Zero Day Monitor
ZDM
Dashboard
Vulnerabilities
Trending
Zero-Days
News
Login
42
+12 today
Exploited (7d)
139
+35 today
Critical (7d)
1501
CISA KEV
0
Pre-CVE
835
+835 today
Articles (7d)
Vulnerabilities
Trending
Newest
Urgent
Weekly Urgent
Weekly Trending
8.8
google ·
CVE-2026-5281 —
CVE-2026-5281: Use after free in Dawn in Google Chrome prior to 146.0.7680.178 allowed a remote attacker who had compromised the render
KEV
EXPLOITED
PATCHED
chrome
· CVSS 8.8
· CWE-416
139
🔥
7 art.
0
Apr 1, 2026
7.8
trueconf ·
CVE-2026-3502 —
TrueConf Client downloads application update code and applies it without performing verification. An attacker who is able to influence the update delivery path can substitute a tampered update payload
KEV
EXPLOITED
trueconf
· CVSS 7.8
· CWE-494
107
🔥
2 art.
0
Mar 30, 2026
7.8
apple ·
CVE-2026-20700 —
A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 26.3 and iPadOS 26.3, macOS Tahoe 26.3, tvOS 26.3, visionOS 26.3, watchOS 26.3. An attacker with memo
KEV
EXPLOITED
PATCHED
ipados
· CVSS 7.8
· CWE-119
107
🔥
2 art.
0
Feb 11, 2026
8.8
google ·
CVE-2026-3910 —
Inappropriate implementation in V8 in Google Chrome prior to 146.0.7680.75 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Hi
KEV
EXPLOITED
PATCHED
chrome
· CVSS 8.8
· CWE-94
106
🔥
3 art.
0
Mar 13, 2026
8.8
google ·
CVE-2026-3909 —
Out of bounds write in Skia in Google Chrome prior to 146.0.7680.75 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)
KEV
EXPLOITED
PATCHED
chrome
· CVSS 8.8
· CWE-787
106
🔥
3 art.
0
Mar 13, 2026
8.8
google ·
CVE-2026-2441 —
Use after free in CSS in Google Chrome prior to 145.0.7632.75 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
KEV
EXPLOITED
PATCHED
chrome
· CVSS 8.8
· CWE-416
103
🔥
2 art.
0
Feb 13, 2026
9.8
fortinet ·
CVE-2026-21643 —
An improper neutralization of special elements used in an sql command ('sql injection') vulnerability in Fortinet FortiClientEMS 7.4.4 may allow an unauthenticated attacker to execute unauthorized cod
KEV
EXPLOITED
PATCHED
forticlientems
· CVSS 9.8
· CWE-89
100
5 art.
0
Feb 6, 2026
8.8
microsoft ·
CVE-2026-21510 —
Protection mechanism failure in Windows Shell allows an unauthorized attacker to bypass a security feature over a network.
KEV
EXPLOITED
PATCHED
windows_10_1607
· CVSS 8.8
· CWE-693
95
1 art.
0
Feb 10, 2026
5.5
microsoft ·
CVE-2026-20805 —
Exposure of sensitive information to an unauthorized actor in Desktop Windows Manager allows an authorized attacker to disclose information locally.
KEV
EXPLOITED
PATCHED
windows_10_1607
· CVSS 5.5
· CWE-200
91
1 art.
0
Jan 13, 2026
5.4
djangoproject ·
CVE-2026-1207 —
An issue was discovered in 6.0 before 6.0.2, 5.2 before 5.2.11, and 4.2 before 4.2.28. Raster lookups on ``RasterField`` (only implemented on PostGIS) allows remote attackers to inject SQL via the ban
KEV
EXPLOITED
PATCHED
django
· CVSS 5.4
· CWE-89
86
1 art.
0
Feb 3, 2026
→ View full list
Latest CVEs
View all
CVE-2026-5316
nothings
NONE
56m ago
CVE-2026-34828
golang
HIGH
1h ago
CVE-2026-21767
hcl
MEDIUM
1h ago
CVE-2026-34825
npm
HIGH
1h ago
CVE-2026-34974
composer
MEDIUM
1h ago
Latest news
View all
[B]
adobe
Security Alert: Alert Regarding Vulnerabilities in Adobe Acrobat and Reader (APSB25-119)
[B]
adobe
CVE-2026-27220
Security Alert: Alert Regarding Vulnerabilities in Adobe Acrobat and Reader (APSB26-26)
[B]
microsoft
CVE-2026-21510
Security Alert: Microsoft Releases February 2026 Security Updates
[B]
microsoft
Security Alert: Microsoft Releases March 2026 Security Updates
[B]
microsoft
CVE-2026-20805
Security Alert: Microsoft Releases January 2026 Security Updates
[B]
microsoft
CVE-2025-62221
Security Alert: Microsoft Releases December 2025 Security Updates
[C]
mbed TLS
CVE-2025-66442
CVE-2025-66442 | mbed TLS up to 4.0.0 RSA/CBC/ECB covert timing channel
26m ago
[D]
apple
CVE-2025-43529
Apple expands iOS 18 updates to more iPhones to block DarkSword attacks
3h ago