Vulnerability Alerts
Vulnerability Alerts
CVEs, zero-days, exploits, and security advisories
VULNCheck Point Researchabout 1 month ago
VECT: Ransomware by design, Wiper by accident
VULNcriticalZero Day Initiativeabout 1 month ago
ZDI-26-305: (0Day) OpenAI Codex Sandbox Escape Vulnerability
VULNhighZero Day Initiativeabout 1 month ago
ZDI-26-306: Oracle VirtualBox SoundBlaster 16 Race Condition Local Privilege Escalation Vulnerability
VULNCheck Point Researchabout 1 month ago
27th April – Threat Intelligence Report
VULNhighZero Day Initiativeabout 1 month ago
ZDI-26-301: Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability
VULNhighZero Day Initiativeabout 1 month ago
ZDI-26-302: Foxit PDF Reader AcroForm Signature Use-After-Free Remote Code Execution Vulnerability
VULNhighZero Day Initiativeabout 1 month ago
ZDI-26-303: Foxit PDF Reader AcroForm Signature Use-After-Free Information Disclosure Vulnerability
VULNhighZero Day Initiativeabout 1 month ago
ZDI-26-300: Flowise AccountService resetPassword Authentication Bypass Vulnerability
VULNhighZero Day Initiativeabout 1 month ago
ZDI-26-304: Foxit PDF Reader AcroForm Annotation Use-After-Free Remote Code Execution Vulnerability
VULNhighMandiantabout 2 months ago
Snow Flurries: How UNC6692 Employed Social Engineering to Deploy a Custom Malware Suite
VULNhighZero Day Initiativeabout 2 months ago
ZDI-26-299: Docker Desktop Enhanced Container Isolation Exposed Dangerous Function Local Privilege Escalation Vulnerability
VULNhighZero Day Initiativeabout 2 months ago
ZDI-26-296: Delta Electronics ASDA-Soft PAR File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
VULNhighZero Day Initiativeabout 2 months ago
ZDI-26-297: Siemens SINEC NMS Improper Authentication Privilege Escalation Vulnerability
VULNhighZero Day Initiativeabout 2 months ago
ZDI-26-298: Siemens SINEC NMS Authentication Bypass Vulnerability
VULNcriticalZero Day Initiativeabout 2 months ago
ZDI-26-293: (0Day) Microsoft Office URI Handler NTLM Response Information Disclosure Vulnerability
VULNcriticalZero Day Initiativeabout 2 months ago
ZDI-26-245: (0Day) aws-mcp-server AWS CLI Command Injection Remote Code Execution Vulnerability
VULNcriticalZero Day Initiativeabout 2 months ago
ZDI-26-294: (0Day) Microsoft Windows library-ms NTLM Response Information Disclosure Vulnerability
VULNcriticalZero Day Initiativeabout 2 months ago
ZDI-26-295: (0Day) PublicCMS getXml Server-Side Request Forgery Information Disclosure Vulnerability
VULNCheck Point Researchabout 2 months ago
20th April – Threat Intelligence Report
VULNCheck Point Researchabout 2 months ago
DFIR Report – The Gentlemen & SystemBC: A Sneak Peek Behind the Proxy
VULNhighMandiantabout 2 months ago
Defending Your Enterprise When AI Models Can Find Vulnerabilities Faster Than Ever
VULNMandiantabout 2 months ago
The German Cyber Criminal Überfall: Shifts in Europe's Data Leak Landscape
VULNhighZero Day Initiativeabout 2 months ago
ZDI-26-263: Adobe ColdFusion subscribeToEndpoints Authentication Bypass Vulnerability
VULNhighZero Day Initiativeabout 2 months ago
ZDI-26-267: Malwarebytes Anti-Malware Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
VULNhighZero Day Initiativeabout 2 months ago
ZDI-26-269: TrendAI Apex One Console Directory Traversal Remote Code Execution Vulnerability
VULNhighZero Day Initiativeabout 2 months ago
ZDI-26-268: Samsung MagicINFO 9 Server Incorrect Default Permissions Local Privilege Escalation Vulnerability
VULNhighZero Day Initiativeabout 2 months ago
ZDI-26-270: TrendAI Apex One Console Directory Traversal Remote Code Execution Vulnerability
VULNhighZero Day Initiativeabout 2 months ago
ZDI-26-272: ATEN Unizon RpcProvider Missing Authentication Denial-of-Service Vulnerability
VULNhighZero Day Initiativeabout 2 months ago
ZDI-26-274: Microsoft Qlib fit Deserialization of Untrusted Data Remote Code Execution Vulnerability
VULNhighZero Day Initiativeabout 2 months ago