Zero Day Monitor
Dashboard
Vulnerabilities
Trending
Zero-Days
News
Login
105344
New CVEs
188
Critical
1
Pre-CVE
1384
CISA KEV
1245
Articles
38/41
Feeds
Vulnerabilities
Trending
Newest
Urgent
9.3
langflow ·
CVE-2026-33017 —
Langflow is a tool for building and deploying AI-powered agents and workflows. In versions prior to 1.9.0, the POST /api/v1/build_public_tmp/{flow_id}/flow endpoint allows building public flows withou
KEV
EXPLOITED
langflow
· CVSS 9.3
· CWE-94
119
🔥
6 articles
0
Mar 20, 2026
8.8
aquasecurity ·
CVE-2026-33634 —
Trivy ecosystem supply chain briefly compromised
KEV
EXPLOITED
trivy
· CVSS 8.8
· CWE-506
108
🔥
1 articles
0
Mar 23, 2026
9.8
gnu ·
CVE-2026-24061 —
telnetd in GNU Inetutils through 2.7 allows remote authentication bypass via a "-f root" value for the USER environment variable.
KEV
EXPLOITED
inetutils
· CVSS 9.8
· CWE-88
97
1 articles
0
Jan 21, 2026
8.8
microsoft ·
CVE-2026-21510 —
Protection mechanism failure in Windows Shell allows an unauthorized attacker to bypass a security feature over a network.
KEV
EXPLOITED
windows_10_1607
· CVSS 8.8
· CWE-693
93
1 articles
0
Feb 10, 2026
5.5
microsoft ·
CVE-2026-20805 —
Exposure of sensitive information to an unauthorized actor in Desktop Windows Manager allows an authorized attacker to disclose information locally.
KEV
EXPLOITED
windows_10_1607
· CVSS 5.5
· CWE-200
89
1 articles
0
Jan 13, 2026
10.0
oracle ·
CVE-2026-21962 —
Vulnerability in the Oracle HTTP Server, Oracle Weblogic Server Proxy Plug-in product of Oracle Fusion Middleware (component: Weblogic Server Proxy Plug-in for Apache HTTP Server, Weblogic Server Prox
KEV
EXPLOITED
http_server
· CVSS 10.0
· CWE-284
88
1 articles
0
Jan 20, 2026
10.0
cisco ·
CVE-2026-20131 —
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software could allow an unauthenticated, remote attacker to execute arbitrary Java code as root&n
KEV
EXPLOITED
secure_firewall_management_center
· CVSS 10.0
· CWE-502
88
3 articles
0
Mar 4, 2026
7.8
apple ·
CVE-2026-20700 —
A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 26.3 and iPadOS 26.3, macOS Tahoe 26.3, tvOS 26.3, visionOS 26.3, watchOS 26.3. An attacker with memo
KEV
EXPLOITED
ipados
· CVSS 7.8
· CWE-119
78
1 articles
0
Feb 11, 2026
10.0
cisco ·
CVE-2026-20127 —
A vulnerability in the peering authentication in Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, and Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an unauthenticated, r
KEV
EXPLOITED
catalyst_sd-wan_manager
· CVSS 10.0
· CWE-287
78
1 articles
0
Feb 25, 2026
7.5
Squid ·
CVE-2026-33526 —
Squid is a caching proxy for the Web. Prior to version 7.5, due to heap Use-After-Free, Squid is vulnerable to Denial of Service when handling ICP traffic. This problem allows a remote attacker to per
EXPLOITED
Squid
· CVSS 7.5
· CWE-416
67
5 articles
0
Mar 26, 2026
→ View full list
Urgent
27.0
aquasecurity trivy
CVE-2026-33634
KEV
3d ago
23.4
8theme xstore core
CVE-2026-25306
KEV
1d ago
22.6
langflow langflow
CVE-2026-33017
KEV
7d ago
21.7
n8n n8n
CVE-2026-33696
EXP
1d ago
21.6
Squid Squid
CVE-2026-33526
EXP
1d ago
21.0
ImageMagick ImageMagick
CVE-2026-33535
EXP
today
20.9
null grid::machine
CVE-2026-4851
EXP
today
19.9
pretix venueless
CVE-2026-4982
EXP
today
19.8
nec platforms aterm wx3600hp
CVE-2026-4619
EXP
today
19.8
nec platforms aterm w1200ex(-ms)
CVE-2026-4309
EXP
today
View full list
Pre-CVE Events
View all
Multiple Vulnerabilities in Siemens SICAM 8 Products
siemens
1 sources
reported
Latest news
[JPCERT/CC]
Security Alert: Alert Regarding Vulnerabilities in Adobe Acr...
[JPCERT/CC]
Security Alert: Alert Regarding Vulnerabilities in Adobe Acr...
[JPCERT/CC]
Security Alert: Microsoft Releases March 2026 Security Updat...
[JPCERT/CC]
Security Alert: Microsoft Releases January 2026 Security Upd...
[JPCERT/CC]
Security Alert: Microsoft Releases December 2025 Security Up...
[JPCERT/CC]
Security Alert: Microsoft Releases February 2026 Security Up...
[CCCS Canada]
[Control systems] Siemens security advisory (AV26-290)
14m ago
[VulDB]
CVE-2026-32859 | Bytedance DeerFlow Artifacts API cross site...
44m ago
Pipeline
0
Queued
0
Analyzing
1245
Today