Indicators of Compromise

Zero Day Initiative 📡 RSS Mar 3

ZDI-26-136: Trend Micro Apex One Console Directory Traversal Remote Code Execution Vulnerability

CVEs: CVE-2025-71210

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 3

ZDI-26-135: LangChain LangGraph BaseCache Deserialization of Untrusted Data Remote Code Execution Vulnerability

CVEs: CVE-2026-27794

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 3

ZDI-26-134: Hewlett Packard Enterprise AutoPass License Server Authentication Bypass Vulnerability

CVEs: CVE-2026-23600

Zero Day Initiative →

Zero Day Initiative 📡 RSS Mar 3

ZDI-26-133: (Pwn2Own) Music Assistant _update_library_item External Control of File Path Remote Code Execution Vulnerability

CVEs: CVE-2026-26975

Zero Day Initiative →

Zero Day Initiative 📡 RSS Feb 25

ZDI-26-132: Siemens SINEC NMS Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

CVEs: CVE-2026-25656

Zero Day Initiative →

Zero Day Initiative 📡 RSS Feb 25

ZDI-26-131: Siemens SINEC NMS Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

CVEs: CVE-2026-25655

Zero Day Initiative →

Zero Day Initiative 📡 RSS Feb 25

ZDI-26-130: IceWarp collaboration Directory Traversal Information Disclosure Vulnerability

CVEs: CVE-2026-2493

Zero Day Initiative →

Zero Day Initiative 📡 RSS Feb 25

ZDI-26-129: Socomec DIRIS A-40 HTTP API Authentication Bypass Vulnerability

CVEs: CVE-2026-2491

Zero Day Initiative →

Zero Day Initiative 📡 RSS Feb 25

ZDI-26-128: (Pwn2Own) Ubiquiti Networks AI Pro Uncaught Exception Denial-of-Service Vulnerability

CVEs: CVE-2026-21634

Zero Day Initiative →

Zero Day Initiative 📡 RSS Feb 25

ZDI-26-127: (Pwn2Own) Ubiquiti Networks AI Pro Cleartext Transmission Information Disclosure Vulnerability

CVEs: CVE-2026-21633

Zero Day Initiative →

Zero Day Initiative 📡 RSS Feb 25

ZDI-26-126: (Pwn2Own) Ubiquiti Networks AI Pro Discovery Protocol Missing Encryption Protocol Downgrade Vulnerability

CVEs: CVE-2026-21633

Zero Day Initiative →

Zero Day Initiative 📡 RSS Feb 25

ZDI-26-125: Docker Desktop grpcfuse Kernel Module Out-Of-Bounds Read Information Disclosure Vulnerability

CVEs: CVE-2026-2664

Zero Day Initiative →

Zero Day Initiative 📡 RSS Feb 25

ZDI-26-124: claude-hovercraft executeClaudeCode Command Injection Remote Code Execution Vulnerability

CVEs: CVE-2025-15060

Zero Day Initiative →

Zero Day Initiative 📡 RSS Feb 19

ZDI-26-122: PDF-XChange Editor TrackerUpdate Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

CVEs: CVE-2026-2040

Zero Day Initiative →

Zero Day Initiative 📡 RSS Feb 19

ZDI-26-121: GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

CVEs: CVE-2026-2048

Zero Day Initiative →

Zero Day Initiative 📡 RSS Feb 19

ZDI-26-120: GIMP ICNS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

CVEs: CVE-2026-2047

Zero Day Initiative →

Zero Day Initiative 📡 RSS Feb 19

ZDI-26-119: GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

CVEs: CVE-2026-2045

Zero Day Initiative →

Zero Day Initiative 📡 RSS Feb 19

ZDI-26-118: GIMP PGM File Parsing Uninitialized Memory Remote Code Execution Vulnerability

CVEs: CVE-2026-2044

Zero Day Initiative →

Zero Day Initiative 📡 RSS Feb 19

ZDI-26-117: RustDesk Client for Windows Transfer File Link Following Information Disclosure Vulnerability

CVEs: CVE-2026-2490

Zero Day Initiative →

Zero Day Initiative 📡 RSS Feb 19

ZDI-26-116: TensorFlow HDF5 Library Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

CVEs: CVE-2026-2492

Zero Day Initiative →