Zero Day Monitor

Zero Day MonitorZDM

Dashboard Vulnerabilities Trending Zero-Days News

Impressum Privacy Policy

Zero Day Monitor © 2026

1953 articles · 105779 vulns · 38/41 feeds (7d)

279

+7 today

Exploited (7d)

252

+19 today

Critical (7d)

1386

CISA KEV

7

Pre-CVE

1953

+212 today

Articles (7d)

Vulnerabilities

Cloud Software Group · CVE-2026-3055 — Insufficient input validation in NetScaler ADC and NetScaler Gateway when configured as a SAML IDP leading to memory overreadKEVEXPLOITED

NetScaler ADC and NetScaler Gateway· CVSS 9.3· CWE-125

aquasec · CVE-2026-33634 — Trivy ecosystem supply chain briefly compromisedKEVEXPLOITED

setup-trivy· CVSS 8.8· CWE-506

fortinet · CVE-2026-21643 — CVE-2026-21643: An improper neutralization of special elements used in an sql command ('sql injection') vulnerability in Fortinet FortiCKEVEXPLOITED

forticlientems· CVSS 9.1· CWE-89

langflow · CVE-2026-33017 — Langflow is a tool for building and deploying AI-powered agents and workflows. In versions prior to 1.9.0, the POST /api/v1/build_public_tmp/{flow_id}/flow endpoint allows building public flows withouKEVEXPLOITED

langflow· CVSS 9.3· CWE-94

fortinet · CVE-2026-24858 — An Authentication Bypass Using an Alternate Path or Channel vulnerability [CWE-288] vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.5, FortiAnalyzer 7.4.0 through 7.4.9, FortiAnalyzer 7.2.0 KEVEXPLOITED

fortianalyzer· CVSS 9.8· CWE-288

wazuh · CVE-2025-15615 — Wazuh Manager authd service Improper SSL/TLS Renegotiation Handling leading to Denial of ServiceEXPLOITED

wazuh-manager· CVSS 5.8· CWE-276

wazuh · CVE-2023-7340 — Wazuh authd service (os_auth) Heap-based Buffer OverflowEXPLOITED

wazuh· CVSS 7.5· CWE-125

red hat · CVE-2026-1961 — Forman: foreman: remote code execution via command injection in websocket proxyEXPLOITED

red hat satellite 6.16 for rhel· CVSS 8.0

wazuh · CVE-2025-15616 — Wazuh Agent and Manager OS Command Injection and Untrusted Search PathEXPLOITED

wazuh-agent· CVSS 6.7· CWE-94

libfu · CVE-2026-33150 — Use After Free in libfuseEXPLOITED

libfu· CVSS 7.8· CWE-416

→ View full list

Pre-CVE Events

Multiple vulnerabilities in Wazuh

wazuhMEDIUM1 sources

WebKitGTK Multiple Vulnerabilities

webkitMEDIUM1 sources

Multiple vulnerabilities in Fleet

fleetCRITICAL1 sources

Multiple Vulnerabilities in GStreamer

gstreamerHIGH1 sources

Multiple vulnerabilities in Adobe Creative Cloud applications

Latest news

[B]microsoftCVE-2026-21510

Security Alert: Microsoft Releases February 2026 Security Updates

[B]adobe

Security Alert: Alert Regarding Vulnerabilities in Adobe Acrobat and Reader (APSB26-26)

[B]microsoft

Security Alert: Microsoft Releases March 2026 Security Updates

[B]adobe

Security Alert: Alert Regarding Vulnerabilities in Adobe Acrobat and Reader (APSB25-119)

[B]microsoftCVE-2026-20805

Security Alert: Microsoft Releases January 2026 Security Updates

[B]microsoftCVE-2025-62221

Security Alert: Microsoft Releases December 2025 Security Updates

[D]fortinetCVE-2026-21643

FortiClient EMS: Sicherheitslücke wird attackiert

1h ago

[D]fortinetCVE-2026-21643

Critical Fortinet FortiClient EMS bug under active attack (CVE-2026-21643)

1h ago