Indicators of Compromise

Zero Day Initiative 📡 RSS Mar 30

ZDI-26-234: Digilent DASYLab DSA File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

CVEs: CVE-2026-0956

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 30

ZDI-26-233: Digilent DASYLab DSA File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

CVEs: CVE-2026-0955

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 30

ZDI-26-232: (Pwn2Own) Red Hat Enterprise Linux vmwgfx Driver Integer Overflow Local Privilege Escalation Vulnerability

CVEs: CVE-2025-40277

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 30

ZDI-26-231: Apple macOS Exposure of Sensitive Information to Unauthorized Sphere Information Disclosure Vulnerability

CVEs: CVE-2026-20695

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 30

ZDI-26-230: Apple macOS CoreMedia Framework Out-Of-Bounds Write Remote Code Execution Vulnerability

CVEs: CVE-2026-20690

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 30

ZDI-26-229: OpenClaw Client PKCE Verifier Information Disclosure Vulnerability

CVEs: CVE-2026-3691

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 30

ZDI-26-228: OpenClaw Canvas Authentication Bypass Vulnerability

CVEs: CVE-2026-3690

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 30

ZDI-26-227: OpenClaw Canvas Path Traversal Information Disclosure Vulnerability

CVEs: CVE-2026-3689

Zero Day Initiative →

Recorded Future 📡 RSS Mar 25

ClickFix Campaigns Targeting Windows and macOS

Domains: booking.com

Recorded Future →

Infosecurity Magazine 📡 RSS Mar 23

CISA Orders US Government to Patch Maximum Severity Cisco Flaw

CVEs: CVE-2026-20131

Infosecurity Magazine →

Zero Day Initiative 📡 RSS Mar 23

ZDI-26-225: (Pwn2Own) Samsung Galaxy S25 Samsung Account Open Redirect Security Bypass Vulnerability

CVEs: CVE-2025-58487

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 23

ZDI-26-224: (Pwn2Own) Samsung Galaxy S25 Samsung Account Cross-Site Scripting Remote Code Execution Vulnerability

CVEs: CVE-2025-58486

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 23

ZDI-26-223: (Pwn2Own) Samsung Galaxy S25 Smart Touch Call Application Protection Mechanism Failure Information Disclosure Vulnerability

CVEs: CVE-2025-58488

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 23

ZDI-26-222: (Pwn2Own) Canon imageCLASS MF654Cdw BJNP Memory Corruption Remote Code Execution Vulnerability

CVEs: CVE-2025-14233

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 19

ZDI-26-221: GIMP XPM File Parsing Integer Overflow Remote Code Execution Vulnerability

CVEs: CVE-2026-4154

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 19

ZDI-26-220: GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

CVEs: CVE-2026-4153

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 19

ZDI-26-219: GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

CVEs: CVE-2026-4152

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 19

ZDI-26-218: GIMP ANI File Parsing Integer Overflow Remote Code Execution Vulnerability

CVEs: CVE-2026-4151

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 19

ZDI-26-217: GIMP PSD File Parsing Integer Overflow Remote Code Execution Vulnerability

CVEs: CVE-2026-4150

Zero Day Initiative →

Infosecurity Magazine 📡 RSS Mar 18

New Ubuntu Flaw Enables Local Attackers to Gain Root Access

CVEs: CVE-2026-3888

Infosecurity Magazine →