Skip to main content

ZDI Advisories

400 advisories

Zero Day Initiative vulnerability advisories – published disclosures and upcoming publications.

ZDI-26-209 5.0 CVE-2025-21079 Samsung Mar 16, 2026

Samsung Galaxy S25 Samsung Members Open Redirect Security Bypass Vulnerability

A medium-severity security bypass vulnerability exists in Samsung Galaxy S25 devices that allows remote attackers to circumvent security controls…

ZDI-26-199 5.5 CVE-2025-62848 QNAP Mar 16, 2026

QNAP TS-453E conn_log_tool Format String Remote Code Execution Vulnerability

A network-adjacent attacker can execute arbitrary code on QNAP TS-453E NAS devices (CVE-2025-62848) by bypassing the authentication mechanism,…

ZDI-26-206 8.8 CVE-2025-14235 Canon Mar 16, 2026

Canon imageCLASS MF654Cdw TTF Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

Canon imageCLASS MF654Cdw printers contain a critical vulnerability (CVE-2025-14235) that allows network-adjacent attackers to execute arbitrary code…

ZDI-26-203 8.8 CVE-2025-14231 Canon Mar 16, 2026

Canon imageCLASS MF654Cdw XML SOAP Request Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

A critical remote code execution vulnerability (CVE-2025-14231) has been discovered in Canon imageCLASS MF654Cdw printers, allowing unauthenticated…

ZDI-26-213 7.8 CVE-2026-2046 GIMP Mar 16, 2026

GIMP LBM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

GIMP contains a remote code execution vulnerability (CVE-2026-2046) that allows attackers to execute arbitrary code if a user opens a malicious file…

ZDI-26-208 8.8 CVE-2025-14237 Canon Mar 16, 2026

Canon imageCLASS MF654Cdw TTF Parsing Integer Overflow Remote Code Execution Vulnerability

A critical vulnerability (CVE-2025-14237) in Canon imageCLASS MF654Cdw printers allows unauthenticated attackers on the network to execute arbitrary…

ZDI-26-202 8.0 CVE-2025-59389 QNAP Mar 16, 2026

QNAP TS-453E Hyper Data Protector Plugin query_original_file_size SQL Injection Remote Code Execution Vulnerability

A critical vulnerability in QNAP TS-453E NAS devices (CVE-2025-59389) allows network-adjacent attackers to execute arbitrary code by bypassing the…

ZDI-26-207 8.8 CVE-2025-14236 Canon Mar 16, 2026

Canon imageCLASS MF654Cdw dtdc_addr_importSub Stack-based Buffer Overflow Remote Code Execution Vulnerability

Canon imageCLASS MF654Cdw printers contain a network-based vulnerability (CVE-2025-14236) that allows unauthenticated attackers to execute arbitrary…

ZDI-26-205 8.8 CVE-2025-14234 Canon Mar 16, 2026

Canon imageCLASS MF654Cdw PJCC Request Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

Canon imageCLASS MF654Cdw printers contain a critical remote code execution vulnerability (CVE-2025-14234) that allows network-adjacent attackers to…

ZDI-26-198 8.8 CVE-2025-11837 QNAP Mar 16, 2026

QNAP TS-453E malware_remover Code Injection Remote Code Execution Vulnerability

A critical unauthenticated remote code execution vulnerability (CVE-2025-11837) has been identified in QNAP TS-453E NAS devices, allowing…

ZDI-26-197 7.5 CVE-2026-4157 ChargePoint Mar 16, 2026

ChargePoint Home Flex revssh Service Command Injection Remote Code Execution Vulnerability

ChargePoint Home Flex devices contain a critical vulnerability (CVE-2026-4157) that allows unauthenticated, network-adjacent attackers to execute…

ZDI-26-204 8.8 CVE-2025-14232 Canon Mar 16, 2026

Canon imageCLASS MF654Cdw XPS Parser Stack-based Buffer Overflow Remote Code Execution Vulnerability

CVE-2025-14232 is a critical remote code execution vulnerability affecting Canon imageCLASS MF654Cdw printers that allows unauthenticated,…

ZDI-26-196 7.5 CVE-2026-4156 ChargePoint Mar 16, 2026

ChargePoint Home Flex OCPP getpreq Stack-based Buffer Overflow Remote Code Execution Vulnerability

ChargePoint Home Flex EV chargers contain a critical vulnerability (CVE-2026-4156) that allows network-adjacent attackers to execute arbitrary code…

ZDI-26-200 8.0 CVE-2025-62849 QNAP Mar 16, 2026

QNAP TS-453E nvrlog_event_add msg SQL Injection Remote Code Execution Vulnerability

A high-severity remote code execution vulnerability (CVE-2025-62849) affects QNAP TS-453E network-attached storage devices, allowing network-adjacent…

ZDI-26-195 7.5 CVE-2026-4155 ChargePoint Mar 16, 2026

ChargePoint Home Flex Inclusion of Sensitive Information in Source Code Information Disclosure Vulnerability

