Zero Day Monitor
DashboardVulnerabilitiesTrendingZero-DaysNews
Login
ImpressumPrivacy Policy
Zero Day Monitor © 2026
1035 articles · 106255 vulns · 39/55 feeds (7d)
106255
New CVEs
128
Critical
56
Pre-CVE
1488
CISA KEV
1035
Articles
39/55
Feeds

Vulnerabilities

8.8
microsoft · CVE-2026-21510 — Protection mechanism failure in Windows Shell allows an unauthorized attacker to bypass a security feature over a network.KEV
windows_10_1607· CVSS 8.8· CWE-693
87
1 articles
0
Feb 10, 2026
7.8
microsoft · CVE-2026-21519 — Access of resource using incompatible type ('type confusion') in Desktop Window Manager allows an authorized attacker to elevate privileges locally.KEV
windows_10_1607· CVSS 7.8· CWE-843
87
1 articles
0
Feb 10, 2026
7.8
microsoft · CVE-2026-21533 — Improper privilege management in Windows Remote Desktop allows an authorized attacker to elevate privileges locally.KEV
windows_10_1607· CVSS 7.8· CWE-269
87
1 articles
0
Feb 10, 2026
7.8
microsoft · CVE-2026-21514 — Reliance on untrusted inputs in a security decision in Microsoft Office Word allows an unauthorized attacker to bypass a security feature locally.KEV
365_apps· CVSS 7.8· CWE-807
87
1 articles
0
Feb 10, 2026
8.8
microsoft · CVE-2026-21513 — Protection mechanism failure in MSHTML Framework allows an unauthorized attacker to bypass a security feature over a network.KEV
windows_10_1607· CVSS 8.8· CWE-693
87
1 articles
0
Feb 10, 2026
6.2
microsoft · CVE-2026-21525 — Null pointer dereference in Windows Remote Access Connection Manager allows an unauthorized attacker to deny service locally.KEV
windows_10_1607· CVSS 6.2· CWE-476
83
1 articles
0
Feb 10, 2026
5.5
microsoft · CVE-2026-20805 — Exposure of sensitive information to an unauthorized actor in Desktop Windows Manager allows an authorized attacker to disclose information locally.KEV
windows_10_1607· CVSS 5.5· CWE-200
83
1 articles
0
Jan 13, 2026
8.8
google · CVE-2026-3910 — Inappropriate implementation in V8 in Google Chrome prior to 146.0.7680.75 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: HiKEV
chrome· CVSS 8.8· CWE-94
80
1 articles
0
Mar 13, 2026
8.8
google · CVE-2026-3909 — Out of bounds write in Skia in Google Chrome prior to 146.0.7680.75 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)KEV
chrome· CVSS 8.8· CWE-787
80
1 articles
0
Mar 13, 2026
8.8
microsoft · CVE-2026-20963 — Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.KEV
sharepoint_server· CVSS 8.8· CWE-502
77
3 articles
0
Jan 13, 2026
→ View full list

Urgent

9.8
CVE-2026-33017
langflow langflow
KEV5d ago
5.7
CVE-2026-32326
Sharp Corporation home 5G HR01
today
4.2
CVE-2026-33248
go github.com/nats-io/nats-server/v2
today
6.4
CVE-2026-33246
go github.com/nats-io/nats-server/v2
today
6.4
CVE-2026-33223
go github.com/nats-io/nats-server/v2
today
7.1
CVE-2026-33217
go github.com/nats-io/nats-server/v2
today
9.8
CVE-2026-27542
Wholesale Suite Wholesale Lead Capture Plugin for WooCommerce
KEV6d ago
9.0
CVE-2026-27540
Wholesale Suite Wholesale Lead Capture Plugin for WooCommerce
KEV6d ago
8.8
CVE-2026-22559
Ubiquiti UniFi Network Server
today
9.3
CVE-2026-3055
Citrix NetScaler ADC and NetScaler Gateway
1d ago
→ View full list

Pre-CVE Events

View all
Checkmk Security Bypass Vulnerability
checkmkMEDIUM1 sourcesreported
Multiple Vulnerabilities in FL SWITCH Firmware
phoenix contact1 sourcesreported
Multiple vulnerabilities in Apple products
apple1 sourcesreported
Remote Pre-Auth Buffer Overflow in GNU Inetutils telnetd
gnuCRITICAL1 sourcesreported
Vulnerability in ConnectWise ScreenConnect
connectwi1 sourcesreported

Latest news

[JPCERT/CC]Security Alert: Microsoft Releases January 2026 Security Upd...
[JPCERT/CC]Security Alert: Alert Regarding Vulnerabilities in Adobe Acr...
[JPCERT/CC]Security Alert: Microsoft Releases December 2025 Security Up...
[JPCERT/CC]Security Alert: Microsoft Releases February 2026 Security Up...
[JPCERT/CC]Security Alert: Alert Regarding Vulnerabilities in Adobe Acr...
[BSI Advisories][UPDATE] [mittel] Red Hat OpenShift Service Mesh (Kiali): Sc...
40m ago
[BSI Advisories][UPDATE] [mittel] Checkmk: Schwachstelle ermöglicht Umgehen ...
40m ago
[BSI Advisories][UPDATE] [mittel] dpkg: Schwachstelle ermöglicht Denial of S...
40m ago

Pipeline

170
Queued
2
Analyzing
1035
Today