<![CDATA[ZDI: Published Advisories]]>

<![CDATA[ZDI: Published Advisories]]> http://www.zerodayinitiative.com/advisories/published/ Thu, 16 Apr 2026 21:27:23 -0500 Trend Micro, all rights reserved en <![CDATA[ZDI-25-1202: (0Day) Anritsu VectorStar CHX File Parsing Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-27040 http://www.zerodayinitiative.com/advisories/ZDI-25-1202/ Tue, 30 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1201: (0Day) Anritsu VectorStar CHX File Parsing Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-27039 http://www.zerodayinitiative.com/advisories/ZDI-25-1201/ Tue, 30 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1200: (0Day) Anritsu ShockLine SCPI Race Condition Remote Code Execution Vulnerability]]> ZDI-CAN-27315 http://www.zerodayinitiative.com/advisories/ZDI-25-1200/ Tue, 30 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1199: (0Day) Anritsu ShockLine CHX File Parsing Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-27833 http://www.zerodayinitiative.com/advisories/ZDI-25-1199/ Tue, 30 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1198: Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution Vulnerability]]> ZDI-CAN-27769 http://www.zerodayinitiative.com/advisories/ZDI-25-1198/ Mon, 29 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1197: Framelink Figma MCP Server fetchWithRetry Command Injection Remote Code Execution Vulnerability]]> ZDI-CAN-27877 http://www.zerodayinitiative.com/advisories/ZDI-25-1197/ Mon, 29 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1196: GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-28232 http://www.zerodayinitiative.com/advisories/ZDI-25-1196/ Mon, 29 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1195: (0Day) FontForge SFD File Parsing Use-After-Free Remote Code Execution Vulnerability]]> ZDI-CAN-28564 http://www.zerodayinitiative.com/advisories/ZDI-25-1195/ Mon, 29 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1194: (0Day) FontForge SFD File Parsing Improper Validation of Array Index Remote Code Execution Vulnerability]]> ZDI-CAN-28563 http://www.zerodayinitiative.com/advisories/ZDI-25-1194/ Mon, 29 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1193: (0Day) FontForge SFD File Parsing Improper Validation of Array Index Remote Code Execution Vulnerability]]> ZDI-CAN-28562 http://www.zerodayinitiative.com/advisories/ZDI-25-1193/ Mon, 29 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1192: (0Day) FontForge SFD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-28547 http://www.zerodayinitiative.com/advisories/ZDI-25-1192/ Mon, 29 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1191: (0Day) FontForge PFB File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-28546 http://www.zerodayinitiative.com/advisories/ZDI-25-1191/ Mon, 29 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1190: (0Day) FontForge SFD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-28544 http://www.zerodayinitiative.com/advisories/ZDI-25-1190/ Mon, 29 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1189: (0Day) FontForge SFD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-28543 http://www.zerodayinitiative.com/advisories/ZDI-25-1189/ Mon, 29 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1188: (0Day) FontForge SFD File Parsing Use-After-Free Remote Code Execution Vulnerability]]> ZDI-CAN-28525 http://www.zerodayinitiative.com/advisories/ZDI-25-1188/ Mon, 29 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1187: (0Day) FontForge SFD File Parsing Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-28198 http://www.zerodayinitiative.com/advisories/ZDI-25-1187/ Mon, 29 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1186: (0Day) FontForge GUtils SGI File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-27920 http://www.zerodayinitiative.com/advisories/ZDI-25-1186/ Mon, 29 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1185: (0Day) FontForge GUtils XBM File Parsing Integer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-27865 http://www.zerodayinitiative.com/advisories/ZDI-25-1185/ Mon, 29 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1184: (0Day) FontForge GUtils BMP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-27517 http://www.zerodayinitiative.com/advisories/ZDI-25-1184/ Mon, 29 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1183: Tencent FaceDetection-DSFD resnet Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-27197 http://www.zerodayinitiative.com/advisories/ZDI-25-1183/ Tue, 23 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1182: LibreNMS Alert Rule API Cross-Site Scripting Vulnerability]]> ZDI-CAN-28575 http://www.zerodayinitiative.com/advisories/ZDI-25-1182/ Tue, 23 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1181: Net-SNMP SnmpTrapd Agent Message Stack-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-27507 http://www.zerodayinitiative.com/advisories/ZDI-25-1181/ Tue, 23 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1180: Foxit PDF Reader PDF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-28558 http://www.zerodayinitiative.com/advisories/ZDI-25-1180/ Fri, 19 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1179: Foxit PDF Reader U3D File Parsing Use-After-Free Information Disclosure Vulnerability]]> ZDI-CAN-28532 http://www.zerodayinitiative.com/advisories/ZDI-25-1179/ Fri, 19 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1178: Foxit PDF Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability]]> ZDI-CAN-28531 http://www.zerodayinitiative.com/advisories/ZDI-25-1178/ Fri, 19 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1177: Foxit PDF Reader U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-28523 http://www.zerodayinitiative.com/advisories/ZDI-25-1177/ Fri, 19 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1176: Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability]]> ZDI-CAN-28403 http://www.zerodayinitiative.com/advisories/ZDI-25-1176/ Fri, 19 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1175: Foxit PDF Reader PDF File Parsing Use-After-Free Remote Code Execution Vulnerability]]> ZDI-CAN-28306 http://www.zerodayinitiative.com/advisories/ZDI-25-1175/ Fri, 19 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1174: Foxit PDF Reader AcroForm User-After-Free Remote Code Execution Vulnerability]]> ZDI-CAN-28210 http://www.zerodayinitiative.com/advisories/ZDI-25-1174/ Fri, 19 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1173: Foxit PDF Reader Update Service Incorrect Permission Assignment Local Privilege Escalation Vulnerability]]> ZDI-CAN-28053 http://www.zerodayinitiative.com/advisories/ZDI-25-1173/ Fri, 19 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1172: RealDefense SUPERAntiSpyware Exposed Dangerous Function Local Privilege Escalation Vulnerability]]> ZDI-CAN-27668 http://www.zerodayinitiative.com/advisories/ZDI-25-1172/ Fri, 19 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1171: RealDefense SUPERAntiSpyware Exposed Dangerous Function Local Privilege Escalation Vulnerability]]> ZDI-CAN-27678 http://www.zerodayinitiative.com/advisories/ZDI-25-1171/ Fri, 19 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1170: RealDefense SUPERAntiSpyware Exposed Dangerous Function Local Privilege Escalation Vulnerability]]> ZDI-CAN-27675 http://www.zerodayinitiative.com/advisories/ZDI-25-1170/ Fri, 19 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1169: RealDefense SUPERAntiSpyware Exposed Dangerous Function Local Privilege Escalation Vulnerability]]> ZDI-CAN-27677 http://www.zerodayinitiative.com/advisories/ZDI-25-1169/ Fri, 19 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1168: RealDefense SUPERAntiSpyware Exposed Dangerous Function Local Privilege Escalation Vulnerability]]> ZDI-CAN-27680 http://www.zerodayinitiative.com/advisories/ZDI-25-1168/ Fri, 19 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1167: RealDefense SUPERAntiSpyware Exposed Dangerous Function Local Privilege Escalation Vulnerability]]> ZDI-CAN-27657 http://www.zerodayinitiative.com/advisories/ZDI-25-1167/ Fri, 19 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1166: RealDefense SUPERAntiSpyware Exposed Dangerous Function Local Privilege Escalation Vulnerability]]> ZDI-CAN-27659 http://www.zerodayinitiative.com/advisories/ZDI-25-1166/ Fri, 19 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1165: RealDefense SUPERAntiSpyware Exposed Dangerous Function Local Privilege Escalation Vulnerability]]> ZDI-CAN-27658 http://www.zerodayinitiative.com/advisories/ZDI-25-1165/ Fri, 19 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1164: RealDefense SUPERAntiSpyware Exposed Dangerous Function Local Privilege Escalation Vulnerability]]> ZDI-CAN-27660 http://www.zerodayinitiative.com/advisories/ZDI-25-1164/ Fri, 19 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1163: RealDefense SUPERAntiSpyware Exposed Dangerous Function Local Privilege Escalation Vulnerability]]> ZDI-CAN-27676 