ZDI: Upcoming Advisories

ZDI-CAN-25647: Lorex

ZDI: Upcoming Advisories
1 day 11 hours ago
A CVSS score 8.8 AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'BoredPentester' was reported to the affected vendor on: 2024-12-02, 1 days ago. The vendor is given until 2025-04-01 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25533: HP

ZDI: Upcoming Advisories
1 day 11 hours ago
A CVSS score 8.8 AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Team Viettel' was reported to the affected vendor on: 2024-12-02, 1 days ago. The vendor is given until 2025-04-01 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25594: HP

ZDI: Upcoming Advisories
1 day 11 hours ago
A CVSS score 8.8 AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Felipe Jacob Custodio Romero, Neodyme AG' was reported to the affected vendor on: 2024-12-02, 1 days ago. The vendor is given until 2025-04-01 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25535: Sonos

ZDI: Upcoming Advisories
1 day 11 hours ago
A CVSS score 8.8 AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'dungdm (@_piers2) with Viettel Cyber Security' was reported to the affected vendor on: 2024-12-02, 1 days ago. The vendor is given until 2025-04-01 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25606: Sonos

ZDI: Upcoming Advisories
1 day 11 hours ago
A CVSS score 8.8 AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Jack Dates of RET2 Systems' was reported to the affected vendor on: 2024-12-02, 1 days ago. The vendor is given until 2025-04-01 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25601: Sonos

ZDI: Upcoming Advisories
1 day 11 hours ago
A CVSS score 8.8 AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'InfoSect' was reported to the affected vendor on: 2024-12-02, 1 days ago. The vendor is given until 2025-04-01 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25487: Synology

ZDI: Upcoming Advisories
1 day 11 hours ago
A CVSS score 7.5 AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Chris Anastasio @mufinnnnnnn & Fabius Watson' was reported to the affected vendor on: 2024-12-02, 1 days ago. The vendor is given until 2025-04-01 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25539: Lexmark

ZDI: Upcoming Advisories
1 day 11 hours ago
A CVSS score 8.8 AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Team Viettel' was reported to the affected vendor on: 2024-12-02, 1 days ago. The vendor is given until 2025-04-01 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25613: Synology

ZDI: Upcoming Advisories
1 day 11 hours ago
A CVSS score 6.5 AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N severity vulnerability discovered by 'Pumpkin Chang (@u1f383) and Orange Tsai (@orange_8361) from DEVCORE Research Team' was reported to the affected vendor on: 2024-12-02, 1 days ago. The vendor is given until 2025-04-01 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25403: Synology

ZDI: Upcoming Advisories
1 day 11 hours ago
A CVSS score 8.8 AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Ryan Emmons (Rapid7)' was reported to the affected vendor on: 2024-12-02, 1 days ago. The vendor is given until 2025-04-01 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25607: Synology

ZDI: Upcoming Advisories
1 day 11 hours ago
A CVSS score 7.5 AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Jack Dates of RET2 Systems' was reported to the affected vendor on: 2024-12-02, 1 days ago. The vendor is given until 2025-04-01 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25659: Synology

ZDI: Upcoming Advisories
1 day 11 hours ago
A CVSS score 6.4 AV:A/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Pumpkin Chang (@u1f383) and Orange Tsai (@orange_8361) from DEVCORE Research Team' was reported to the affected vendor on: 2024-12-02, 1 days ago. The vendor is given until 2025-04-01 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25623: Synology

ZDI: Upcoming Advisories
1 day 11 hours ago
A CVSS score 8.8 AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'PHP Hooligans / Midnight Blue' was reported to the affected vendor on: 2024-12-02, 1 days ago. The vendor is given until 2025-04-01 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25658: Synology

ZDI: Upcoming Advisories
1 day 11 hours ago
A CVSS score 7.5 AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Pumpkin Chang (@u1f383) and Orange Tsai (@orange_8361) from DEVCORE Research Team' was reported to the affected vendor on: 2024-12-02, 1 days ago. The vendor is given until 2025-04-01 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25482: QNAP

ZDI: Upcoming Advisories
1 day 11 hours ago
A CVSS score 9.8 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Chris Anastasio @mufinnnnnnn & Fabius Watson' was reported to the affected vendor on: 2024-12-02, 1 days ago. The vendor is given until 2025-04-01 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25612: QNAP

ZDI: Upcoming Advisories
1 day 11 hours ago
A CVSS score 6.3 AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L severity vulnerability discovered by 'YingMuo (@YingMuo), working with DEVCORE Internship Program.' was reported to the affected vendor on: 2024-12-02, 1 days ago. The vendor is given until 2025-04-01 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25656: QNAP

ZDI: Upcoming Advisories
1 day 11 hours ago
A CVSS score 7.5 AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'YingMuo (@YingMuo), working with DEVCORE Internship Program.' was reported to the affected vendor on: 2024-12-02, 1 days ago. The vendor is given until 2025-04-01 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.
Checked
1 hour 57 minutes ago
The following is a list of vulnerabilities discovered by Zero Day Initiative researchers that are yet to be publicly disclosed. The affected vendor has been contacted on the specified date and while they work on a patch for these vulnerabilities, Trend Micro customers are protected from exploitation by IPS filters delivered ahead of public disclosure. Once the affected vendor patches the vulnerability, we publish an accompanying security advisory which describes the issue, including links to the vendor's fixes.
URL
http://www.zerodayinitiative.com/advisories/upcoming/
ZDI: Upcoming Advisories feed

Managed ad