attack_Feed
Vulnerability Alerts

Vulnerability Alerts

CVEs, zero-days, exploits, and security advisories

All FeedsAttack & NewsGov Alerts / ISACVulnerability AlertsPrivacy & GovernanceFraud & Scams
363 articles
VULNcriticalZero Day Initiative2 months ago

ZDI-26-257: (0Day) Labcenter Electronics Proteus PDSPRJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

VULNhighMandiant2 months ago

vSphere and BRICKSTORM Malware: A Defender's Guide

VULNhighwatchTowr Labs2 months ago

You’re Not Supposed To ShareFile With Everyone (Progress ShareFile Pre-Auth RCE Chain CVE-2026-2699 & CVE-2026-2701)

VULNhighZero Day Initiative2 months ago

ZDI-26-251: Foxit PDF Reader Update Service Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

VULNhighZero Day Initiative2 months ago

ZDI-26-253: Microsoft Visual Studio Code mcp.json Command Injection Remote Code Execution Vulnerability

VULNhighZero Day Initiative2 months ago

ZDI-26-252: Mozilla Firefox IonMonkey Switch Statement Optimization Type Confusion Remote Code Execution Vulnerability

VULNMandiant2 months ago

North Korea-Nexus Threat Actor Compromises Widely Used Axios NPM Package in Supply Chain Attack

VULNhighZero Day Initiative2 months ago

ZDI-26-250: Linux Kernel Analog Device Driver Improper Validation of Array Index Local Privilege Escalation Vulnerability

VULNhighZero Day Initiative2 months ago

ZDI-26-229: OpenClaw Client PKCE Verifier Information Disclosure Vulnerability

VULNhighZero Day Initiative2 months ago

ZDI-26-244: (Pwn2Own) QNAP QHora-322 miro_webserver_controllers_api_login_singIn Authentication Bypass Vulnerability

VULNhighZero Day Initiative2 months ago

ZDI-26-231: Apple macOS Exposure of Sensitive Information to Unauthorized Sphere Information Disclosure Vulnerability

VULNhighZero Day Initiative2 months ago

ZDI-26-248: NoMachine External Control of File Path Local Privilege Escalation Vulnerability

VULNhighZero Day Initiative2 months ago

ZDI-26-247: NoMachine External Control of File Path Arbitrary File Deletion Vulnerability

VULNcriticalZero Day Initiative2 months ago

ZDI-26-246: (0Day) aws-mcp-server Command Injection Remote Code Execution Vulnerability

VULNhighZero Day Initiative2 months ago

ZDI-26-243: (Pwn2Own) QNAP TS-453E write_file_to_svr External Control of File Path Remote Code Execution Vulnerability

VULNhighZero Day Initiative2 months ago

ZDI-26-242: (Pwn2Own) QNAP TS-453E server_handlers.pyc rr2s.kwargs Error Message Information Disclosure Vulnerability

VULNhighZero Day Initiative2 months ago

ZDI-26-241: (Pwn2Own) QNAP QHora-322 qvpn_db_mgr username SQL Injection Remote Code Execution Vulnerability

VULNhighZero Day Initiative2 months ago

ZDI-26-240: (Pwn2Own) QNAP QHora-322 qvpn_db_mgr role_type Improper Neutralization of Escape Sequences Authentication Bypass Vulnerability

VULNhighZero Day Initiative2 months ago

ZDI-26-239: (Pwn2Own) QNAP QHora-322 login.newAuthMiddleware.Authenticator Authentication Bypass Vulnerability

VULNhighZero Day Initiative2 months ago

ZDI-26-227: OpenClaw Canvas Path Traversal Information Disclosure Vulnerability

VULNhighZero Day Initiative2 months ago

ZDI-26-228: OpenClaw Canvas Authentication Bypass Vulnerability

VULNhighZero Day Initiative2 months ago

ZDI-26-238: Linux Kernel AoE Driver Use-After-Free Local Privilege Escalation Vulnerability

VULNhighZero Day Initiative2 months ago

ZDI-26-237: (Pwn2Own) QNAP QHora-322 ip6_wanifset Improper Restriction of Communication Channel to Intended Endpoints Firewall Bypass Vulnerability

VULNhighZero Day Initiative2 months ago

ZDI-26-236: Digilent DASYLab DSB File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

VULNhighZero Day Initiative2 months ago

ZDI-26-235: Digilent DASYLab DSA File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

VULNhighZero Day Initiative2 months ago

ZDI-26-234: Digilent DASYLab DSA File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

VULNhighZero Day Initiative2 months ago

ZDI-26-233: Digilent DASYLab DSA File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

VULNhighZero Day Initiative2 months ago

ZDI-26-232: (Pwn2Own) Red Hat Enterprise Linux vmwgfx Driver Integer Overflow Local Privilege Escalation Vulnerability

VULNhighZero Day Initiative2 months ago

ZDI-26-230: Apple macOS CoreMedia Framework Out-Of-Bounds Write Remote Code Execution Vulnerability

VULNhighZero Day Initiative2 months ago

ZDI-26-249: NoMachine Uncontrolled Search Path Element Local Privilege Escalation Vulnerability