Zero Day MonitorZDM
DashboardVulnerabilitiesTrendingZero-DaysNewsAbout
Login
ImpressumPrivacy Policy
Zero Day Monitor © 2026
3994 articles · 175990 vulns · 37/41 feeds (7d)
1056
+385 today
Exploited (7d)
228
+95 today
Critical (7d)
1699
CISA KEV
363
Pre-CVE
3994
+1556 today
Articles (7d)

Threat Briefing

Global

Loading...

About Zero Day Monitor

Open-source vulnerability intelligence for security teams. The platform scans 41 security feeds, analyzes articles with AI, and surfaces the threats that matter. Track trending CVEs, discover zero-days before they get a CVE ID, and monitor your vendor stack for supply-chain risks.

Trending
Ranked by source count
Zero-Days
Pre-CVE detection
Verification
Community-driven
Open Source
AGPL-3.0 licensed
Learn more about the projectSign in for personalized features

Vulnerabilities

7.8
microsoft · CVE-2026-56155 — Active Directory Federation Services Elevation of Privilege VulnerabilityKEVEXPLOITEDPATCHED
windows 10 version· CVSS 7.8· CWE-1220
138🔥
5 art.
0
Jul 14, 2026
5.3
microsoft · CVE-2026-56164 — Microsoft SharePoint Server Elevation of Privilege VulnerabilityKEVEXPLOITED
PATCHED
microsoft sharepoint enterprise server· CVSS 5.3· CWE-306
135🔥
4 art.
0
Jul 14, 2026
—
joomlic · CVE-2026-48939 — Joomla Extension - icagenda.com - Remote Code Execution in iCaganda extension for Joomla < 4.0.8/3.9.15KEVEXPLOITED
icagenda· CWE-434
116🔥
4 art.
0
Jun 20, 2026
—
balbooa · CVE-2026-56291 — Joomla Extension - balbooa.com - Unauthenticated file upload in Balbooa Forms extension < 2.4.1KEVEXPLOITED
forms· CWE-434
109🔥
2 art.
0
Jul 9, 2026
7.8
microsoft · CVE-2026-50656 — Microsoft Defender Elevation of Privilege VulnerabilityEXPLOITEDPATCHED
malware_protection_engine· CVSS 7.8· CWE-59
100
15 art.
0
Jun 16, 2026
7.8
palo alto networks · CVE-2026-0257 — PAN-OS: GlobalProtect Authentication Bypass VulnerabilitiesEXPLOITEDPATCHED
pan-os· CVSS 7.8· CWE-565
93
19 art.
0
May 13, 2026
9.8
apache · CVE-2026-41293 — Apache Tomcat: HTTP/2 request headers not validatedEXPLOITEDPATCHED
tomcat· CVSS 9.8· CWE-20
83
7 art.
0
May 12, 2026
—
linux · CVE-2026-53359 — KVM: x86: Fix shadow paging use-after-free due to unexpected roleEXPLOITEDPATCHED
linux kernel· CWE-416
79
14 art.
0
Jul 4, 2026
9.1
apache software foundation · CVE-2026-59083 — Apache Tomcat: Incorrect URL decoding in RewriteValve may allow security control bypassEXPLOITEDPATCHED
apache tomcat· CVSS 9.1· CWE-177
75
3 art.
0
Jul 14, 2026
9.1
apache software foundation · CVE-2026-59084 — Apache Tomcat: EncryptInterceptor requirements not clearly documentedEXPLOITEDPATCHED
apache tomcat· CVSS 9.1· CWE-1059
75
3 art.
0
Jul 14, 2026
→ View full list

Pre-CVE Events

View all
ZERO-DAYCisco Advance Notification for Publication of July 1, 2026, Security Advisories
cisco1 sourcesverified
ZERO-DAYMalicious Code Injection via Axios npm Package Maintainer Account Takeover
axiosMEDIUM1 sourcesverified
ZERO-DAYADV990001 Latest Servicing Stack Updates
1 sourcesverified
How Qualys ETM Identity Detects Identity-Based Attacks Faster
1 sources
Critical vulnerability in Veeam Software Appliance Updater Component
veeamCRITICAL1 sources

Latest news

View all
[B]adobeCVE-2026-27220
Security Alert: Alert Regarding Vulnerabilities in Adobe Acrobat and Reader (APSB26-26)
[B]microsoft
Security Alert: Microsoft Releases May 2026 Security Updates
[B]microsoftCVE-2026-21510
Security Alert: Microsoft Releases February 2026 Security Updates
[B]microsoftCVE-2025-62221
Security Alert: Microsoft Releases December 2025 Security Updates
[B]trend microCVE-2026-34926
Security Alert: Alert Regarding Multiple Vulnerabilities in Trend Micro Products Including TrendAI Apex One
[B]microsoftCVE-2026-32201
Security Alert: Microsoft Releases April 2026 Security Updates
[B]adobe
Security Alert: Alert Regarding Vulnerabilities in Adobe Acrobat and Reader (APSB26-44)
[B]microsoftCVE-2026-20805
Security Alert: Microsoft Releases January 2026 Security Updates