Body Background
TrendAI™ Zero Day Initiative™ Logo
About How It Works FAQs Blog Advisories
Sign Up Log In
ZDI Emblem
ZDI Emblem
About How It Works FAQs Blog Advisories
Sign Up Log In

Find us on

X Mastodon BlueSky LinkedIn

Latest Insights

CVE-2026-47291: Remote Code Execution in the Windows HTTP.sys

July 10, 2026
TrendAI Research Team

Read Full Article
Looking at the ChargePoint Home Flex Threat Landscape
September 07, 2023

Looking at the ChargePoint Home Flex Threat Landscape

  • ChargePoint
  • Automotive
  • Attack Surface
Revealing the Targets and Rules for the First Pwn2Own Automotive
August 29, 2023

Revealing the Targets and Rules for the First Pwn2Own Automotive

  • Pwn2Own
  • Automotive
  • EV
  • IVI
CVE-2023-35150: Arbitrary Code Injection in XWiki.org XWiki
August 23, 2023

CVE-2023-35150: Arbitrary Code Injection in XWiki.org XWiki

  • XWiki
  • Research
  • Exploit
The August 2023 Security Update Review
August 08, 2023

The August 2023 Security Update Review

  • Adobe
  • Microsoft
  • Security Patch
Exploiting a Flaw in Bitmap Handling in Windows User-Mode Printer Drivers
August 02, 2023

Exploiting a Flaw in Bitmap Handling in Windows User-Mode Printer Drivers

  • Microsoft
  • Kernel
  • LPE
CVE-2023-36934: Progress Software MOVEit Transfer SQL Injection Remote Code Execution Vulnerability
July 20, 2023

CVE-2023-36934: Progress Software MOVEit Transfer SQL Injection Remote Code Execution Vulnerability

  • Progress
  • MOVEit
  • Research
The SOHO Smashup Returns for Pwn2Own Toronto 2023
July 13, 2023

The SOHO Smashup Returns for Pwn2Own Toronto 2023

  • Pwn2Own
  • Synology
  • Apple
  • Google
  • Router
The July 2023 Security Update Review
July 11, 2023

The July 2023 Security Update Review

  • Security Patch
  • Apple
  • Adobe
  • Microsoft
CVE-2023-20864: Remote Code Execution in VMware Aria Operations for Logs
June 29, 2023

CVE-2023-20864: Remote Code Execution in VMware Aria Operations for Logs

  • VMware
  • Aria
  • Research
CVE-2022-31696: An Analysis of a VMware ESXi TCP Socket Keepalive Type Confusion LPE
June 22, 2023

CVE-2022-31696: An Analysis of a VMware ESXi TCP Socket Keepalive Type Confusion LPE

  • VMware
  • ESXi
  • Research
TrendAI™ Zero Day Initiative™ Logo

Find us on

X Mastodon BlueSky LinkedIn

©2026 TrendAI™ Zero Day Initiative™ (ZDI).
All rights reserved.

General inquiries zdi@trendmicro.com
Media inquiries media_relations@trendmicro.com
Sensitive email communications PGP key
Who We Are
  • Our Mission
  • TrendAI™
  • TrendAI Vision One™
How It Works
  • Process
  • Researcher Rewards
  • FAQs
  • Privacy
Advisories
  • Published Advisories
  • Upcoming Advisories
  • RSS Feeds
Blog