ChargePoint Home Flex charging stations contain a high-severity vulnerability (CVE-2026-4155, CVSS 7.5) that allows unauthenticated remote attackers…

ZDI-26-191 8.8 CVE-2022-32250 Linux Mar 16, 2026

Linux Kernel nf_tables Use-After-Free Privilege Escalation Vulnerability

CVE-2022-32250 is a privilege escalation vulnerability in the Linux Kernel that allows local attackers with low-privileged code execution to escalate…

ZDI-26-193 3.8 CVE-2022-1972 Linux Mar 16, 2026

Linux Kernel nf_tables_newset Out-Of-Bounds Write Information Disclosure Vulnerability

This vulnerability in the Linux Kernel allows local attackers to read sensitive information on affected systems, but requires them to already have…

ZDI-26-201 6.3 CVE-2025-59388 QNAP Mar 16, 2026

QNAP TS-453E Hyper Data Protector Plugin Hard-Coded Credentials Authentication Bypass Vulnerability

A medium-severity authentication bypass vulnerability (CVE-2025-59388) affects QNAP TS-453E NAS devices, allowing network-adjacent attackers to gain…

ZDI-26-183 7.8 CVE-2026-24285 Microsoft Mar 10, 2026

Microsoft Windows win32full Improper Release Local Privilege Escalation Vulnerability

A privilege escalation vulnerability (CVE-2026-24285) has been identified in Microsoft Windows with a CVSS score of 7.8.

ZDI-26-175 3.3 CVE-2026-20634 Apple Mar 10, 2026

Apple macOS ImageIO SGI File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

A low-severity information disclosure vulnerability exists in Apple's macOS ImageIO framework (CVE-2026-20634) that allows remote attackers to access…

ZDI-26-179 8.8 CVE-2026-23668 Microsoft Mar 10, 2026

Microsoft Windows win32kfull Improper Locking Local Privilege Escalation Vulnerability

CVE-2026-23668 is a high-severity privilege escalation vulnerability in Microsoft Windows that allows local attackers to gain elevated system…

ZDI-26-181 7.8 CVE-2026-24285 Microsoft Mar 10, 2026

Microsoft Windows win32full Improper Release Local Privilege Escalation Vulnerability

Microsoft Windows contains a privilege escalation vulnerability (CVE-2026-24285) that allows local attackers with low-privileged code execution to…

ZDI-26-184 7.8 CVE-2026-24289 Microsoft Mar 10, 2026

Microsoft Windows NDIS Driver Use-After-Free Local Privilege Escalation Vulnerability

This is a privilege escalation vulnerability affecting Microsoft Windows (CVE-2026-24289) with a CVSS score of 7.8, allowing local attackers to gain…

ZDI-26-177 7.8 CVE-2026-26364 Array Mar 10, 2026

Array Networks MotionPro ArrayInstallManager Incorrect Permission Assignment Local Privilege Escalation Vulnerability

A privilege escalation vulnerability (CVE-2026-26364) in Array Networks MotionPro allows attackers with low-level code execution to gain elevated…

ZDI-26-174 7.8 CVE-2026-20675 Apple Mar 10, 2026

Apple macOS ImageIO SGI File Parsing Integer Overflow Remote Code Execution Vulnerability

CVE-2026-20675 is a high-severity remote code execution vulnerability in Apple's macOS ImageIO library that allows attackers to execute arbitrary…

ZDI-26-185 3.3 CVE-2026-25181 Microsoft Mar 10, 2026

Microsoft Windows GDI Bitmap Parsing Out-Of-Bound Read Information Disclosure Vulnerability

This vulnerability in Microsoft Windows GDI library allows remote attackers to access sensitive information without requiring user authentication.

ZDI-26-176 7.8 CVE-2026-20616 Apple Mar 10, 2026

Apple macOS libusd_ms Alembic File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

A high-severity remote code execution vulnerability (CVE-2026-20616) has been discovered in Apple macOS that allows attackers to execute arbitrary…

ZDI-26-173 7.8 CVE-2026-20611 Apple Mar 10, 2026

Apple macOS Audio APAC Frame Decoding Out-Of-Bounds Write Remote Code Execution Vulnerability

Apple macOS contains a remote code execution vulnerability (CVE-2026-20611) with a CVSS score of 7.8 that can be exploited when users interact with…

ZDI-26-178 8.8 CVE-2026-23668 Microsoft Mar 10, 2026

Microsoft Windows cdd Improper Locking Local Privilege Escalation Vulnerability

A privilege escalation vulnerability (CVE-2026-23668) in Microsoft Windows allows attackers who already have low-level code execution to gain…

ZDI-26-182 7.8 CVE-2026-24285 Microsoft Mar 10, 2026

Microsoft Windows win32full Improper Release Local Privilege Escalation Vulnerability

This vulnerability is a privilege escalation flaw in Microsoft Windows (CVE-2026-24285) that allows attackers with low-level code execution to gain…

Prev Page 9 of 14 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy