Zero Day Monitor

Dashboard Vulnerabilities Trending Zero-Days News

Impressum Privacy Policy

Zero Day Monitor © 2026

883 articles · 106207 vulns · 36/50 feeds (7d)

Trending Vulnerabilities

Top vulnerabilities ranked by news velocity, CISA KEV status, EPSS exploitation probability, and independent source coverage.

1

cisco · CVE-2026-20131 — A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software could allow an unauthenticated, remote attacker to execute arbitrary Java code as root oKEV

secure_firewall_management_center· CVSS 10.0· CWE-502

2

synacor · CVE-2025-66376 — Zimbra Collaboration (ZCS) 10 before 10.0.18 and 10.1 before 10.1.13 allows Classic UI stored XSS via Cascading Style Sheets (CSS) @import directives in an HTML e-mail message.KEV

zimbra_collaboration_suite· CVSS 7.2· CWE-79

3

microsoft · CVE-2026-20963 — Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.KEV

sharepoint_server· CVSS 8.8· CWE-502

4

cisco · CVE-2026-20128 — A vulnerability in the Data Collection Agent (DCA) feature of Cisco Catalyst SD-WAN Manager could allow an unauthenticated, remote attacker to gain DCA user privileges on an affected system. This vKEV

catalyst_sd-wan_manager· CVSS 7.5· CWE-257

5

cisco · CVE-2026-20122 — A vulnerability in the API of Cisco Catalyst SD-WAN Manager could allow an authenticated, remote attacker to overwrite arbitrary files on the local file system. To exploit this vulnerability, the attaKEV

catalyst_sd-wan_manager· CVSS 5.4· CWE-648

6

google · CVE-2026-4455 — Heap buffer overflow in PDFium in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: High)

chrome· CVSS 8.8· CWE-122

7

google · CVE-2026-4454 — Use after free in Network in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

chrome· CVSS 8.8· CWE-416

8

google · CVE-2026-4463 — Heap buffer overflow in WebRTC in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

chrome· CVSS 8.8· CWE-122

9

google · CVE-2026-4449 — Use after free in Blink in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

chrome· CVSS 8.8· CWE-416

10

google · CVE-2026-4457 — Type Confusion in V8 in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

chrome· CVSS 8.8· CWE-843

11

google · CVE-2026-4444 — Stack buffer overflow in WebRTC in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit stack corruption via a crafted HTML page. (Chromium security severity: High)

chrome· CVSS 8.8· CWE-121

12

google · CVE-2026-4447 — Inappropriate implementation in V8 in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: H

chrome· CVSS 8.8

13

google · CVE-2026-4441 — Use after free in Base in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)

chrome· CVSS 8.8· CWE-416

14

google · CVE-2026-4452 — Integer overflow in ANGLE in Google Chrome on Windows prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Hig

chrome· CVSS 8.8· CWE-472

15

google · CVE-2026-4440 — Out of bounds read and write in WebGL in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: Critical)

chrome· CVSS 8.8· CWE-125

16

google · CVE-2026-4458 — Use after free in Extensions in Google Chrome prior to 146.0.7680.153 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chr

chrome· CVSS 8.8· CWE-416

17

google · CVE-2026-4464 — Integer overflow in ANGLE in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

chrome· CVSS 8.8· CWE-472

18

google · CVE-2026-4451 — Insufficient validation of untrusted input in Navigation in Google Chrome prior to 146.0.7680.153 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox es

chrome· CVSS 8.8· CWE-20

19

google · CVE-2026-4450 — Out of bounds write in V8 in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

chrome· CVSS 8.8· CWE-787

20

google · CVE-2026-4445 — Use after free in WebRTC in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

chrome· CVSS 8.8· CWE-416

21

google · CVE-2026-4456 — Use after free in Digital Credentials API in Google Chrome prior to 146.0.7680.153 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a craf

chrome· CVSS 8.8· CWE-416

22

google · CVE-2026-4460 — Out of bounds read in Skia in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)

chrome· CVSS 8.8· CWE-125

23

google · CVE-2026-4448 — Heap buffer overflow in ANGLE in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

chrome· CVSS 8.8· CWE-122

24

google · CVE-2026-4462 — Out of bounds read in Blink in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)

chrome· CVSS 8.8· CWE-125

25

google · CVE-2026-4461 — Inappropriate implementation in V8 in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

chrome· CVSS 8.8

26

linux · CVE-2026-23204 — In the Linux kernel, the following vulnerability has been resolved: net/sched: cls_u32: use skb_header_pointer_careful() skb_header_pointer() does not fully validate negative @offset values. Use sk

linux_kernel· CVSS 7.1· CWE-125

27

CVE-2026-32775 — libexif through 0.6.25 has a flaw in decoding MakerNotes. If the exif_mnote_data_get_value function gets passed in a 0 size, the passed in-buffer would be overwritten due to an integer underflow.

· CVSS 7.4· CWE-191

28

oracle · CVE-2026-21992 — Vulnerability in the Oracle Identity Manager product of Oracle Fusion Middleware (component: REST WebServices) and Oracle Web Services Manager product of Oracle Fusion Middleware (component: Web Servi

identity_manager· CVSS 9.8· CWE-306

29

linux · CVE-2026-23171 — In the Linux kernel, the following vulnerability has been resolved: bonding: fix use-after-free due to enslave fail after slave array update Fix a use-after-free which happens due to enslave failure

linux_kernel· CVSS 7.8· CWE-416

30

CVE-2026-32746 — telnetd in GNU inetutils through 2.7 allows an out-of-bounds write in the LINEMODE SLC (Set Local Characters) suboption handler because add_slc does not check whether the buffer is full.

