Zero Day MonitorZDM

Dashboard Vulnerabilities Trending Zero-Days News About

Impressum Privacy Policy

Zero Day Monitor © 2026

3400 articles · 168090 vulns · 36/41 feeds (7d)

Trending Vulnerabilities

Top vulnerabilities ranked by news velocity, CISA KEV status, EPSS exploitation probability, and independent source coverage.

1

linux · CVE-2026-31431 — crypto: algif_aead - Revert to operating out-of-placeKEVEXPLOITEDPATCHED

linux_kernel· CVSS 7.8

2

cis · CVE-2026-20230 — CVE-2026-20230: A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session MaEXPLOITEDPATCHED

unified_communications_manager· CVSS 8.6· CWE-918

3

linux · CVE-2026-43284 — xfrm: esp: avoid in-place decrypt on shared skb fragsKEVEXPLOITEDPATCHED

linux_kernel· CVSS 8.8

4

linux · CVE-2026-43500 — rxrpc: Also unshare DATA/RESPONSE packets when paged frags are presentKEVEXPLOITEDPATCHED

linux_kernel· CVSS 7.8

5

ui · CVE-2026-34908 — CVE-2026-34908: A malicious actor with access to the network could exploit an Improper Access Control vulnerability found in UniFi OS deKEVEXPLOITEDPATCHED

unifi_os_server· CVSS 10.0· CWE-284

6

ptc · CVE-2026-12569 — Remote Code Execution (RCE) vulnerability in Windchill PDMlinkEXPLOITEDPATCHED

flexplm· CWE-20

7

ui · CVE-2026-34909 — CVE-2026-34909: A malicious actor with access to the network could exploit a Path Traversal vulnerability found in UniFi OS devices to aKEVEXPLOITEDPATCHED

unifi_os_server· CVSS 10.0· CWE-22

8

linux · CVE-2026-46243 — smb: client: reject userspace cifs.spnego descriptionsEXPLOITEDPATCHED

linux_kernel· CVSS 7.1

9

libssh2 · CVE-2026-55200 — libssh2 - Out-of-Bounds Write via Unchecked packet_length in transport.cEXPLOITEDPATCHED

libssh2· CVSS 9.2· CWE-680

10

mappress · CVE-2026-56011 — WordPress MapPress Maps for WordPress plugin <= 2.97.3 - Cross Site Scripting (XSS) vulnerabilityKEVEXPLOITED

mappress maps for wordpress· CVSS 7.1· CWE-79

11

libssh2 · CVE-2026-55199 — libssh2 - Pre-Authentication DoS via SSH_MSG_EXT_INFO HandlerEXPLOITEDPATCHED

libssh2· CVSS 9.2· CWE-835

12

linux · CVE-2026-46333 — ptrace: slightly saner 'get_dumpable()' logicEXPLOITEDPATCHED

kernel· CVSS 7.1· CWE-362

13

libssh2 · CVE-2025-15661 — libssh2 - Heap Buffer Over-read via sftp_symlink() in sftp.cEXPLOITEDPATCHED

libssh2· CVSS 9.2· CWE-125

14

f5 · CVE-2026-48142 — NGINX ngx_http_charset_module vulnerabilityEXPLOITEDPATCHED

nginx· CVSS 4.8· CWE-125

15

cis · CVE-2026-20245 — Cisco Catalyst SD-WAN Controller Authenticated Privilege Escalation VulnerabilityEXPLOITEDPATCHED

catalyst_sd-wan_manager· CVSS 7.8· CWE-116

16

python software foundation · CVE-2026-12003 — CPython >3.11 Insecure Input Validation resulting in privilege escalationEXPLOITEDPATCHED

python· CVSS 5.3· CWE-427

17

linux · CVE-2026-53120 — PCI: use generic driver_override infrastructureEXPLOITEDPATCHED

18

linux · CVE-2026-53131 — netfilter: require Ethernet MAC header before using eth_hdr()EXPLOITEDPATCHED

linux kernel· CVSS 9.4

19

linux · CVE-2026-53262 — l2tp: pppol2tp: hold reference to session in pppol2tp_ioctl()EXPLOITEDPATCHED

linux kernel· CVSS 7.8

20

linux · CVE-2026-53258 — wifi: fix leak if split 6 GHz scanning failsEXPLOITEDPATCHED

