Zero Day Monitor
Dashboard
Vulnerabilities
Trending
Zero-Days
News
Login
106255
New CVEs
128
Critical
56
Pre-CVE
1488
CISA KEV
1035
Articles
39/55
Feeds
Vulnerabilities
Trending
Newest
Urgent
8.8
microsoft ·
CVE-2026-21510 —
Protection mechanism failure in Windows Shell allows an unauthorized attacker to bypass a security feature over a network.
KEV
windows_10_1607
· CVSS 8.8
· CWE-693
87
1 articles
0
Feb 10, 2026
7.8
microsoft ·
CVE-2026-21519 —
Access of resource using incompatible type ('type confusion') in Desktop Window Manager allows an authorized attacker to elevate privileges locally.
KEV
windows_10_1607
· CVSS 7.8
· CWE-843
87
1 articles
0
Feb 10, 2026
7.8
microsoft ·
CVE-2026-21533 —
Improper privilege management in Windows Remote Desktop allows an authorized attacker to elevate privileges locally.
KEV
windows_10_1607
· CVSS 7.8
· CWE-269
87
1 articles
0
Feb 10, 2026
7.8
microsoft ·
CVE-2026-21514 —
Reliance on untrusted inputs in a security decision in Microsoft Office Word allows an unauthorized attacker to bypass a security feature locally.
KEV
365_apps
· CVSS 7.8
· CWE-807
87
1 articles
0
Feb 10, 2026
8.8
microsoft ·
CVE-2026-21513 —
Protection mechanism failure in MSHTML Framework allows an unauthorized attacker to bypass a security feature over a network.
KEV
windows_10_1607
· CVSS 8.8
· CWE-693
87
1 articles
0
Feb 10, 2026
6.2
microsoft ·
CVE-2026-21525 —
Null pointer dereference in Windows Remote Access Connection Manager allows an unauthorized attacker to deny service locally.
KEV
windows_10_1607
· CVSS 6.2
· CWE-476
83
1 articles
0
Feb 10, 2026
5.5
microsoft ·
CVE-2026-20805 —
Exposure of sensitive information to an unauthorized actor in Desktop Windows Manager allows an authorized attacker to disclose information locally.
KEV
windows_10_1607
· CVSS 5.5
· CWE-200
83
1 articles
0
Jan 13, 2026
8.8
google ·
CVE-2026-3910 —
Inappropriate implementation in V8 in Google Chrome prior to 146.0.7680.75 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Hi
KEV
chrome
· CVSS 8.8
· CWE-94
80
1 articles
0
Mar 13, 2026
8.8
google ·
CVE-2026-3909 —
Out of bounds write in Skia in Google Chrome prior to 146.0.7680.75 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)
KEV
chrome
· CVSS 8.8
· CWE-787
80
1 articles
0
Mar 13, 2026
8.8
microsoft ·
CVE-2026-20963 —
Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.
KEV
sharepoint_server
· CVSS 8.8
· CWE-502
77
3 articles
0
Jan 13, 2026
→ View full list
Urgent
9.8
CVE-2026-33017
langflow langflow
KEV
5d ago
5.7
CVE-2026-32326
Sharp Corporation home 5G HR01
today
4.2
CVE-2026-33248
go github.com/nats-io/nats-server/v2
today
6.4
CVE-2026-33246
go github.com/nats-io/nats-server/v2
today
6.4
CVE-2026-33223
go github.com/nats-io/nats-server/v2
today
7.1
CVE-2026-33217
go github.com/nats-io/nats-server/v2
today
9.8
CVE-2026-27542
Wholesale Suite Wholesale Lead Capture Plugin for WooCommerce
KEV
6d ago
9.0
CVE-2026-27540
Wholesale Suite Wholesale Lead Capture Plugin for WooCommerce
KEV
6d ago
8.8
CVE-2026-22559
Ubiquiti UniFi Network Server
today
9.3
CVE-2026-3055
Citrix NetScaler ADC and NetScaler Gateway
1d ago
→ View full list
Pre-CVE Events
View all
Checkmk Security Bypass Vulnerability
checkmk
MEDIUM
1 sources
reported
Multiple Vulnerabilities in FL SWITCH Firmware
phoenix contact
1 sources
reported
Multiple vulnerabilities in Apple products
apple
1 sources
reported
Remote Pre-Auth Buffer Overflow in GNU Inetutils telnetd
gnu
CRITICAL
1 sources
reported
Vulnerability in ConnectWise ScreenConnect
connectwi
1 sources
reported
Latest news
[JPCERT/CC]
Security Alert: Microsoft Releases January 2026 Security Upd...
[JPCERT/CC]
Security Alert: Alert Regarding Vulnerabilities in Adobe Acr...
[JPCERT/CC]
Security Alert: Microsoft Releases December 2025 Security Up...
[JPCERT/CC]
Security Alert: Microsoft Releases February 2026 Security Up...
[JPCERT/CC]
Security Alert: Alert Regarding Vulnerabilities in Adobe Acr...
[BSI Advisories]
[UPDATE] [mittel] Red Hat OpenShift Service Mesh (Kiali): Sc...
40m ago
[BSI Advisories]
[UPDATE] [mittel] Checkmk: Schwachstelle ermöglicht Umgehen ...
40m ago
[BSI Advisories]
[UPDATE] [mittel] dpkg: Schwachstelle ermöglicht Denial of S...
40m ago
Pipeline
170
Queued
2
Analyzing
1035
Today
