Zero Day MonitorZDM
DashboardVulnerabilitiesTrendingZero-DaysNewsAbout
Login
ImpressumPrivacy Policy
Zero Day Monitor © 2026
4171 articles · 176149 vulns · 36/41 feeds (7d)
1086
+429 today
Exploited (7d)
202
+70 today
Critical (7d)
1699
CISA KEV
368
Pre-CVE
4171
+1755 today
Articles (7d)

Threat Briefing

Global

Loading...

About Zero Day Monitor

Open-source vulnerability intelligence for security teams. The platform scans 41 security feeds, analyzes articles with AI, and surfaces the threats that matter. Track trending CVEs, discover zero-days before they get a CVE ID, and monitor your vendor stack for supply-chain risks.

Trending
Ranked by source count
Zero-Days
Pre-CVE detection
Verification
Community-driven
Open Source
AGPL-3.0 licensed
Learn more about the projectSign in for personalized features

Vulnerabilities

5.3
microsoft · CVE-2026-56164 — Microsoft SharePoint Server Elevation of Privilege VulnerabilityKEVEXPLOITEDPATCHED
sharepoint_server· CVSS 5.3· CWE-306
155🔥
12 art.
0
Jul 14, 2026
7.8
microsoft · CVE-2026-56155 — Active Directory Federation Services Elevation of Privilege VulnerabilityKEVEXPLOITED
PATCHED
windows_10_1607· CVSS 7.8· CWE-1220
154🔥
11 art.
0
Jul 14, 2026
8.8
microsoft · CVE-2026-45659 — Microsoft SharePoint Remote Code Execution VulnerabilityKEVEXPLOITEDPATCHED
sharepoint_server· CVSS 8.8· CWE-502
149🔥
12 art.
0
May 22, 2026
7.8
linux · CVE-2026-31431 — crypto: algif_aead - Revert to operating out-of-placeKEVEXPLOITEDPATCHED
linux_kernel· CVSS 7.8
145🔥
85 art.
0
Apr 22, 2026
8.8
linux · CVE-2026-43284 — xfrm: esp: avoid in-place decrypt on shared skb fragsKEVEXPLOITEDPATCHED
linux_kernel· CVSS 8.8
138🔥
45 art.
0
May 8, 2026
10.0
sma solar technology · CVE-2026-15409 — CVE-2026-15409: A Server-side request forgery (SSRF) vulnerability has been identified in the SMA1000 Appliance Work Place interface. A EXPLOITEDPATCHED
sma1000 appliance work place interface· CVSS 10.0· CWE-918
113🔥
10 art.
0
Jul 14, 2026
—
joomlic · CVE-2026-48939 — Joomla Extension - icagenda.com - Remote Code Execution in iCaganda extension for Joomla < 4.0.8/3.9.15KEVEXPLOITED
icagenda· CWE-434
102🔥
4 art.
0
Jun 20, 2026
7.2
sma solar technology · CVE-2026-15410 — CVE-2026-15410: Post-authentication improper control of generation of code ('Code Injection') vulnerability has been identified in the SEXPLOITEDPATCHED
appliance management· CVSS 7.2· CWE-94
97
9 art.
0
Jul 14, 2026
9.1
microsoft · CVE-2026-55040 — Microsoft SharePoint Server Security Feature Bypass VulnerabilityEXPLOITEDPATCHED
sharepoint· CVSS 9.1· CWE-1390
96
9 art.
0
Jul 14, 2026
—
balbooa · CVE-2026-56291 — Joomla Extension - balbooa.com - Unauthenticated file upload in Balbooa Forms extension < 2.4.1KEVEXPLOITED
forms· CWE-434
96
2 art.
0
Jul 9, 2026
→ View full list

Pre-CVE Events

View all
ZERO-DAYCisco Advance Notification for Publication of July 1, 2026, Security Advisories
cisco1 sourcesverified
ZERO-DAYMalicious Code Injection via Axios npm Package Maintainer Account Takeover
axiosMEDIUM1 sourcesverified
ZERO-DAYADV990001 Latest Servicing Stack Updates
1 sourcesverified
Local Denial-of-Service Attack Vectors in seunshare
suHIGH1 sources
Multiple Vulnerabilities in HPE Telco Intelligent Assurance and Unified OSS Console Products
hewlett packard enterpriCRITICAL1 sources

Latest news

View all
[B]trend microCVE-2026-34926
Security Alert: Alert Regarding Multiple Vulnerabilities in Trend Micro Products Including TrendAI Apex One
[B]microsoftCVE-2025-62221
Security Alert: Microsoft Releases December 2025 Security Updates
[B]microsoftCVE-2026-42897
Security Alert: Microsoft Releases June 2026 Security Updates
[B]microsoft
Security Alert: Microsoft Releases March 2026 Security Updates
[B]adobe
Security Alert: Alert Regarding Vulnerabilities in Adobe Acrobat and Reader (APSB26-63)
[B]microsoftCVE-2026-32201
Security Alert: Microsoft Releases April 2026 Security Updates
[B]microsoftCVE-2026-56164
Security Alert: Microsoft Releases July 2026 Security Updates
[B]adobe
Security Alert: Alert Regarding Vulnerabilities in Adobe Acrobat and Reader (APSB25-119)