resulting in…

ZDI-CAN-28893 8.2 Upcoming – -66d Linux Jan 13, 2026

Linux

A high-severity vulnerability (CVSS 8.2) has been discovered in Linux that requires local access and high-level privileges to exploit, but once…

ZDI-CAN-28540 7.8 Upcoming – -67d Microsoft Jan 12, 2026

Microsoft

Microsoft has disclosed a high-severity vulnerability (CVSS 7.8) that requires local access and low-level user privileges to exploit, but delivers…

ZDI-CAN-28605 4.4 Upcoming – -67d Microsoft Jan 12, 2026

Microsoft

Microsoft has released a medium-severity vulnerability (CVSS 4.4) that requires local access and low-level user privileges to exploit, with no user…

ZDI-CAN-28822 8.8 Upcoming – -70d Docker Jan 09, 2026

Docker

A high-severity privilege escalation vulnerability (CVSS 8.8) has been discovered in Docker, the widely-used containerization platform, requiring…

ZDI-CAN-28710 7.8 Upcoming – -70d FontForge Jan 09, 2026

FontForge

FontForge is an open-source font editor software used for creating and modifying typeface files.

ZDI-CAN-27921 7.8 Upcoming – -71d Trend Micro Jan 08, 2026

Trend Micro

Trend Micro is a major cybersecurity software vendor known for antivirus, endpoint protection, and cloud security products.

ZDI-CAN-28559 7.8 Upcoming – -71d Microsoft Jan 08, 2026

Microsoft

Microsoft has released a high-severity vulnerability (CVSS 7.8) that requires local access and low-level user privileges to exploit, but delivers…

ZDI-CAN-28724 5.5 Upcoming – -71d Cisco Jan 08, 2026

Cisco

Cisco, a major networking and security equipment manufacturer, has a medium-severity vulnerability (CVSS 5.5) that requires high-level privileges and…

ZDI-CAN-28649 7.8 Upcoming – -73d NVIDIA Jan 06, 2026

NVIDIA

NVIDIA, a leading manufacturer of graphics processors and AI computing hardware, has a high-severity local vulnerability (CVSS 7.8) that requires…

ZDI-CAN-28536 7.8 Upcoming – -79d NVIDIA Dec 31, 2025

NVIDIA

NVIDIA, a major manufacturer of graphics processors and AI computing hardware, has a high-severity local vulnerability (CVSS 7.8) that requires user…

ZDI-CAN-28595 7.8 Upcoming – -79d Foxit Dec 31, 2025

Foxit

Foxit is a well-known software company specializing in PDF readers and document management solutions.

ZDI-CAN-28646 7.8 Upcoming – -86d Krita Dec 24, 2025

Krita

Krita is a popular open-source digital painting and illustration software used by artists and designers.

ZDI-CAN-27564 7.3 Upcoming – -86d Siemens Dec 24, 2025

Siemens

Siemens, a major industrial automation and control systems manufacturer, has a high-severity vulnerability (CVSS 7.3) that can be exploited remotely…

ZDI-CAN-28657 7.8 Upcoming – -86d Krita Dec 24, 2025

Krita

Krita is a popular open-source digital painting and illustration software.

ZDI-CAN-28656 7.8 Upcoming – -86d Krita Dec 24, 2025

Krita

Krita is a popular open-source digital painting and illustration software.

ZDI-CAN-28494 7.8 Upcoming – -86d NoMachine Dec 24, 2025

NoMachine

NoMachine is a remote desktop and access software company. This high-severity vulnerability (CVSS 7.8) requires local access and low-level privileges…

ZDI-CAN-28205 7.0 Upcoming – -87d Microsoft Dec 23, 2025

Microsoft

Microsoft has a high-severity vulnerability (CVSS 7.0) that requires local access and low-level user privileges to exploit, but once compromised…

ZDI-CAN-28054 7.8 Upcoming – -87d Microsoft Dec 23, 2025

Microsoft

Microsoft has a high-severity local privilege escalation vulnerability (CVSS 7.8) that requires user interaction but no authentication to exploit,…

ZDI-CAN-27465 7.8 Upcoming – -87d Oumi Dec 23, 2025

Oumi

A high-severity vulnerability (CVSS 7.8) has been discovered in Oumi's product that allows local attackers to achieve significant compromise without…

ZDI-CAN-28593 7.8 Upcoming – -92d X.Org Dec 18, 2025

X.Org

X.Org is the open-source organization responsible for the X Window System, the fundamental display server used in most Linux and Unix environments.

ZDI-CAN-28708 4.9 Upcoming – -92d Cisco Dec 18, 2025

Cisco

This vulnerability affects Cisco, a major networking and cybersecurity infrastructure vendor.

Prev Page 38 of 43 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy