Zero Day Monitor
DashboardVulnerabilitiesTrendingZero-DaysNews
Login
ImpressumPrivacy Policy
Zero Day Monitor © 2026
1040 articles · 105207 vulns · 38/41 feeds (7d)
105207
New CVEs
200
Critical
0
Pre-CVE
1384
CISA KEV
1040
Articles
38/41
Feeds

Vulnerabilities

8.8
aquasecurity · CVE-2026-33634 — Trivy ecosystem supply chain briefly compromisedKEVEXPLOITED
trivy· CVSS 8.8· CWE-506
112🔥
1 articles
0
Mar 23, 2026
9.3
langflow · CVE-2026-33017 — Langflow is a tool for building and deploying AI-powered agents and workflows. In versions prior to 1.9.0, the POST /api/v1/build_public_tmp/{flow_id}/flow endpoint allows building public flows withouKEVEXPLOITED
langflow· CVSS 9.3· CWE-94
108🔥
4 articles
0
Mar 20, 2026
8.8
microsoft · CVE-2026-21510 — Protection mechanism failure in Windows Shell allows an unauthorized attacker to bypass a security feature over a network.KEVEXPLOITED
windows_10_1607· CVSS 8.8· CWE-693
97
1 articles
0
Feb 10, 2026
5.5
microsoft · CVE-2026-20805 — Exposure of sensitive information to an unauthorized actor in Desktop Windows Manager allows an authorized attacker to disclose information locally.KEVEXPLOITED
windows_10_1607· CVSS 5.5· CWE-200
93
1 articles
0
Jan 13, 2026
10.0
cisco · CVE-2026-20131 — A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software could allow an unauthenticated, remote attacker to execute arbitrary Java code as root&nKEVEXPLOITED
secure_firewall_management_center· CVSS 10.0· CWE-502
91
3 articles
0
Mar 4, 2026
10.0
oracle · CVE-2026-21962 — Vulnerability in the Oracle HTTP Server, Oracle Weblogic Server Proxy Plug-in product of Oracle Fusion Middleware (component: Weblogic Server Proxy Plug-in for Apache HTTP Server, Weblogic Server ProxKEVEXPLOITED
http_server· CVSS 10.0· CWE-284
91
1 articles
0
Jan 20, 2026
7.8
apple · CVE-2026-20700 — A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 26.3 and iPadOS 26.3, macOS Tahoe 26.3, tvOS 26.3, visionOS 26.3, watchOS 26.3. An attacker with memoKEVEXPLOITED
ipados· CVSS 7.8· CWE-119
81
1 articles
0
Feb 11, 2026
10.0
cisco · CVE-2026-20127 — A vulnerability in the peering authentication in Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, and Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an unauthenticated, rKEVEXPLOITED
catalyst_sd-wan_manager· CVSS 10.0· CWE-287
81
1 articles
0
Feb 25, 2026
7.5
squid-cache · CVE-2026-32748 — Squid is a caching proxy for the Web. Prior to version 7.5, due to premature release of resource during expected lifetime and heap Use-After-Free bugs, Squid is vulnerable to Denial of Service when haEXPLOITED
squid· CVSS 7.5· CWE-413
66
4 articles
0
Mar 26, 2026
9.8
oracle · CVE-2026-21992 — Vulnerability in the Oracle Identity Manager product of Oracle Fusion Middleware (component: REST WebServices) and Oracle Web Services Manager product of Oracle Fusion Middleware (component: Web ServiEXPLOITED
identity_manager· CVSS 9.8· CWE-306
64
4 articles
0
Mar 20, 2026
→ View full list

Urgent

27.2
aquasecurity trivy
CVE-2026-33634
KEV3d ago
23.6
8theme xstore core
CVE-2026-25306
KEV1d ago
21.3
ImageMagick ImageMagick
CVE-2026-33535
EXPtoday
21.2
null grid::machine
CVE-2026-4851
EXPtoday
20.7
langflow langflow
CVE-2026-33017
KEV
7d ago
19.9
n/a n/a
CVE-2026-26830
1d ago
19.8
Squid Squid
CVE-2026-33526
EXP1d ago
19.8
squid-cache squid
CVE-2026-32748
EXP1d ago
19.8
spring spring ai
CVE-2026-22742
EXPtoday
19.8
buffalo buffalo wi-fi router products
CVE-2026-33366
EXPtoday
View full list

Latest news

[JPCERT/CC]Security Alert: Alert Regarding Vulnerabilities in Adobe Acr...
[JPCERT/CC]Security Alert: Microsoft Releases March 2026 Security Updat...
[JPCERT/CC]Security Alert: Alert Regarding Vulnerabilities in Adobe Acr...
[JPCERT/CC]Security Alert: Microsoft Releases December 2025 Security Up...
[JPCERT/CC]Security Alert: Microsoft Releases February 2026 Security Up...
[JPCERT/CC]Security Alert: Microsoft Releases January 2026 Security Upd...
[Microsoft MSRC]CVE-2026-23233 f2fs: fix to avoid mapping wrong physical blo...
3m ago
[Microsoft MSRC]CVE-2026-23235 f2fs: fix out-of-bounds access in sysfs attri...
3m ago

Pipeline

25
Queued
0
Analyzing
1040
Today