ZERO-DAY  2026  2025  2024  2023

ZDI ID AFFECTED VENDOR(S) CVE  
ZDI-26-317 Siemens CVE-2025-12659 Siemens Simcenter Femap IPT File Parsing Memory Corruption Remote Code Execution Vulnerability
ZDI-26-316 Siemens CVE-2025-12659 Siemens Simcenter Femap IPT File Parsing Memory Corruption Remote Code Execution Vulnerability
ZDI-26-315 Apple CVE-2026-28941 Apple macOS USD Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-26-314 Apple CVE-2026-28940 Apple macOS USD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-26-313 Apple CVE-2026-28847 Apple Safari Regular Expression Duplicate Named Groups Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-312 Apple CVE-2026-28955 Apple Safari Web Inspector WebCore Style Resolver Use-After-Free Remote Code Execution Vulnerability
ZDI-26-311 Apple CVE-2026-28918 Apple macOS CoreSymbolication Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-26-310 Microsoft CVE-2026-34342 Microsoft Windows splwow64 Race Condition Local Privilege Escalation Vulnerability
ZDI-26-309 Microsoft CVE-2026-33838 Microsoft Windows Message Queueing Double Free Local Privilege Escalation Vulnerability
ZDI-26-308 Ivanti CVE-2026-8109 Ivanti Endpoint Manager RemoteControlAuth Exposed Dangerous Method Information Disclosure Vulnerability
ZDI-26-307 Flowise CVE-2026-41265 FlowiseAI Flowise Airtable_Agent Code Injection Remote Code Execution Vulnerability
ZDI-26-306 Oracle CVE-2026-35230 Oracle VirtualBox SoundBlaster 16 Race Condition Local Privilege Escalation Vulnerability
ZDI-26-305 OpenAI (0Day) OpenAI Codex Sandbox Escape Vulnerability
ZDI-26-304 Foxit CVE-2026-5943 Foxit PDF Reader AcroForm Annotation Use-After-Free Remote Code Execution Vulnerability
ZDI-26-303 Foxit CVE-2026-5942 Foxit PDF Reader AcroForm Signature Use-After-Free Information Disclosure Vulnerability
ZDI-26-302 Foxit CVE-2026-5941 Foxit PDF Reader AcroForm Signature Use-After-Free Remote Code Execution Vulnerability
ZDI-26-301 Foxit CVE-2026-5940 Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability
ZDI-26-300 Flowise CVE-2026-41276 Flowise AccountService resetPassword Authentication Bypass Vulnerability
ZDI-26-299 Docker CVE-2026-6406 Docker Desktop Enhanced Container Isolation Exposed Dangerous Function Local Privilege Escalation Vulnerability
ZDI-26-298 Siemens CVE-2026-24032 Siemens SINEC NMS Authentication Bypass Vulnerability
ZDI-26-297 Siemens CVE-2026-25654 Siemens SINEC NMS Improper Authentication Privilege Escalation Vulnerability
ZDI-26-296 Delta Electronics CVE-2026-5726 Delta Electronics ASDA-Soft PAR File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-295 PublicCMS (0Day) PublicCMS getXml Server-Side Request Forgery Information Disclosure Vulnerability
ZDI-26-294 Microsoft (0Day) Microsoft Windows library-ms NTLM Response Information Disclosure Vulnerability
ZDI-26-293 Microsoft (0Day) Microsoft Office URI Handler NTLM Response Information Disclosure Vulnerability
ZDI-26-292 QNAP CVE-2026-22898 QNAP TS-453E QVRPro excpostgres Exposed Dangerous Method Remote Code Execution Vulnerability
ZDI-26-291 NI CVE-2026-32861 NI LabVIEW LVCLASS File Parsing Memory Corruption Remote Code Execution Vulnerability
ZDI-26-290 NI CVE-2026-32860 NI LabVIEW LVLIB File Parsing Memory Corruption Remote Code Execution Vulnerability
ZDI-26-289 Linux CVE-2025-71066 Linux Kernel ETS Scheduler Race Condition Local Privilege Escalation Vulnerability
ZDI-26-288 DriveLock CVE-2026-5492 DriveLock Directory Traversal Information Disclosure Vulnerability
ZDI-26-287 DriveLock CVE-2026-5491 DriveLock Directory Traversal Information Disclosure Vulnerability
ZDI-26-286 DriveLock CVE-2026-5490 DriveLock SQL Injection Privilege Escalation Vulnerability
ZDI-26-285 DriveLock CVE-2026-5489 DriveLock Directory Traversal Information Disclosure Vulnerability
ZDI-26-284 DriveLock CVE-2026-5487 DriveLock Directory Traversal Information Disclosure Vulnerability
ZDI-26-283 GStreamer CVE-2026-5056 GStreamer qtdemux Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-282 GIMP CVE-2026-2050 GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-281 Microsoft CVE-2026-34054 Microsoft vcpkg OpenSSL Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
ZDI-26-280 HP CVE-2026-4682 (Pwn2Own) HP DeskJet 2855e JobStatusEvent Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-279 Microsoft CVE-2026-32183 Microsoft Windows Snipping Tool Improper Input Validation Remote Code Execution Vulnerability
ZDI-26-278 Microsoft CVE-2026-33104 Microsoft Windows win32kfull Improper Locking Local Privilege Escalation Vulnerability
ZDI-26-277 Microsoft CVE-2026-32073 Microsoft Windows afd.sys Race Condition Local Privilege Escalation Vulnerability
ZDI-26-276 Microsoft CVE-2026-26179 Microsoft Windows Secure Kernel Double Free Local Privilege Escalation Vulnerability
ZDI-26-275 Microsoft Microsoft Qlib _mount_nfs_uri Command Injection Remote Code Execution Vulnerability
