Zero Day MonitorZDM

Dashboard Vulnerabilities Trending Zero-Days News About

Impressum Privacy Policy

Zero Day Monitor © 2026

3390 articles · 142067 vulns · 36/41 feeds (7d)

Zero-Days & Pre-CVE Events

Vulnerabilities detected from news before an official CVE-ID was assigned. These events are created via article clustering and LLM analysis.

Sort:newest trending critical

+ Report Zero-DayLogin to submit

Confirmed (≥0.85)

Likely (0.50–0.84)

Uncertain (<0.50)

oracle · dnsmasq vulnerabilities including DNS redirect and privilege escalationPRE-CVEPATCHED

hathornetwork · Fail-open authentication in hathor-wallet-headlessPRE-CVE

hathor-wallet-headless· CVSS 9.8· CWE-1188

broadcom · Critical vulnerabilities in VMware Tanzu RabbitMQ on KubernetesPRE-CVEPATCHED

vmware tanzu rabbitmq on kubernetes

red hat · Multiple vulnerabilities in Red Hat Linux kernelPRE-CVE

Multiple Vulnerabilities in Industrial Control Systems ProductsPRE-CVE

the linux foundation · Use-After-Free in KTLS + sockmapPRE-CVEEXPLOITED

linux kernel· CWE-416

dell · Multiple Vulnerabilities in Dell PowerScale, Elastic Cloud Storage, and ObjectScalePRE-CVEPATCHED

powerscale, elastic cloud storage (ecs), objectscale

GTIG AI Threat Tracker: Adversaries Leverage AI for Vulnerability Exploitation, Augmented Operations, and Initial AccessPRE-CVE

Bringing AI Code Security into Qualys ETMPRE-CVE

kde · Multiple vulnerabilities in KDE Kdenlive and Okular allowing remote code execution, security bypass, data manipulation, information disclosure, and denial of servicePRE-CVE

kdenlive and okular· CVSS 8.4

Code Execution Vulnerability in vm2PRE-CVE

vm2· CVSS 7.5· CWE-94

Re: Re: Dirty Frag: Universal Linux LPEPRE-CVE

Detection as Code Methodology for Security TeamsPRE-CVE

ruby core team · Multiple Vulnerabilities in Ruby Allow Remote Denial of Service and Information DisclosurePRE-CVEEXPLOITED

ruby · Security Bypass Vulnerability in RubyPRE-CVEEXPLOITED

oracle · Multiple Vulnerabilities in Oracle Fusion MiddlewarePRE-CVE

fusion middleware

instructure · Canvas Data Breach and Extortion Attack by ShinyHuntersPRE-CVEEXPLOITED

null · io_uring zcrx freelist OOB writePRE-CVEEXPLOITEDPATCHED

Copy Fail 2 / Dirty Frag — n-day from public commit, not embargo breakPRE-CVE

Rapid7 and OpenAI: Helping Defenders Move at Machine SpeedPRE-CVE

Tune In: The Future of AI-Powered Vulnerability DiscoveryPRE-CVE

Coordinated Disclosure in the LLM AgePRE-CVE

Five defender priorities from the Talos Year in ReviewPRE-CVE

ADV990001 Latest Servicing Stack UpdatesPRE-CVE

axios · Malicious Code Injection via Axios npm Package Maintainer Account TakeoverPRE-CVE

axios npm package· CVSS 5.0· CWE-254