Indicators of Compromise

Zero Day Initiative 📡 RSS Mar 10

ZDI-26-176: Apple macOS libusd_ms Alembic File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

CVEs: CVE-2026-20616

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 10

ZDI-26-175: Apple macOS ImageIO SGI File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

CVEs: CVE-2026-20634

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 10

ZDI-26-174: Apple macOS ImageIO SGI File Parsing Integer Overflow Remote Code Execution Vulnerability

CVEs: CVE-2026-20675

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 10

ZDI-26-173: Apple macOS Audio APAC Frame Decoding Out-Of-Bounds Write Remote Code Execution Vulnerability

CVEs: CVE-2026-20611

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 9

ZDI-26-172: Unraid Authentication Request Path Traversal Authentication Bypass Vulnerability

CVEs: CVE-2026-3839

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 9

ZDI-26-171: Unraid Update Request Path Traversal Remote Code Execution Vulnerability

CVEs: CVE-2026-3838

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 6

ZDI-26-170: GStreamer H.266 Codec Parser Out-Of-Bounds Write Remote Code Execution Vulnerability

CVEs: CVE-2026-3086

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 6

ZDI-26-169: GStreamer H.266 Codec Parser Integer Underflow Remote Code Execution Vulnerability

CVEs: CVE-2026-3084

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 6

ZDI-26-168: GStreamer RIFF Palette Integer Overflow Remote Code Execution Vulnerability

CVEs: CVE-2026-2921

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 6

ZDI-26-167: GStreamer rtpqdm2depay Heap-based Buffer Overflow Remote Code Execution Vulnerability

CVEs: CVE-2026-3085

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 6

ZDI-26-166: GStreamer rtpqdm2depay Out-Of-Bounds Write Remote Code Execution Vulnerability

CVEs: CVE-2026-3083

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 6

ZDI-26-165: GStreamer RealMedia Demuxer Out-Of-Bounds Write Remote Code Execution Vulnerability

CVEs: CVE-2026-2922

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 6

ZDI-26-164: GStreamer ASF Demuxer Heap-based Buffer Overflow Remote Code Execution Vulnerability

CVEs: CVE-2026-2920

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 6

ZDI-26-163: GStreamer JPEG Parser Heap-based Buffer Overflow Remote Code Execution Vulnerability

CVEs: CVE-2026-3082

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 6

ZDI-26-162: GStreamer H.266 Codec Parser Stack-based Buffer Overflow Remote Code Execution Vulnerability

CVEs: CVE-2026-3081

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 6

ZDI-26-161: GStreamer DVB Subtitles Out-Of-Bounds Write Remote Code Execution Vulnerability

CVEs: CVE-2026-2923

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 6

ZDI-26-160: (Pwn2Own) Philips Hue Bridge hk_hap Ed25519 Signature Verification Authentication Bypass Vulnerability

CVEs: CVE-2026-3562

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 6

ZDI-26-159: (Pwn2Own) Philips Hue Bridge hk_hap characteristics Heap-based Buffer Overflow Remote Code Execution Vulnerability

CVEs: CVE-2026-3561

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 6

ZDI-26-158: (Pwn2Own) Philips Hue Bridge HomeKit hk_hap_pair_storage_put Heap-based Buffer Overflow Remote Code Execution Vulnerability

CVEs: CVE-2026-3560

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 6

ZDI-26-157: (Pwn2Own) Philips Hue Bridge HomeKit Accessory Protocol Static Nonce Authentication Bypass Vulnerability

CVEs: CVE-2026-3559

Zero Day Initiative →