ZDI-26-274 Microsoft Microsoft Qlib fit Deserialization of Untrusted Data Remote Code Execution Vulnerability
ZDI-26-273 Microsoft Microsoft Olive Deserialization of Untrusted Data Remote Code Execution Vulnerability
ZDI-26-272 ATEN CVE-2026-5057 ATEN Unizon RpcProvider Missing Authentication Denial-of-Service Vulnerability
ZDI-26-271 Avast CVE-2026-5424 Avast Premium Security Gen Self Protection Driver Exposed Dangerous Function Local Privilege Escalation Vulnerability
ZDI-26-270 TrendAI CVE-2025-54987 TrendAI Apex One Console Directory Traversal Remote Code Execution Vulnerability
ZDI-26-269 TrendAI CVE-2025-54948 TrendAI Apex One Console Directory Traversal Remote Code Execution Vulnerability
ZDI-26-268 Samsung CVE-2026-25203 Samsung MagicINFO 9 Server Incorrect Default Permissions Local Privilege Escalation Vulnerability
ZDI-26-267 Malwarebytes Malwarebytes Anti-Malware Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
ZDI-26-266 Fortinet CVE-2026-40688 Fortinet FortiWeb cat_cgi_paths Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-26-265 Fortinet CVE-2026-39811 Fortinet FortiWeb cgi_buf_alloc Integer Overflow Denial-of-Service Vulnerability
ZDI-26-264 Adobe CVE-2026-27305 Adobe ColdFusion fetchCFSettingFile Directory Traversal Information Disclosure Vulnerability
ZDI-26-263 Adobe CVE-2026-27282 Adobe ColdFusion subscribeToEndpoints Authentication Bypass Vulnerability
ZDI-26-262 Adobe CVE-2026-34619 Adobe ColdFusion deleteVersion Directory Traversal Arbitrary File Deletion Vulnerability
ZDI-26-261 Docker (0Day) Docker Desktop credentialHelper Directory Traversal Privilege Escalation Vulnerability
ZDI-26-260 Docker (0Day) Docker Desktop System Editor Uncontrolled Search Path Element Privilege Escalation Vulnerability
ZDI-26-259 Docker (0Day) Docker Desktop cli-plugins Incorrect Permission Assignment Local Privilege Escalation Vulnerability
ZDI-26-258 Docker (0Day) Docker Desktop extension-manager Exposed Dangerous Function Local Privilege Escalation Vulnerability
ZDI-26-257 Labcenter Electronics CVE-2026-5495 (0Day) Labcenter Electronics Proteus PDSPRJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-26-256 Labcenter Electronics CVE-2026-5494 (0Day) Labcenter Electronics Proteus PDSPRJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-26-255 Labcenter Electronics CVE-2026-5493 (0Day) Labcenter Electronics Proteus PDSPRJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-26-254 Labcenter Electronics CVE-2026-5496 (0Day) Labcenter Electronics Proteus PDSPRJ File Parsing Type Confusion Remote Code Execution Vulnerability
ZDI-26-253 Microsoft CVE-2026-21518 Microsoft Visual Studio Code mcp.json Command Injection Remote Code Execution Vulnerability
ZDI-26-252 Mozilla CVE-2026-4698 Mozilla Firefox IonMonkey Switch Statement Optimization Type Confusion Remote Code Execution Vulnerability
ZDI-26-251 Foxit CVE-2026-3775 Foxit PDF Reader Update Service Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
ZDI-26-250 Linux CVE-2026-23092 Linux Kernel Analog Device Driver Improper Validation of Array Index Local Privilege Escalation Vulnerability
ZDI-26-249 NoMachine CVE-2026-5055 NoMachine Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
ZDI-26-248 NoMachine CVE-2026-5054 NoMachine External Control of File Path Local Privilege Escalation Vulnerability
ZDI-26-247 NoMachine CVE-2026-5053 NoMachine External Control of File Path Arbitrary File Deletion Vulnerability
ZDI-26-246 aws-mcp-server CVE-2026-5058 (0Day) aws-mcp-server Command Injection Remote Code Execution Vulnerability
ZDI-26-245 aws-mcp-server CVE-2026-5059 (0Day) aws-mcp-server AWS CLI Command Injection Remote Code Execution Vulnerability
ZDI-26-244 QNAP CVE-2024-13088 (Pwn2Own) QNAP QHora-322 miro_webserver_controllers_api_login_singIn Authentication Bypass Vulnerability
ZDI-26-243 QNAP CVE-2025-62842 (Pwn2Own) QNAP TS-453E write_file_to_svr External Control of File Path Remote Code Execution Vulnerability
ZDI-26-242 QNAP CVE-2025-62840 (Pwn2Own) QNAP TS-453E server_handlers.pyc rr2s.kwargs Error Message Information Disclosure Vulnerability
ZDI-26-241 QNAP CVE-2025-62846 (Pwn2Own) QNAP QHora-322 qvpn_db_mgr username SQL Injection Remote Code Execution Vulnerability
ZDI-26-240 QNAP CVE-2025-62845 (Pwn2Own) QNAP QHora-322 qvpn_db_mgr role_type Improper Neutralization of Escape Sequences Authentication Bypass Vulnerability
ZDI-26-239 QNAP CVE-2025-62844 (Pwn2Own) QNAP QHora-322 login.newAuthMiddleware.Authenticator Authentication Bypass Vulnerability
ZDI-26-238 Linux CVE-2023-6270 Linux Kernel AoE Driver Use-After-Free Local Privilege Escalation Vulnerability
ZDI-26-237 QNAP CVE-2025-62843 (Pwn2Own) QNAP QHora-322 ip6_wanifset Improper Restriction of Communication Channel to Intended Endpoints Firewall Bypass Vulnerability
ZDI-26-236 Digilent CVE-2026-0954 Digilent DASYLab DSB File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-26-235 Digilent CVE-2026-0957 Digilent DASYLab DSA File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-26-234 Digilent CVE-2026-0956 Digilent DASYLab DSA File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
