Zero Day Monitor
Dashboard
Vulnerabilities
Trending
Zero-Days
News
Login
106836
New CVEs
281
Critical
74
Pre-CVE
1489
CISA KEV
1725
Articles
38/55
Feeds
Vulnerabilities
Trending
Newest
Urgent
10.0
Cisco ·
CVE-2026-20131 —
Cisco Secure Firewall Management Center Software Remote Code Execution Vulnerability
KEV
Cisco Secure Firewall Management Center (FMC)
· CVSS 10.0
· CWE-502
117
🔥
8 articles
0
Mar 4, 2026
9.8
langflow-ai ·
CVE-2026-33017 —
Langflow has Unauthenticated Remote Code Execution via Public Flow Build Endpoint
KEV
langflow
· CVSS 9.8
· CWE-94
97
2 articles
0
Mar 20, 2026
—
aquasecurity ·
CVE-2026-33634 —
Trivy ecosystem supply chain briefly compromised
KEV
setup-trivy
· CWE-506
91
1 articles
0
Mar 23, 2026
10.0
cisco ·
CVE-2026-20127 —
A vulnerability in the peering authentication in Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, and Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an unauthenticated, r
KEV
catalyst_sd-wan_manager
· CVSS 10.0
· CWE-287
90
1 articles
0
Feb 25, 2026
7.8
microsoft ·
CVE-2026-21533 —
Improper privilege management in Windows Remote Desktop allows an authorized attacker to elevate privileges locally.
KEV
windows_10_1607
· CVSS 7.8
· CWE-269
84
1 articles
0
Feb 10, 2026
8.8
microsoft ·
CVE-2026-21510 —
Protection mechanism failure in Windows Shell allows an unauthorized attacker to bypass a security feature over a network.
KEV
windows_10_1607
· CVSS 8.8
· CWE-693
84
1 articles
0
Feb 10, 2026
8.8
microsoft ·
CVE-2026-21513 —
Protection mechanism failure in MSHTML Framework allows an unauthorized attacker to bypass a security feature over a network.
KEV
windows_10_1607
· CVSS 8.8
· CWE-693
84
1 articles
0
Feb 10, 2026
7.8
microsoft ·
CVE-2026-21514 —
Reliance on untrusted inputs in a security decision in Microsoft Office Word allows an unauthorized attacker to bypass a security feature locally.
KEV
365_apps
· CVSS 7.8
· CWE-807
84
1 articles
0
Feb 10, 2026
7.8
microsoft ·
CVE-2026-21519 —
Access of resource using incompatible type ('type confusion') in Desktop Window Manager allows an authorized attacker to elevate privileges locally.
KEV
windows_10_1607
· CVSS 7.8
· CWE-843
84
1 articles
0
Feb 10, 2026
5.5
microsoft ·
CVE-2026-20805 —
Exposure of sensitive information to an unauthorized actor in Desktop Windows Manager allows an authorized attacker to disclose information locally.
KEV
windows_10_1607
· CVSS 5.5
· CWE-200
80
1 articles
0
Jan 13, 2026
→ View full list
Urgent
—
CVE-2026-33722
n8n-io n8n
today
—
CVE-2026-33713
n8n-io n8n
today
—
CVE-2026-33696
n8n-io n8n
today
—
CVE-2026-25469
ViaBill ViaBill Plugin
today
—
CVE-2026-25464
TieLabs Jannah
today
—
CVE-2026-25462
avalex avalex
today
—
CVE-2026-25460
LiquidThemes Ave Core
today
—
CVE-2026-25458
Select-Themes Moments
today
—
CVE-2026-25457
Select-Themes Mixtape
today
—
CVE-2026-25454
MVPThemes The League
today
→ View full list
Pre-CVE Events
View all
Node.js Security Advisory AV26-277
node.js foundation
1 sources
reported
SQL Injection in Shenzhen Ruiming Technology Streamax Crocus 1.3.44
shenzhen ruiming technology
CRITICAL
1 sources
reported
Multiple Vulnerabilities in OpenClaw
null
1 sources
reported
Multiple Vulnerabilities in ImageMagick
imagemagick studio
MEDIUM
1 sources
reported
Latest news
[JPCERT/CC]
Security Alert: Microsoft Releases January 2026 Security Upd...
[JPCERT/CC]
Security Alert: Microsoft Releases December 2025 Security Up...
[JPCERT/CC]
Security Alert: Microsoft Releases February 2026 Security Up...
[JPCERT/CC]
Security Alert: Alert Regarding Vulnerabilities in Adobe Acr...
[JPCERT/CC]
Security Alert: Alert Regarding Vulnerabilities in Adobe Acr...
[Cisco Security]
Cisco IOS XE Software Secure Channel for Meraki Information ...
-12223s ago
[Cisco Security]
Cisco IOS XE Software TLS Memory Exhaustion Denial of Servic...
-12223s ago
[Cisco Security]
Cisco IOS XE Software Denial of Service Vulnerability
-12223s ago
Pipeline
0
Queued
1
Analyzing
1725
Today
