ZDI: Upcoming Advisories

ZDI-CAN-25920: Siemens

4 weeks 1 day ago

A CVSS score 6.5 AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N severity vulnerability discovered by 'Anonymous' was reported to the affected vendor on: 2025-03-19, 29 days ago. The vendor is given until 2025-07-17 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25925: Glyph & Cog

4 weeks 1 day ago

A CVSS score 3.3 AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N severity vulnerability discovered by 'CYFARE.NET' was reported to the affected vendor on: 2025-03-19, 29 days ago. The vendor is given until 2025-07-17 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-23480: Pratt & Whitney

ZDI: Upcoming Advisories

4 weeks 2 days ago

A CVSS score 9.8 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Nitesh Surana (@_niteshsurana) of Trend Micro Research' was reported to the affected vendor on: 2025-03-18, 30 days ago. The vendor is given until 2025-07-16 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-26713: PDF-XChange

ZDI: Upcoming Advisories

4 weeks 2 days ago

A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Anonymous' was reported to the affected vendor on: 2025-03-18, 30 days ago. The vendor is given until 2025-07-16 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-26141: Academy Software Foundation

ZDI: Upcoming Advisories

4 weeks 2 days ago

A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Dongjun Kim(@Enki WhiteHat) and Jongseong Kim(@Enki Whitehat)' was reported to the affected vendor on: 2025-03-18, 30 days ago. The vendor is given until 2025-07-16 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-26299: Tesla

ZDI: Upcoming Advisories

1 month ago

A CVSS score 6.8 AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Synacktiv' was reported to the affected vendor on: 2025-03-14, 34 days ago. The vendor is given until 2025-07-12 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-26250: Exim

ZDI: Upcoming Advisories

1 month ago

A CVSS score 7.8 AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Oliver Ford' was reported to the affected vendor on: 2025-03-13, 25 days ago. The vendor is given until 2025-07-11 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-26681: oobabooga

ZDI: Upcoming Advisories

1 month ago

A CVSS score 9.8 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Nicholas Zubrisky (@NZubrisky) of Trend Micro Security Research' was reported to the affected vendor on: 2025-03-13, 35 days ago. The vendor is given until 2025-07-11 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-26635: Alibaba

ZDI: Upcoming Advisories

1 month ago

A CVSS score 7.3 AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Xavier DANEST' was reported to the affected vendor on: 2025-03-13, 35 days ago. The vendor is given until 2025-07-11 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25910: Siemens

ZDI: Upcoming Advisories

1 month ago

A CVSS score 6.5 AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N severity vulnerability discovered by 'Anonymous' was reported to the affected vendor on: 2025-03-12, 36 days ago. The vendor is given until 2025-07-10 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-26710: Microsoft

ZDI: Upcoming Advisories

1 month ago

A CVSS score 7.8 AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Simon Zuckerbraun - Trend Micro Zero Day Initiative' was reported to the affected vendor on: 2025-03-12, 36 days ago. The vendor is given until 2025-07-10 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-26137: Microsoft

ZDI: Upcoming Advisories

1 month ago

A CVSS score 7.8 AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'CrisprXiang & Hao Huang & LFY' was reported to the affected vendor on: 2025-03-12, 36 days ago. The vendor is given until 2025-07-10 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-26249: Microsoft

ZDI: Upcoming Advisories

1 month ago

A CVSS score 7.8 AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Filip Dragovic (@filip_dragovic)' was reported to the affected vendor on: 2025-03-12, 36 days ago. The vendor is given until 2025-07-10 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25909: Siemens

ZDI: Upcoming Advisories

1 month ago

ZDI-CAN-26300: Tesla

ZDI: Upcoming Advisories

1 month ago

A CVSS score 8.8 AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'PHP Hooligans' was reported to the affected vendor on: 2025-03-12, 36 days ago. The vendor is given until 2025-07-10 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-26240: G DATA

ZDI: Upcoming Advisories

1 month ago

A CVSS score 7.8 AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'CrisprXiang & Hao Huang' was reported to the affected vendor on: 2025-03-12, 36 days ago. The vendor is given until 2025-07-10 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-26642: PDF-XChange

ZDI: Upcoming Advisories

1 month ago

A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Mat Powell of Trend Micro Zero Day Initiative' was reported to the affected vendor on: 2025-03-12, 36 days ago. The vendor is given until 2025-07-10 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-26643: PDF-XChange

ZDI: Upcoming Advisories

1 month ago

A CVSS score 3.3 AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N severity vulnerability discovered by 'Mat Powell of Trend Micro Zero Day Initiative' was reported to the affected vendor on: 2025-03-12, 36 days ago. The vendor is given until 2025-07-10 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-26680: oobabooga

ZDI: Upcoming Advisories

1 month ago

A CVSS score 9.8 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Nicholas Zubrisky (@NZubrisky) of Trend Micro Security Research' was reported to the affected vendor on: 2025-03-12, 36 days ago. The vendor is given until 2025-07-10 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-22063: MATE Desktop

ZDI: Upcoming Advisories

1 month ago

A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Febin Mon Saji' was reported to the affected vendor on: 2025-03-12, 36 days ago. The vendor is given until 2025-07-10 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

Checked

1 hour 46 minutes ago

The following is a list of vulnerabilities discovered by Zero Day Initiative researchers that are yet to be publicly disclosed. The affected vendor has been contacted on the specified date and while they work on a patch for these vulnerabilities, Trend Micro customers are protected from exploitation by IPS filters delivered ahead of public disclosure. Once the affected vendor patches the vulnerability, we publish an accompanying security advisory which describes the issue, including links to the vendor's fixes.

URL

http://www.zerodayinitiative.com/advisories/upcoming/

ZDI: Upcoming Advisories feed

ZDI: Upcoming Advisories

Managed ad