ZDI-26-233 Digilent CVE-2026-0955 Digilent DASYLab DSA File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
ZDI-26-232 Red Hat CVE-2025-40277 (Pwn2Own) Red Hat Enterprise Linux vmwgfx Driver Integer Overflow Local Privilege Escalation Vulnerability
ZDI-26-231 Apple CVE-2026-20695 Apple macOS Exposure of Sensitive Information to Unauthorized Sphere Information Disclosure Vulnerability
ZDI-26-230 Apple CVE-2026-20690 Apple macOS CoreMedia Framework Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-26-229 OpenClaw CVE-2026-3691 OpenClaw Client PKCE Verifier Information Disclosure Vulnerability
ZDI-26-228 OpenClaw CVE-2026-3690 OpenClaw Canvas Authentication Bypass Vulnerability
ZDI-26-227 OpenClaw CVE-2026-3689 OpenClaw Canvas Path Traversal Information Disclosure Vulnerability
ZDI-26-226 Microsoft (0Day) Microsoft Azure MCP AzureCliService Command Injection Remote Code Execution Vulnerability
ZDI-26-225 Samsung CVE-2025-58487 (Pwn2Own) Samsung Galaxy S25 Samsung Account Open Redirect Security Bypass Vulnerability
ZDI-26-224 Samsung CVE-2025-58486 (Pwn2Own) Samsung Galaxy S25 Samsung Account Cross-Site Scripting Remote Code Execution Vulnerability
ZDI-26-223 Samsung CVE-2025-58488 (Pwn2Own) Samsung Galaxy S25 Smart Touch Call Application Protection Mechanism Failure Information Disclosure Vulnerability
ZDI-26-222 Canon CVE-2025-14233 (Pwn2Own) Canon imageCLASS MF654Cdw BJNP Memory Corruption Remote Code Execution Vulnerability
ZDI-26-221 GIMP CVE-2026-4154 GIMP XPM File Parsing Integer Overflow Remote Code Execution Vulnerability
ZDI-26-220 GIMP CVE-2026-4153 GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-219 GIMP CVE-2026-4152 GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-218 GIMP CVE-2026-4151 GIMP ANI File Parsing Integer Overflow Remote Code Execution Vulnerability
ZDI-26-217 GIMP CVE-2026-4150 GIMP PSD File Parsing Integer Overflow Remote Code Execution Vulnerability
ZDI-26-216 QNAP CVE-2025-62847 (Pwn2Own) QNAP TS-453E smbd domain_name Argument Injection Authentication Bypass Vulnerability
ZDI-26-215 KeePassXC CVE-2026-4158 KeePassXC OpenSSL Configuration Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
ZDI-26-214 GIMP CVE-2026-2049 GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-213 GIMP CVE-2026-2046 GIMP LBM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-212 Schneider Electric CVE-2025-13957 Schneider Electric EcoStruxure Data Center Expert Hard-coded Password Remote Code Execution Vulnerability
ZDI-26-211 Delta Electronics CVE-2026-1361 Delta Electronics ASDA-Soft PAR File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-210 Samsung CVE-2025-21079 (Pwn2Own) Samsung Galaxy S25 Samsung Members Security Feature Bypass Vulnerability
ZDI-26-209 Samsung CVE-2025-21079 (Pwn2Own) Samsung Galaxy S25 Samsung Members Open Redirect Security Bypass Vulnerability
ZDI-26-208 Canon CVE-2025-14237 (Pwn2Own) Canon imageCLASS MF654Cdw TTF Parsing Integer Overflow Remote Code Execution Vulnerability
ZDI-26-207 Canon CVE-2025-14236 (Pwn2Own) Canon imageCLASS MF654Cdw dtdc_addr_importSub Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-206 Canon CVE-2025-14235 (Pwn2Own) Canon imageCLASS MF654Cdw TTF Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-26-205 Canon CVE-2025-14234 (Pwn2Own) Canon imageCLASS MF654Cdw PJCC Request Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-204 Canon CVE-2025-14232 (Pwn2Own) Canon imageCLASS MF654Cdw XPS Parser Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-203 Canon CVE-2025-14231 (Pwn2Own) Canon imageCLASS MF654Cdw XML SOAP Request Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-202 QNAP CVE-2025-59389 (Pwn2Own) QNAP TS-453E Hyper Data Protector Plugin query_original_file_size SQL Injection Remote Code Execution Vulnerability
ZDI-26-201 QNAP CVE-2025-59388 (Pwn2Own) QNAP TS-453E Hyper Data Protector Plugin Hard-Coded Credentials Authentication Bypass Vulnerability
ZDI-26-200 QNAP CVE-2025-62849 (Pwn2Own) QNAP TS-453E nvrlog_event_add msg SQL Injection Remote Code Execution Vulnerability
ZDI-26-199 QNAP CVE-2025-62848 (Pwn2Own) QNAP TS-453E conn_log_tool Format String Remote Code Execution Vulnerability
ZDI-26-198 QNAP CVE-2025-11837 (Pwn2Own) QNAP TS-453E malware_remover Code Injection Remote Code Execution Vulnerability
ZDI-26-197 ChargePoint CVE-2026-4157 (Pwn2Own) ChargePoint Home Flex revssh Service Command Injection Remote Code Execution Vulnerability
ZDI-26-196 ChargePoint CVE-2026-4156 (Pwn2Own) ChargePoint Home Flex OCPP getpreq Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-195 ChargePoint CVE-2026-4155 (Pwn2Own) ChargePoint Home Flex Inclusion of Sensitive Information in Source Code Information Disclosure Vulnerability
ZDI-26-194 Microsoft CVE-2026-21527 Microsoft Exchange InterceptorSmtpAgent Improper Input Validation Security Feature Bypass Vulnerability