21

linux · CVE-2026-53225 — sctp: fix uninit-value in __sctp_rcv_asconf_lookup()EXPLOITEDPATCHED

linux kernel· CVSS 9.1

22

linux · CVE-2026-53265 — dm cache policy smq: check allocation under invalidate lockEXPLOITEDPATCHED

linux kernel· CVSS 7.8

23

linux · CVE-2026-53228 — ipv6: sit: reload inner IPv6 header after GSO offloadsEXPLOITEDPATCHED

linux kernel· CVSS 9.8

24

linux · CVE-2026-52943 — net: skbuff: fix missing zerocopy reference in pskb_carve helpersEXPLOITEDPATCHED

linux kernel· CVSS 7.8

25

linux · CVE-2026-53253 — Bluetooth: bnep: reject short frames before parsingEXPLOITEDPATCHED

linux kernel· CVSS 7.1

26

linux · CVE-2026-53263 — 6lowpan: fix off-by-one in multicast context address compressionEXPLOITEDPATCHED

linux kernel· CWE-119

27

linux · CVE-2026-53132 — vsock/virtio: fix potential unbounded skb queueEXPLOITEDPATCHED

linux kernel· CVSS 7.1

28

ninenines · CVE-2026-43973 — gun HTTP/1.1 response buffer has no size limit allowing server-controlled memory exhaustionEXPLOITEDPATCHED

29

linux · CVE-2026-53237 — gpio: mvebu: fix NULL pointer dereference in suspend/resumeEXPLOITEDPATCHED

30

linux · CVE-2026-53254 — Bluetooth: RFCOMM: validate skb length in MCC handlersEXPLOITEDPATCHED

linux kernel· CVSS 8.1

31

linux · CVE-2026-53245 — net/802/mrp: fix vector attribute parsing in mrp_pdu_parse_vecattrEXPLOITEDPATCHED

32

linux · CVE-2026-53118 — vdpa: use generic driver_override infrastructureEXPLOITEDPATCHED

linux kernel· CWE-416

33

linux · CVE-2026-53182 — wifi: nl80211: reject oversized EMA RNR listsEXPLOITEDPATCHED

linux kernel· CVSS 7.8

34

linux · CVE-2026-53246 — sctp: validate cached peer INIT chunk length in COOKIE_ECHO processingEXPLOITEDPATCHED

linux kernel· CVSS 9.8

35

linux · CVE-2026-53255 — Bluetooth: MGMT: validate advertising TLV before type checksEXPLOITEDPATCHED

36

linux · CVE-2026-53232 — net: phy: clean the sfp upstream if phy probing failsEXPLOITEDPATCHED

linux kernel· CVSS 8.8

37

linux · CVE-2026-53252 — Bluetooth: fix memory leak in error path of hci_alloc_dev()EXPLOITEDPATCHED

38

linux · CVE-2026-53267 — netfilter: nft_ct: bail out on template ct in get evalEXPLOITEDPATCHED

linux kernel· CVSS 7.8

39

gpac project · CVE-2025-60474 — CVE-2025-60474: A buffer overflow in the gf_media_import function (/media_tools/av_parsers.c) of GPAC Project/MP4Box before 26.02.0 alloEXPLOITED

mp4box· CVSS 7.5

40

langflow · CVE-2026-55255 — Langflow: IDOR Vulnerability in `/api/v1/responses` Endpoint Allows Authenticated Attackers to Access Another User's FlowKEVEXPLOITEDPATCHED

langflow· CVSS 9.9· CWE-639

41

linux · CVE-2026-53291 — ALSA: hda/conexant: Fix missing error check for jack detectionEXPLOITEDPATCHED

42

linux · CVE-2026-53306 — tty: hvc_iucv: fix off-by-one in number of supported devicesEXPLOITEDPATCHED

43

linux · CVE-2026-53309 — ocfs2/dlm: fix off-by-one in dlm_match_regions() region comparisonEXPLOITEDPATCHED

linux kernel· CVSS 9.8

44

libexpat_project · CVE-2026-56406 — CVE-2026-56406: libexpat before 2.8.2 has an integer overflow in XML_ParseBuffer because it lacked a check that was present in XML_ParseEXPLOITEDPATCHED

libexpat· CVSS 6.9· CWE-190

45

amd · CVE-2026-46245 — drm/amd/display: Fix dc_link NULL handling in HPD initEXPLOITEDPATCHED

46

google · CVE-2026-13033 — CVE-2026-13033: Out of bounds read and write in Blink>InterestGroups in Google Chrome prior to 149.0.7827.197 allowed a remote attacker EXPLOITEDPATCHED

chrome· CVSS 8.8· CWE-125

47

google · CVE-2026-13038 — CVE-2026-13038: Use after free in Autofill in Google Chrome on Windows prior to 149.0.7827.197 allowed a remote attacker to execute arbiEXPLOITEDPATCHED

chrome· CVSS 8.8· CWE-416

48

linux · CVE-2025-71313 — PCI: endpoint: Add missing NULL check for alloc_workqueue()EXPLOITEDPATCHED

49

mediatek · CVE-2026-53097 — wifi: mt76: mt7996: fix use-after-free bugs in mt7996_mac_dump_work()EXPLOITEDPATCHED

50

linux · CVE-2026-46300 — net: skbuff: preserve shared-frag marker during coalescingEXPLOITEDPATCHED

linux_kernel· CVSS 7.8