Zero Day Monitor
DashboardVulnerabilitiesTrendingZero-DaysNews
Login
ImpressumPrivacy Policy
Zero Day Monitor © 2026
1613 articles · 105628 vulns · 38/41 feeds (7d)
105628
New CVEs
227
Critical
0
Pre-CVE
1384
CISA KEV
1613
Articles
38/41
Feeds

Vulnerabilities

9.3
langflow · CVE-2026-33017 — Langflow is a tool for building and deploying AI-powered agents and workflows. In versions prior to 1.9.0, the POST /api/v1/build_public_tmp/{flow_id}/flow endpoint allows building public flows withouKEVEXPLOITED
langflow· CVSS 9.3· CWE-94
104🔥
6 articles
0
Mar 20, 2026
8.8
aquasec · CVE-2026-33634 — Trivy ecosystem supply chain briefly compromisedKEVEXPLOITED
setup-trivy· CVSS 8.8· CWE-506
94
1 articles
0
Mar 23, 2026
9.8
gnu · CVE-2026-24061 — telnetd in GNU Inetutils through 2.7 allows remote authentication bypass via a "-f root" value for the USER environment variable.KEVEXPLOITED
inetutils· CVSS 9.8· CWE-88
85
1 articles
0
Jan 21, 2026
8.8
microsoft · CVE-2026-21510 — Protection mechanism failure in Windows Shell allows an unauthorized attacker to bypass a security feature over a network.KEVEXPLOITED
windows_10_1607· CVSS 8.8· CWE-693
81
1 articles
0
Feb 10, 2026
5.5
microsoft · CVE-2026-20805 — Exposure of sensitive information to an unauthorized actor in Desktop Windows Manager allows an authorized attacker to disclose information locally.KEVEXPLOITED
windows_10_1607· CVSS 5.5· CWE-200
78
1 articles
0
Jan 13, 2026
10.0
oracle · CVE-2026-21962 — Vulnerability in the Oracle HTTP Server, Oracle Weblogic Server Proxy Plug-in product of Oracle Fusion Middleware (component: Weblogic Server Proxy Plug-in for Apache HTTP Server, Weblogic Server ProxKEVEXPLOITED
http_server· CVSS 10.0· CWE-284
77
1 articles
0
Jan 20, 2026
9.3
Cloud Software Group · CVE-2026-3055 — Insufficient input validation in NetScaler ADC and NetScaler Gateway when configured as a SAML IDP leading to memory overreadEXPLOITED
NetScaler ADC and NetScaler Gateway· CVSS 9.3· CWE-125
75
7 articles
0
Mar 23, 2026
10.0
cisco · CVE-2026-20131 — A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software could allow an unauthenticated, remote attacker to execute arbitrary Java code as root&nKEVEXPLOITED
secure_firewall_management_center· CVSS 10.0· CWE-502
74
3 articles
0
Mar 4, 2026
4.3
apple · CVE-2026-28871 — CVE-2026-28871: A logic issue was addressed with improved checks. This issue is fixed in Safari 26.4, iOS 18.7.7 and iPadOS 18.7.7, iOS EXPLOITED
safari· CVSS 4.3
73
28 articles
0
Mar 25, 2026
9.8
n/a · CVE-2026-30530 — CVE-2026-30530: A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the Actions.php file (specifiEXPLOITED
n/a· CVSS 9.8
65
1 articles
0
Mar 27, 2026
→ View full list

Urgent

26.2
aquasec setup-trivy
CVE-2026-33634
KEV4d ago
25.8
wazuh wazuh-manager
CVE-2025-15615
EXPtoday
25.0
n/a n/a
CVE-2026-30303
EXP1d ago
25.0
n/a n/a
CVE-2026-30530
EXP1d ago
25.0
n/a n/a
CVE-2026-30532
EXP
1d ago
25.0
n/a n/a
CVE-2026-30533
EXP1d ago
25.0
n/a n/a
CVE-2026-30302
EXP1d ago
24.8
n/a n/a
CVE-2026-30458
EXP1d ago
24.2
spring spring ai
CVE-2026-22738
EXP1d ago
22.8
appsmith appsmith
CVE-2026-34411
EXPtoday
View full list

Latest news

[JPCERT/CC]Security Alert: Microsoft Releases January 2026 Security Upd...
[JPCERT/CC]Security Alert: Microsoft Releases March 2026 Security Updat...
[JPCERT/CC]Security Alert: Microsoft Releases February 2026 Security Up...
[JPCERT/CC]Security Alert: Alert Regarding Vulnerabilities in Adobe Acr...
[JPCERT/CC]Security Alert: Alert Regarding Vulnerabilities in Adobe Acr...
[JPCERT/CC]Security Alert: Microsoft Releases December 2025 Security Up...
[VulDB]CVE-2026-34040 | docker/moby authorization
1h ago
[VulDB]CVE-2026-34041 | nektos act prior 0.2.86 set-env/add-path in...
2h ago

Pipeline

0
Queued
0
Analyzing
370
Today