ZDI-26-193 Linux CVE-2022-1972 (Pwn2Own) Linux Kernel nf_tables_newset Out-Of-Bounds Write Information Disclosure Vulnerability
ZDI-26-192 Sonos CVE-2026-4149 Sonos Era 300 SMB Response Out-Of-Bounds Access Remote Code Execution Vulnerability
ZDI-26-191 Linux CVE-2022-32250 (Pwn2Own) Linux Kernel nf_tables Use-After-Free Privilege Escalation Vulnerability
ZDI-26-190 VMware CVE-2025-41238 (Pwn2Own) VMware Workstation PVSCSI Heap-based Buffer Overflow Local Privilege Escalation Vulnerability
ZDI-26-189 VMware CVE-2025-41236 (Pwn2Own) VMware ESXi VMXNET3 Integer Overflow Local Privilege Escalation Vulnerability
ZDI-26-188 VMware CVE-2025-41237 (Pwn2Own) VMware ESXi VMCI Integer Underflow Local Privilege Escalation Vulnerability
ZDI-26-187 Synology CVE-2022-45188 (Pwn2Own) Synology DiskStation Manager Netatalk Library Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-186 Fortinet CVE-2026-24018 Fortinet FortiClient Link Following Local Privilege Escalation Vulnerability
ZDI-26-185 Microsoft CVE-2026-25181 Microsoft Windows GDI Bitmap Parsing Out-Of-Bound Read Information Disclosure Vulnerability
ZDI-26-184 Microsoft CVE-2026-24289 Microsoft Windows NDIS Driver Use-After-Free Local Privilege Escalation Vulnerability
ZDI-26-183 Microsoft CVE-2026-24285 Microsoft Windows win32full Improper Release Local Privilege Escalation Vulnerability
ZDI-26-182 Microsoft CVE-2026-24285 Microsoft Windows win32full Improper Release Local Privilege Escalation Vulnerability
ZDI-26-181 Microsoft CVE-2026-24285 Microsoft Windows win32full Improper Release Local Privilege Escalation Vulnerability
ZDI-26-180 Microsoft CVE-2026-23668 Microsoft Windows cdd Improper Locking Local Privilege Escalation Vulnerability
ZDI-26-179 Microsoft CVE-2026-23668 Microsoft Windows win32kfull Improper Locking Local Privilege Escalation Vulnerability
ZDI-26-178 Microsoft CVE-2026-23668 Microsoft Windows cdd Improper Locking Local Privilege Escalation Vulnerability
ZDI-26-177 Array Networks CVE-2026-26364 Array Networks MotionPro ArrayInstallManager Incorrect Permission Assignment Local Privilege Escalation Vulnerability
ZDI-26-176 Apple CVE-2026-20616 Apple macOS libusd_ms Alembic File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-26-175 Apple CVE-2026-20634 Apple macOS ImageIO SGI File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-26-174 Apple CVE-2026-20675 Apple macOS ImageIO SGI File Parsing Integer Overflow Remote Code Execution Vulnerability
ZDI-26-173 Apple CVE-2026-20611 Apple macOS Audio APAC Frame Decoding Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-26-172 Unraid CVE-2026-3839 Unraid Authentication Request Path Traversal Authentication Bypass Vulnerability
ZDI-26-171 Unraid CVE-2026-3838 Unraid Update Request Path Traversal Remote Code Execution Vulnerability
ZDI-26-170 GStreamer CVE-2026-3086 GStreamer H.266 Codec Parser Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-26-169 GStreamer CVE-2026-3084 GStreamer H.266 Codec Parser Integer Underflow Remote Code Execution Vulnerability
ZDI-26-168 GStreamer CVE-2026-2921 GStreamer RIFF Palette Integer Overflow Remote Code Execution Vulnerability
ZDI-26-167 GStreamer CVE-2026-3085 GStreamer rtpqdm2depay Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-166 GStreamer CVE-2026-3083 GStreamer rtpqdm2depay Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-26-165 GStreamer CVE-2026-2922 GStreamer RealMedia Demuxer Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-26-164 GStreamer CVE-2026-2920 GStreamer ASF Demuxer Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-163 GStreamer CVE-2026-3082 GStreamer JPEG Parser Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-162 GStreamer CVE-2026-3081 GStreamer H.266 Codec Parser Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-161 GStreamer CVE-2026-2923 GStreamer DVB Subtitles Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-26-160 Philips CVE-2026-3562 (Pwn2Own) Philips Hue Bridge hk_hap Ed25519 Signature Verification Authentication Bypass Vulnerability
ZDI-26-159 Philips CVE-2026-3561 (Pwn2Own) Philips Hue Bridge hk_hap characteristics Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-158 Philips CVE-2026-3560 (Pwn2Own) Philips Hue Bridge HomeKit hk_hap_pair_storage_put Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-157 Philips CVE-2026-3559 (Pwn2Own) Philips Hue Bridge HomeKit Accessory Protocol Static Nonce Authentication Bypass Vulnerability
ZDI-26-156 Philips CVE-2026-3558 (Pwn2Own) Philips Hue Bridge HomeKit Accessory Protocol Transient Pairing Mode Authentication Bypass Vulnerability
ZDI-26-155 Philips CVE-2026-3557 (Pwn2Own) Philips Hue Bridge hap_pair_verify_handler Sub-TLV Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-154 Philips CVE-2026-3556 (Pwn2Own) Philips Hue Bridge HomeKit Pair-Setup Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-153 Philips CVE-2026-3555 (Pwn2Own) Philips Hue Bridge Zigbee Stack Custom Command Handler Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-152 Docker CVE-2025-15558 Docker Desktop Docker Plugins Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