· CVSS 9.8· CWE-120

31

linux · CVE-2026-23191 — In the Linux kernel, the following vulnerability has been resolved: ALSA: aloop: Fix racy access at PCM trigger The PCM trigger callback of aloop driver tries to check the PCM state and stop the str

linux_kernel· CVSS 7.0· CWE-416

32

pmqs · CVE-2026-3381 — Compress::Raw::Zlib versions through 2.219 for Perl use potentially insecure versions of zlib. Compress::Raw::Zlib includes a copy of the zlib library. Compress::Raw::Zlib version 2.220 includes zlib

compress\· CVSS 9.8· CWE-1284

33

linux · CVE-2026-23112 — In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: add bounds checks in nvmet_tcp_build_pdu_iovec nvmet_tcp_build_pdu_iovec() could walk past cmd->req.sg when a PDU lengt

linux_kernel· CVSS 9.8· CWE-787

34

linux · CVE-2026-23221 — In the Linux kernel, the following vulnerability has been resolved: bus: fsl-mc: fix use-after-free in driver_override_show() The driver_override_show() function reads the driver_override string wit

linux_kernel· CVSS 7.8· CWE-416

35

linux · CVE-2026-23208 — In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Prevent excessive number of frames In this case, the user constructed the parameters with maxpacksize 40 for rate

linux_kernel· CVSS 7.8· CWE-787

36

microsoft · CVE-2026-23669 — Use after free in RPC Runtime allows an authorized attacker to execute code over a network.

windows_10_1607· CVSS 8.8· CWE-416

37

wazuh · CVE-2026-25769 — Wazuh is a free and open source platform used for threat prevention, detection, and response. Versions 4.0.0 through 4.14.2 have a Remote Code Execution (RCE) vulnerability due to Deserialization of U

wazuh· CVSS 9.1· CWE-502

38

fortinet · CVE-2026-21643 — An improper neutralization of special elements used in an sql command ('sql injection') vulnerability in Fortinet FortiClientEMS 7.4.4 may allow an unauthenticated attacker to execute unauthorized cod

forticlientems· CVSS 9.8· CWE-89

39

linux · CVE-2025-71225 — In the Linux kernel, the following vulnerability has been resolved: md: suspend array while updating raid_disks via sysfs In raid1_reshape(), freeze_array() is called before modifying the r1bio memo

linux_kernel· CVSS 5.3· CWE-367

40

linux · CVE-2026-23229 — In the Linux kernel, the following vulnerability has been resolved: crypto: virtio - Add spinlock protection with virtqueue notification When VM boots with one virtio-crypto PCI device and builtin b

linux_kernel· CVSS 5.5

41

linux · CVE-2025-71232 — In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Free sp in error path to fix system crash System crash seen during load/unload test in a loop, [61110.449331] qla2

linux_kernel· CVSS 5.5· CWE-772

42

linux · CVE-2025-71235 — In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Delay module unload while fabric scan in progress System crash seen during load/unload test in a loop. [105954.384

linux_kernel· CVSS 5.5

43

libssh · CVE-2026-3731 — A weakness has been identified in libssh up to 0.11.3. The impacted element is the function sftp_extensions_get_name/sftp_extensions_get_data of the file src/sftp.c of the component SFTP Extension Nam

libssh· CVSS 5.3· CWE-119

44

CVE-2026-4111 — A flaw was identified in the RAR5 archive decompression logic of the libarchive library, specifically within the archive_read_data() processing path. When a specially crafted RAR5 archive is processed

· CVSS 7.5· CWE-835

45

linux · CVE-2026-23113 — In the Linux kernel, the following vulnerability has been resolved: io_uring/io-wq: check IO_WQ_BIT_EXIT inside work run loop Currently this is checked before running the pending work. Normally this

linux_kernel· CVSS 5.5

46

linux · CVE-2025-71236 — In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Validate sp before freeing associated memory System crash with the following signature [154563.214890] nvme nvme2:

linux_kernel· CVSS 5.5· CWE-476

47

linux · CVE-2026-23110 — In the Linux kernel, the following vulnerability has been resolved: scsi: core: Wake up the error handler when final completions race against each other The fragile ordering between marking commands

linux_kernel· CVSS 4.7· CWE-362

48

linux · CVE-2026-23222 — In the Linux kernel, the following vulnerability has been resolved: crypto: omap - Allocate OMAP_CRYPTO_FORCE_COPY scatterlists correctly The existing allocation of scatterlists in omap_crypto_copy_

linux_kernel· CVSS 5.5

49

CVE-2026-4437 — Calling gethostbyaddr or gethostbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C Library version 2.34 to version 2.43 could, with a crafted response from

· CVSS 7.5· CWE-125

50

linux · CVE-2026-23213 — In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Disable MMIO access during SMU Mode 1 reset During Mode 1 reset, the ASIC undergoes a reset cycle and becomes temporar

linux_kernel· CVSS 5.5