Zero Day Monitor

Zero Day MonitorZDM

696

+67 today

Exploited (7d)

190

+49 today

Critical (7d)

1542

CISA KEV

6

Pre-CVE

2748

+363 today

Articles (7d)

Threat Briefing

Global

Loading...

About Zero Day Monitor

Open-source vulnerability intelligence for security teams. The platform scans 41 security feeds, analyzes articles with AI, and surfaces the threats that matter. Track trending CVEs, discover zero-days before they get a CVE ID, and monitor your vendor stack for supply-chain risks.

Trending

Ranked by source count

Zero-Days

Pre-CVE detection

Verification

Community-driven

Open Source

AGPL-3.0 licensed

Learn more about the project Sign in for personalized features

Vulnerabilities

fortinet · CVE-2026-21643 — CVE-2026-21643: An improper neutralization of special elements used in an sql command ('sql injection') vulnerability in Fortinet FortiCKEVEXPLOITEDPATCHED

forticlientems· CVSS 9.1· CWE-89

adobe · CVE-2026-34621 — Acrobat Reader | Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') (CWE-1321)KEVEXPLOITEDPATCHED

acrobat_dc· CVSS 8.6· CWE-1321

fortinet · CVE-2026-35616 — CVE-2026-35616: A improper access control vulnerability in Fortinet FortiClientEMS 7.4.5 through 7.4.6 may allow an unauthenticated attaKEVEXPLOITEDPATCHED

forticlientems· CVSS 9.8· CWE-284

marimo · CVE-2026-39987 — marimo Affected by Pre-Auth Remote Code Execution via Terminal WebSocket Authentication BypassKEVEXPLOITEDPATCHED

marimo· CVSS 9.3· CWE-306

gnu · CVE-2026-24061 — telnetd in GNU Inetutils through 2.7 allows remote authentication bypass via a "-f root" value for the USER environment variable.KEVEXPLOITEDPATCHED

inetutils· CVSS 9.8· CWE-88

openclaw · CVE-2026-25253 — OpenClaw (aka clawdbot or Moltbot) before 2026.1.29 obtains a gatewayUrl value from a query string and automatically makes a WebSocket connection without prompting, sending a token value.KEVEXPLOITEDPATCHED

openclaw· CVSS 8.8· CWE-669

google · CVE-2026-5281 — CVE-2026-5281: Use after free in Dawn in Google Chrome prior to 146.0.7680.178 allowed a remote attacker who had compromised the renderKEVEXPLOITEDPATCHED

chrome· CVSS 8.8· CWE-416

wolfssl · CVE-2026-5194 — wolfSSL ECDSA Certificate VerificationEXPLOITEDPATCHED

wolfssl· CVSS 9.3· CWE-295

ivanti · CVE-2026-1340 — CVE-2026-1340: A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated remote code execution.KEVEXPLOITEDPATCHED

endpoint_manager_mobile· CVSS 9.8· CWE-94

ffmpeg · CVE-2026-30998 — CVE-2026-30998: An improper resource deallocation and closure vulnerability in the tools/zmqsend.c component of FFmpeg v8.0.1 allows attEXPLOITED

ffmpeg· CVSS 7.5· CWE-400

→ View full list

Pre-CVE Events

Multiple Vulnerabilities in BigBlueButton Allow Data Manipulation and User Redirection

MEDIUM1 sources

How Hackers Are Thinking About AI

Multiple Vulnerabilities in Apache Airflow Allow Arbitrary Code Execution and Security Bypass

apacheHIGH1 sources

Multiple Vulnerabilities in SAP Software Allowing SQL Injection, Code Execution, and Other Attacks

sapHIGH1 sources

Industrialization of Exploitation and Patch Window Collapse

Latest news

[B]adobeCVE-2026-27220

Security Alert: Alert Regarding Vulnerabilities in Adobe Acrobat and Reader (APSB26-26)

[B]microsoft

Security Alert: Microsoft Releases March 2026 Security Updates

[B]adobe

Security Alert: Alert Regarding Vulnerabilities in Adobe Acrobat and Reader (APSB25-119)

[B]microsoftCVE-2026-21510

Security Alert: Microsoft Releases February 2026 Security Updates

[B]microsoftCVE-2025-62221

Security Alert: Microsoft Releases December 2025 Security Updates

[B]microsoftCVE-2026-20805

Security Alert: Microsoft Releases January 2026 Security Updates

[D]sapCVE-2026-27681

SAP Patches Critical ABAP Vulnerability

17m ago

[D]sapCVE-2026-27681

SAP-Patchday: Eine kritische SQL-Injection-Lücke – und 18 weitere

21m ago