ZDI-26-151 Delta Electronics CVE-2026-3094 Delta Electronics CNCSoft-G2 DPAX File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-26-150 Docker CVE-2026-28400 Docker Desktop for Mac Docker Model Runner Exposed Dangerous Function Denial-of-Service Vulnerability
ZDI-26-149 Trend Micro CVE-2025-71218 Trend Micro Cleaner One Pro Link Following Denial-of-Service Vulnerability
ZDI-26-148 Trend Micro CVE-2025-71209 Trend Micro Apex Central Improper Authentication Privilege Escalation Vulnerability
ZDI-26-147 Trend Micro CVE-2025-71208 Trend Micro Apex Central Improper Authentication Privilege Escalation Vulnerability
ZDI-26-146 Trend Micro CVE-2025-71207 Trend Micro Apex Central Manual Update Server-Side Request Forgery Vulnerability
ZDI-26-145 Trend Micro CVE-2025-71206 Trend Micro Apex Central Scheduled Update Server-Side Request Forgery Vulnerability
ZDI-26-144 Trend Micro CVE-2025-71205 Trend Micro Apex Central Hub Server Server-Side Request Forgery Vulnerability
ZDI-26-143 Trend Micro CVE-2025-71217 Trend Micro Apex One Security Agent TmSelfProtect Origin Validation Error Local Privilege Escalation Vulnerability
ZDI-26-142 Trend Micro CVE-2025-71216 Trend Micro Apex One Security Agent Cache Mechanism Time-Of-Check Time-Of-Use Local Privilege Escalation Vulnerability
ZDI-26-141 Trend Micro CVE-2025-71215 Trend Micro Apex One Security Agent iCore Service Signature Verification Time-Of-Check Time-Of-Use Local Privilege Escalation Vulnerability
ZDI-26-140 Trend Micro CVE-2025-71213 Trend Micro Apex One Origin Validation Error Local Privilege Escalation Vulnerability
ZDI-26-139 Trend Micro CVE-2025-71214 Trend Micro Apex One Security Agent iCore Service Origin Validation Error Local Privilege Escalation Vulnerability
ZDI-26-138 Trend Micro CVE-2025-71212 Trend Micro Apex One Virus Scan Engine Link Following Local Privilege Escalation Vulnerability
ZDI-26-137 Trend Micro CVE-2025-71211 Trend Micro Apex One Console Directory Traversal Remote Code Execution Vulnerability
ZDI-26-136 Trend Micro CVE-2025-71210 Trend Micro Apex One Console Directory Traversal Remote Code Execution Vulnerability
ZDI-26-135 LangChain CVE-2026-27794 LangChain LangGraph BaseCache Deserialization of Untrusted Data Remote Code Execution Vulnerability
ZDI-26-134 Hewlett Packard Enterprise CVE-2026-23600 Hewlett Packard Enterprise AutoPass License Server Authentication Bypass Vulnerability
ZDI-26-133 Music Assistant CVE-2026-26975 (Pwn2Own) Music Assistant _update_library_item External Control of File Path Remote Code Execution Vulnerability
ZDI-26-132 Siemens CVE-2026-25656 Siemens SINEC NMS Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
ZDI-26-131 Siemens CVE-2026-25655 Siemens SINEC NMS Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
ZDI-26-130 IceWarp CVE-2026-2493 IceWarp collaboration Directory Traversal Information Disclosure Vulnerability
ZDI-26-129 Socomec CVE-2026-2491 Socomec DIRIS A-40 HTTP API Authentication Bypass Vulnerability
ZDI-26-128 Ubiquiti Networks CVE-2026-21634 (Pwn2Own) Ubiquiti Networks AI Pro Uncaught Exception Denial-of-Service Vulnerability
ZDI-26-127 Ubiquiti Networks CVE-2026-21633 (Pwn2Own) Ubiquiti Networks AI Pro Cleartext Transmission Information Disclosure Vulnerability
ZDI-26-126 Ubiquiti Networks CVE-2026-21633 (Pwn2Own) Ubiquiti Networks AI Pro Discovery Protocol Missing Encryption Protocol Downgrade Vulnerability
ZDI-26-125 Docker CVE-2026-2664 Docker Desktop grpcfuse Kernel Module Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-26-124 claude-hovercraft CVE-2025-15060 claude-hovercraft executeClaudeCode Command Injection Remote Code Execution Vulnerability
ZDI-26-123 Docker Docker Desktop MCP Server Cleartext Storage of Sensitive Information Vulnerability
ZDI-26-122 PDF-XChange CVE-2026-2040 PDF-XChange Editor TrackerUpdate Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
ZDI-26-121 GIMP CVE-2026-2048 GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-26-120 GIMP CVE-2026-2047 GIMP ICNS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-119 GIMP CVE-2026-2045 GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-26-118 GIMP CVE-2026-2044 GIMP PGM File Parsing Uninitialized Memory Remote Code Execution Vulnerability
ZDI-26-117 RustDesk CVE-2026-2490 RustDesk Client for Windows Transfer File Link Following Information Disclosure Vulnerability
ZDI-26-116 TensorFlow CVE-2026-2492 TensorFlow HDF5 Library Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
ZDI-26-115 Fortinet CVE-2025-62676 Fortinet FortiClient VPN FCConfig Utility Link Following Local Privilege Escalation Vulnerability
ZDI-26-114 Dassault Systèmes CVE-2026-1335 Dassault Systèmes eDrawings Viewer EPRT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-26-113 Dassault Systèmes CVE-2026-1334 Dassault Systèmes eDrawings Viewer EPRT File Parsing Memory Corruption Remote Code Execution Vulnerability
