Zero Day Monitor

Zero Day MonitorZDM

139,618 vulnerabilities total

cpanel · CVE-2026-41940 — WebPros cPanel and WHM Authentication Bypass via Login FlowKEVEXPLOITEDPATCHED

cpanel· CVSS 9.8· CWE-306

ivanti · CVE-2026-6973 — CVE-2026-6973: An Improper Input Validation in Ivanti EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1 allows a remotely authenticKEVEXPLOITEDPATCHED

endpoint_manager_mobile· CVSS 7.0· CWE-20

ivanti · CVE-2026-1340 — CVE-2026-1340: A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated remote code execution.KEVEXPLOITEDPATCHED

endpoint_manager_mobile· CVSS 9.8· CWE-94

linux · CVE-2026-43284 — xfrm: esp: avoid in-place decrypt on shared skb fragsKEVEXPLOITEDPATCHED

linux_kernel· CVSS 8.8· CWE-20

litellm · CVE-2026-42208 — LiteLLM: SQL injection in Proxy API key verificationKEVEXPLOITEDPATCHED

litellm· CVSS 9.8· CWE-89

linux · CVE-2026-31431 — crypto: algif_aead - Revert to operating out-of-placeKEVEXPLOITEDPATCHED

linux_kernel· CVSS 7.8· CWE-20

Linux · CVE-2026-43500 — rxrpc: Also unshare DATA/RESPONSE packets when paged frags are presentKEVEXPLOITEDPATCHED

Linux· CVSS 7.8

ivanti · CVE-2026-1281 — A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated remote code execution.KEVEXPLOITEDPATCHED

endpoint_manager_mobile· CVSS 9.8· CWE-94

facebook · CVE-2025-55182 — A pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1.1, and 19.2.0 including the following packages: react-server-dom-parcel, react-KEVEXPLOITEDPATCHED

react· CVSS 10.0· CWE-502

palo alto networks · CVE-2026-0300 — PAN-OS: Unauthenticated user initiated Buffer Overflow Vulnerability in User-ID™ Authentication PortalEXPLOITEDPATCHED

pan-os· CVSS 7.5· CWE-787

progress · CVE-2026-4670 — Improper Authentication vulnerability in Progress MOVEit AutomationEXPLOITEDPATCHED

moveit_automation· CVSS 9.8· CWE-305

apache · CVE-2019-0193 — In Apache Solr, the DataImportHandler, an optional but popular module to pull in data from databases and other sources, has a feature in which the whole DIH configuration can come from a request's "daKEVEXPLOITEDPATCHED

solr· CVSS 7.2· CWE-94

apache · CVE-2019-17558 — Apache Solr 5.0.0 to Apache Solr 8.3.1 are vulnerable to a Remote Code Execution through the VelocityResponseWriter. A Velocity template can be provided through Velocity templates in a configset `veloKEVEXPLOITEDPATCHED

solr· CVSS 7.5· CWE-74

go toolchain · CVE-2026-27143 — Missing bound checks can lead to memory corruption in safe Go in cmd/compileEXPLOITEDPATCHED

cmd/compile· CVSS 9.8

spring · CVE-2026-40982 — CVE-2026-40982: Spring Cloud Config allows applications to serve arbitrary text and binary files through the spring-cloud-config-server EXPLOITEDPATCHED

spring cloud config· CVSS 9.1· CWE-22

progress · CVE-2026-5174 — Improper Access Control Vulnerability in Progress MOVEit AutomationEXPLOITEDPATCHED

moveit_automation· CVSS 7.7· CWE-20

mozilla · CVE-2026-8091 — Incorrect boundary conditions in the Audio/Video: Playback componentEXPLOITEDPATCHED

firefox· CVSS 9.8

google · CVE-2026-7896 — CVE-2026-7896: Integer overflow in Blink in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to potentially exploit heap EXPLOITEDPATCHED

chrome· CVSS 8.8· CWE-472

axios · CVE-2026-42034 — Axios: HTTP adapter streamed uploads bypass maxBodyLength when maxRedirects: 0EXPLOITEDPATCHED

axios· CVSS 5.3· CWE-770

golang · CVE-2026-32283 — Unauthenticated TLS 1.3 KeyUpdate record can cause persistent connection retention and DoS in crypto/tlsEXPLOITEDPATCHED