ZDI-26-112 Dassault Systèmes CVE-2026-1333 Dassault Systèmes eDrawings Viewer EPRT File Parsing Uninitialized Variable Remote Code Execution Vulnerability
ZDI-26-111 MLflow CVE-2026-2635 MLflow Use of Default Password Authentication Bypass Vulnerability
ZDI-26-110 Bosch Rexroth CVE-2025-60037, CVE-2025-60038 Bosch Rexroth IndraWorks Print Settings File Parsing Deserialization Of Untrusted Data Remote Code Execution Vulnerability
ZDI-26-109 Bosch Rexroth CVE-2025-60035 Bosch Rexroth IndraWorks OPC.TestClient XML File Parsing Deserialization Of Untrusted Data Remote Code Execution Vulnerability
ZDI-26-108 Bosch Rexroth CVE-2025-60036 Bosch Rexroth IndraWorks UA.TestClient XML File Parsing Deserialization Of Untrusted Data Remote Code Execution Vulnerability
ZDI-26-107 Autodesk CVE-2026-0875 Autodesk AutoCAD MODEL File Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-26-106 Autodesk CVE-2026-0874 Autodesk AutoCAD CATPART File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-26-105 MLflow CVE-2026-2033 MLflow Tracking Server Artifact Handler Directory Traversal Remote Code Execution Vulnerability
ZDI-26-104 Sante CVE-2026-2034 Sante DICOM Viewer Pro DCM File Parsing Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-103 Oracle CVE-2026-21956 Oracle VirtualBox VMSVGA Out-Of-Bounds Access Local Privilege Escalation Vulnerability
ZDI-26-102 Oracle CVE-2026-21957 Oracle VirtualBox VMSVGA Out-Of-Bounds Write Local Privilege Escalation Vulnerability
ZDI-26-101 Oracle CVE-2026-21963 Oracle VirtualBox BusLogic Uninitialized Memory Information Disclosure Vulnerability
ZDI-26-100 Oracle CVE-2026-21985 Oracle VirtualBox LsiLogic Uninitialized Memory Information Disclosure Vulnerability
ZDI-26-099 Oracle CVE-2026-21984 Oracle VirtualBox VMSVGA Race Condition Local Privilege Escalation Vulnerability
ZDI-26-098 Oracle CVE-2026-21955 Oracle VirtualBox VMSVGA Use-After-Free Local Privilege Escalation Vulnerability
ZDI-26-097 Oracle CVE-2026-21983 Oracle VirtualBox VMSVGA Heap-based Buffer Overflow Local Privilege Escalation Vulnerability
ZDI-26-096 Dassault Systèmes CVE-2026-1283 Dassault Systèmes eDrawings Viewer EPRT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-095 Dassault Systèmes CVE-2026-1284 Dassault Systèmes eDrawings Viewer EPRT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-26-094 Schneider Electric CVE-2025-13845 Schneider Electric EcoStruxure Power Build SSD File Parsing Use-After-Free Remote Code Execution Vulnerability
ZDI-26-093 Schneider Electric CVE-2025-13845 Schneider Electric EcoStruxure Power Build SSD File Parsing Use-After-Free Remote Code Execution Vulnerability
ZDI-26-092 Schneider Electric CVE-2025-13845 Schneider Electric EcoStruxure Power Build SSD File Parsing Memory Corruption Remote Code Execution Vulnerability
ZDI-26-091 Schneider Electric CVE-2025-13845 Schneider Electric EcoStruxure Power Build SSD File Parsing Memory Corruption Remote Code Execution Vulnerability
ZDI-26-090 Schneider Electric CVE-2025-13845 Schneider Electric EcoStruxure Power Build SSD File Parsing Memory Corruption Remote Code Execution Vulnerability
ZDI-26-089 Schneider Electric CVE-2025-13845 Schneider Electric EcoStruxure Power Build SSD File Parsing Memory Corruption Remote Code Execution Vulnerability
ZDI-26-088 Schneider Electric CVE-2025-13845 Schneider Electric EcoStruxure Power Build SSD File Parsing Memory Corruption Remote Code Execution Vulnerability
ZDI-26-087 Schneider Electric CVE-2025-13845 Schneider Electric EcoStruxure Power Build SSD File Parsing Memory Corruption Remote Code Execution Vulnerability
ZDI-26-086 Schneider Electric CVE-2025-13845 Schneider Electric EcoStruxure Power Build SSD File Parsing Memory Corruption Remote Code Execution Vulnerability
ZDI-26-085 Schneider Electric CVE-2025-13845 Schneider Electric EcoStruxure Power Build SSD File Parsing Memory Corruption Remote Code Execution Vulnerability
ZDI-26-084 Schneider Electric CVE-2025-13845 Schneider Electric EcoStruxure Power Build SSD File Parsing Memory Corruption Remote Code Execution Vulnerability
ZDI-26-083 Microsoft CVE-2026-21249 Microsoft Windows searchConnector-ms NTLM Response Information Disclosure Vulnerability
ZDI-26-082 Microsoft CVE-2026-21527 Microsoft Exchange InterceptorSmtpAgent Reliance on Untrusted Inputs Security Feature Bypass Vulnerability
ZDI-26-081 Microsoft CVE-2026-21235 Microsoft Windows win32kfull Use-After-Free Local Privilege Escalation Vulnerability
ZDI-26-080 Ivanti CVE-2026-1603 Ivanti Endpoint Manager AuthHelper Authentication Bypass Vulnerability
ZDI-26-079 Ivanti CVE-2026-1602 Ivanti Endpoint Manager ROI SQL Injection Remote Code Execution Vulnerability
ZDI-26-078 Deciso CVE-2026-2035 Deciso OPNsense diag_backup.php filename Command Injection Remote Code Execution Vulnerability
ZDI-26-077 GFI CVE-2026-2039 GFI Archiver MArc.Store Missing Authorization Authentication Bypass Vulnerability
ZDI-26-076 GFI CVE-2026-2036 GFI Archiver MArc.Store Deserialization of Untrusted Data Remote Code Execution Vulnerability
ZDI-26-075 GFI CVE-2026-2038 GFI Archiver MArc.Core Missing Authorization Authentication Bypass Vulnerability
ZDI-26-074 GFI CVE-2026-2037 GFI Archiver MArc.Core Deserialization of Untrusted Data Remote Code Execution Vulnerability
ZDI-26-073 Nagios CVE-2026-2041 Nagios Host zabbixagent_configwizard_func Command Injection Remote Code Execution Vulnerability
ZDI-26-072 Nagios CVE-2026-2043 Nagios Host esensors_websensor_configwizard_func Command Injection Remote Code Execution Vulnerability
ZDI-26-071 Nagios CVE-2026-2042 Nagios Host monitoringwizard Command Injection Remote Code Execution Vulnerability
ZDI-26-070 Adobe CVE-2025-61808 Adobe ColdFusion CAR File Parsing Directory Traversal Remote Code Execution Vulnerability
ZDI-26-069 Xmind CVE-2026-0777 (0Day) Xmind Attachment Insufficient UI Warning Remote Code Execution Vulnerability
ZDI-26-068 Docker CVE-2025-14740 Docker Desktop for Windows Incorrect Permission Assignment Privilege Escalation Vulnerability
ZDI-26-067 Docker CVE-2025-14740 Docker Desktop for Windows Incorrect Permission Assignment Privilege Escalation Vulnerability
ZDI-26-066 Lexmark CVE-2025-65079 (Pwn2Own) Lexmark CX532adwe getCFFNames Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-065 Lexmark CVE-2025-65080 (Pwn2Own) Lexmark CX532adwe usecmap Type Confusion Remote Code Execution Vulnerability
ZDI-26-064 Lexmark CVE-2025-65081 (Pwn2Own) Lexmark CX532adwe execuserobject Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-063 Lexmark CVE-2025-65077 (Pwn2Own) Lexmark CX532adwe libesffls Directory Traversal Remote Code Execution Vulnerability
ZDI-26-062 Lexmark CVE-2025-65078 (Pwn2Own) Lexmark CX532adwe esfhelper Untrusted Search Path Local Privilege Escalation Vulnerability
ZDI-26-061 NVIDIA CVE-2025-33201 NVIDIA Triton Inference Server EVBufferToJson Uncaught Exception Denial-of-Service Vulnerability
ZDI-26-060 NVIDIA CVE-2026-24149 NVIDIA Megatron-LM load_base_checkpoint Deserialization of Untrusted Data Remote Code Execution Vulnerability
ZDI-26-059 CyberArk CVE-2025-66374 CyberArk Endpoint Privilege Management Improper Privilege Management Local Privilege Escalation Vulnerability
ZDI-26-058 AzeoTech CVE-2025-66589 AzeoTech DAQFactory Pro CTL File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
ZDI-26-057 Apple CVE-2025-46298 Apple Safari JavaScriptCore FTL New Array Materialization Type Confusion Remote Code Execution Vulnerability
ZDI-26-056 Apple CVE-2025-43283 Apple macOS AppleIntelKBLGraphics Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-26-055 Progress Software CVE-2025-13447 Progress Software Kemp LoadMaster addapikey Command Injection Remote Code Execution Vulnerability
ZDI-26-054 Progress Software CVE-2025-13447 Progress Software Kemp LoadMaster delapikey OS Command Injection Remote Code Execution Vulnerability
ZDI-26-053 Progress Software CVE-2025-13447 Progress Software Kemp LoadMaster listapikeys Command Injection Remote Code Execution Vulnerability
ZDI-26-052 Progress Software CVE-2025-13444 Progress Software Kemp LoadMaster getcipherset Command Injection Remote Code Execution Vulnerability
ZDI-26-051 Progress Software CVE-2025-13447 Progress Software Kemp LoadMaster delcert Command Injection Remote Code Execution Vulnerability
ZDI-26-050 GIMP CVE-2026-0797 GIMP ICO File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-049 Delta Electronics CVE-2026-0975 Delta Electronics DIAView Exposed Dangerous Method Remote Code Execution Vulnerability
ZDI-26-048 Fortinet CVE-2025-67685 Fortinet FortiSandbox fortisandbox Server-Side Request Forgery Remote Code Execution Vulnerability
ZDI-26-047 Hancom CVE-2025-29867 Hancom Office DOC File Parsing Type Confusion Remote Code Execution Vulnerability
ZDI-26-046 Cisco CVE-2026-20026 Cisco Snort _bnfa_search_csparse_nfa Use-After-Free Remote Code Execution Vulnerability
ZDI-26-045 Cisco CVE-2026-20027 Cisco Snort _bnfa_search_csparse_nfa Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-26-044 Microsoft CVE-2026-20871 Microsoft Windows Desktop Window Manager Use-After-Free Local Privilege Escalation Vulnerability
ZDI-26-043 npm CVE-2026-0775 (0Day) npm cli Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
ZDI-26-042 Upsonic CVE-2026-0773 (0Day) Upsonic Cloudpickle Deserialization of Untrusted Data Remote Code Execution Vulnerability
ZDI-26-041 Enel X CVE-2026-0778 (0Day) (Pwn2Own) Enel X JuiceBox 40 Telnet Service Missing Authentication Remote Code Execution Vulnerability
ZDI-26-040 Discord CVE-2026-0776 (0Day) Discord Client Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
ZDI-26-039 WatchYourLAN CVE-2026-0774 (0Day) WatchYourLAN Configuration Page Argument Injection Remote Code Execution Vulnerability
ZDI-26-038 Langflow CVE-2026-0772 (0Day) Langflow Disk Cache Deserialization of Untrusted Data Remote Code Execution Vulnerability
ZDI-26-037 Langflow CVE-2026-0771 (0Day) Langflow PythonFunction Code Injection Remote Code Execution Vulnerability
ZDI-26-036 Langflow CVE-2026-0770 (0Day) Langflow exec_globals Inclusion of Functionality from Untrusted Control Sphere Remote Code Execution Vulnerability
ZDI-26-035 Langflow CVE-2026-0769 (0Day) Langflow eval_custom_component_code Eval Injection Remote Code Execution Vulnerability
ZDI-26-034 Langflow CVE-2026-0768 (0Day) Langflow code Code Injection Remote Code Execution Vulnerability
ZDI-26-033 Open WebUI CVE-2026-0767 (0Day) Open WebUI Cleartext Transmission of Credentials Information Disclosure Vulnerability
ZDI-26-032 Open WebUI CVE-2026-0766 (0Day) Open WebUI load_tool_module_by_id Command Injection Remote Code Execution Vulnerability
ZDI-26-031 Open WebUI CVE-2026-0765 (0Day) Open WebUI PIP install_frontmatter_requirements Command Injection Remote Code Execution Vulnerability
ZDI-26-030 GPT Academic CVE-2026-0764 (0Day) GPT Academic upload Deserialization of Untrusted Data Remote Code Execution Vulnerability
ZDI-26-029 GPT Academic CVE-2026-0763 (0Day) GPT Academic run_in_subprocess_wrapper_func Deserialization of Untrusted Data Remote Code Execution Vulnerability
ZDI-26-028 GPT Academic CVE-2026-0762 (0Day) GPT Academic stream_daas Deserialization of Untrusted Data Remote Code Execution Vulnerability
ZDI-26-027 Foundation Agents CVE-2026-0761 (0Day) Foundation Agents MetaGPT actionoutput_str_to_mapping Code Injection Remote Code Execution Vulnerability
ZDI-26-026 Foundation Agents CVE-2026-0760 (0Day) Foundation Agents MetaGPT deserialize_message Deserialization of Untrusted Data Remote Code Execution Vulnerability
ZDI-26-025 Katana Network CVE-2026-0759 (0Day) Katana Network Development Starter Kit executeCommand Command Injection Remote Code Execution Vulnerability
ZDI-26-024 mcp-server-siri-shortcuts CVE-2026-0758 (0Day) mcp-server-siri-shortcuts shortcutName Command Injection Privilege Escalation Vulnerability
ZDI-26-023 MCP Manager for Claude Desktop CVE-2026-0757 (0Day) MCP Manager for Claude Desktop execute-command Command Injection Sandbox Escape Vulnerability
ZDI-26-022 github-kanban-mcp-server CVE-2026-0756 (0Day) github-kanban-mcp-server execAsync Command Injection Remote Code Execution Vulnerability
ZDI-26-021 Gemini MCP Tool CVE-2026-0755 (0Day) gemini-mcp-tool execAsync Command Injection Remote Code Execution Vulnerability
ZDI-26-020 Ollama MCP Server CVE-2025-15063 (0Day) Ollama MCP Server execAsync Command Injection Remote Code Execution Vulnerability
ZDI-26-019 Cisco CVE-2026-20029 Cisco Identity Services Engine getSpecificPLRfromAuthCode XML External Entity Processing Information Disclosure Vulnerability
ZDI-26-018 ALGO CVE-2026-0796 (0Day) ALGO 8180 IP Audio Alerter Web UI Command Injection Remote Code Execution Vulnerability
ZDI-26-017 ALGO CVE-2026-0795 (0Day) ALGO 8180 IP Audio Alerter Web UI Command Injection Remote Code Execution Vulnerability
ZDI-26-016 ALGO CVE-2026-0794 (0Day) ALGO 8180 IP Audio Alerter SIP Use-After-Free Remote Code Execution Vulnerability
ZDI-26-015 ALGO CVE-2026-0793 (0Day) ALGO 8180 IP Audio Alerter InformaCast Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-014 ALGO CVE-2026-0792 (0Day) ALGO 8180 IP Audio Alerter SIP INVITE Alert-Info Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-013 ALGO CVE-2026-0791 (0Day) ALGO 8180 IP Audio Alerter SIP INVITE Replaces Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-26-012 ALGO CVE-2026-0790 (0Day) ALGO 8180 IP Audio Alerter Web UI Direct Request Information Disclosure Vulnerability
ZDI-26-011 ALGO CVE-2026-0789 (0Day) ALGO 8180 IP Audio Alerter Web UI Inclusion of Authentication Cookie in Response Body Information Disclosure Vulnerability
ZDI-26-010 ALGO CVE-2026-0788 (0Day) ALGO 8180 IP Audio Alerter Web UI Persistent Cross-Site Scripting Vulnerability
ZDI-26-009 ALGO CVE-2026-0787 (0Day) ALGO 8180 IP Audio Alerter SAC Command Injection Remote Code Execution Vulnerability
ZDI-26-008 ALGO CVE-2026-0786 (0Day) ALGO 8180 IP Audio Alerter SCI Command Injection Remote Code Execution Vulnerability
ZDI-26-007 ALGO CVE-2026-0785 (0Day) ALGO 8180 IP Audio Alerter API Command Injection Remote Code Execution Vulnerability
ZDI-26-006 ALGO CVE-2026-0784 (0Day) ALGO 8180 IP Audio Alerter Web UI Command Injection Remote Code Execution Vulnerability
ZDI-26-005 ALGO CVE-2026-0783 (0Day) ALGO 8180 IP Audio Alerter Web UI Command Injection Remote Code Execution Vulnerability
ZDI-26-004 ALGO CVE-2026-0782 (0Day) ALGO 8180 IP Audio Alerter Web UI Command Injection Remote Code Execution Vulnerability
ZDI-26-003 ALGO CVE-2026-0781 (0Day) ALGO 8180 IP Audio Alerter Web UI Command Injection Remote Code Execution Vulnerability
ZDI-26-002 ALGO CVE-2026-0780 (0Day) ALGO 8180 IP Audio Alerter Web UI Command Injection Remote Code Execution Vulnerability
ZDI-26-001 ALGO CVE-2026-0779 (0Day) ALGO 8180 IP Audio Alerter Ping Command Injection Remote Code Execution Vulnerability