http://www.zerodayinitiative.com/advisories/ZDI-25-1163/ Fri, 19 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1162: AzeoTech DAQFactory CTL File Parsing Memory Corruption Remote Code Execution Vulnerability]]> ZDI-CAN-26837 http://www.zerodayinitiative.com/advisories/ZDI-25-1162/ Fri, 19 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1161: AzeoTech DAQFactory CTL File Parsing Memory Corruption Remote Code Execution Vulnerability]]> ZDI-CAN-26840 http://www.zerodayinitiative.com/advisories/ZDI-25-1161/ Fri, 19 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1160: AzeoTech DAQFactory CTL File Parsing Memory Corruption Remote Code Execution Vulnerability]]> ZDI-CAN-26836 http://www.zerodayinitiative.com/advisories/ZDI-25-1160/ Fri, 19 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1159: AzeoTech DAQFactory CTL File Parsing Memory Corruption Remote Code Execution Vulnerability]]> ZDI-CAN-26835 http://www.zerodayinitiative.com/advisories/ZDI-25-1159/ Fri, 19 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1158: AzeoTech DAQFactory CTL File Parsing Memory Corruption Remote Code Execution Vulnerability]]> ZDI-CAN-25521 http://www.zerodayinitiative.com/advisories/ZDI-25-1158/ Fri, 19 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1157: AzeoTech DAQFactory CTL File Parsing Memory Corruption Remote Code Execution Vulnerability]]> ZDI-CAN-25511 http://www.zerodayinitiative.com/advisories/ZDI-25-1157/ Fri, 19 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1156: AzeoTech DAQFactory CTL File Parsing Memory Corruption Remote Code Execution Vulnerability]]> ZDI-CAN-25510 http://www.zerodayinitiative.com/advisories/ZDI-25-1156/ Fri, 19 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1155: (0Day) NSF Unidata NetCDF-C Attribute Name Stack-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-27269 http://www.zerodayinitiative.com/advisories/ZDI-25-1155/ Thu, 18 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1154: (0Day) NSF Unidata NetCDF-C Dimension Name Heap-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-27168 http://www.zerodayinitiative.com/advisories/ZDI-25-1154/ Thu, 18 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1153: (0Day) NSF Unidata NetCDF-C Time Unit Stack-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-27273 http://www.zerodayinitiative.com/advisories/ZDI-25-1153/ Thu, 18 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1152: (0Day) NSF Unidata NetCDF-C Variable Name Stack-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-27267 http://www.zerodayinitiative.com/advisories/ZDI-25-1152/ Thu, 18 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1151: (0Day) NSF Unidata NetCDF-C NC Variable Integer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-27266 http://www.zerodayinitiative.com/advisories/ZDI-25-1151/ Thu, 18 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1150: (0Day) Hugging Face Transformers Perceiver Model Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-25423 http://www.zerodayinitiative.com/advisories/ZDI-25-1150/ Thu, 18 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1149: (0Day) Hugging Face Transformers Transformer-XL Model Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-25424 http://www.zerodayinitiative.com/advisories/ZDI-25-1149/ Thu, 18 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1148: (0Day) Hugging Face Transformers SEW-D convert_config Code Injection Remote Code Execution Vulnerability]]> ZDI-CAN-28252 http://www.zerodayinitiative.com/advisories/ZDI-25-1148/ Thu, 18 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1147: (0Day) Hugging Face Transformers SEW convert_config Code Injection Remote Code Execution Vulnerability]]> ZDI-CAN-28251 http://www.zerodayinitiative.com/advisories/ZDI-25-1147/ Thu, 18 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1146: (0Day) Hugging Face Transformers HuBERT convert_config Code Injection Remote Code Execution Vulnerability]]> ZDI-CAN-28253 http://www.zerodayinitiative.com/advisories/ZDI-25-1146/ Thu, 18 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1145: (0Day) Hugging Face Transformers GLM4 Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-28309 http://www.zerodayinitiative.com/advisories/ZDI-25-1145/ Thu, 18 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1144: (0Day) Hugging Face Transformers X-CLIP Checkpoint Conversion Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-28308 http://www.zerodayinitiative.com/advisories/ZDI-25-1144/ Thu, 18 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1143: (0Day) Hugging Face smolagents Remote Python Executor Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-28312 http://www.zerodayinitiative.com/advisories/ZDI-25-1143/ Thu, 18 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1142: (0Day) Hugging Face Diffusers CogView4 Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-27424 http://www.zerodayinitiative.com/advisories/ZDI-25-1142/ Thu, 18 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1141: (0Day) Hugging Face Transformers megatron_gpt2 Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-27984 http://www.zerodayinitiative.com/advisories/ZDI-25-1141/ Thu, 18 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1140: (0Day) Hugging Face Accelerate Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-27985 http://www.zerodayinitiative.com/advisories/ZDI-25-1140/ Thu, 18 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1139: GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-28248 http://www.zerodayinitiative.com/advisories/ZDI-25-1139/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1138: GIMP XCF File Parsing Use-After-Free Remote Code Execution Vulnerability]]> ZDI-CAN-28376 http://www.zerodayinitiative.com/advisories/ZDI-25-1138/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1137: GIMP LBM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-28311 http://www.zerodayinitiative.com/advisories/ZDI-25-1137/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1136: GIMP PNM File Parsing Integer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-28273 http://www.zerodayinitiative.com/advisories/ZDI-25-1136/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1135: Autodesk AutoCAD CATPRODUCT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-27960 http://www.zerodayinitiative.com/advisories/ZDI-25-1135/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1134: AzeoTech DAQFactory CTL File Parsing Type Confusion Remote Code Execution Vulnerability]]> ZDI-CAN-26883 http://www.zerodayinitiative.com/advisories/ZDI-25-1134/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1133: AzeoTech DAQFactory CTL File Parsing Type Confusion Remote Code Execution Vulnerability]]> ZDI-CAN-25515 http://www.zerodayinitiative.com/advisories/ZDI-25-1133/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1132: AzeoTech DAQFactory CTL File Parsing Type Confusion Remote Code Execution Vulnerability]]> ZDI-CAN-25513 http://www.zerodayinitiative.com/advisories/ZDI-25-1132/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1131: AzeoTech DAQFactory CTL File Parsing Type Confusion Remote Code Execution Vulnerability]]> ZDI-CAN-27523 http://www.zerodayinitiative.com/advisories/ZDI-25-1131/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1130: AzeoTech DAQFactory CTL File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-25512 http://www.zerodayinitiative.com/advisories/ZDI-25-1130/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1129: AzeoTech DAQFactory CTL File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-27811 http://www.zerodayinitiative.com/advisories/ZDI-25-1129/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1128: AzeoTech DAQFactory CTL File Parsing Use-After-Free Remote Code Execution Vulnerability]]> ZDI-CAN-25514 http://www.zerodayinitiative.com/advisories/ZDI-25-1128/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1127: Apple Safari JavaScriptCore FTL DataView byteLength Property Handling Type Confusion Remote Code Execution Vulnerability]]> ZDI-CAN-28038 http://www.zerodayinitiative.com/advisories/ZDI-25-1127/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1126: Apple Safari JavaScriptCore HashTable Expansion Integer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-28284 http://www.zerodayinitiative.com/advisories/ZDI-25-1126/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1125: Trend Micro Cleaner One Pro Link Following Local Privilege Escalation Vulnerability]]> ZDI-CAN-27644 http://www.zerodayinitiative.com/advisories/ZDI-25-1125/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1124: Siemens Simcenter Femap SLDPRT File Parsing Uninitialized Memory Remote Code Execution Vulnerability]]> ZDI-CAN-27146 http://www.zerodayinitiative.com/advisories/ZDI-25-1124/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1123: Autodesk AutoCAD CATPART File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability]]> ZDI-CAN-28421 http://www.zerodayinitiative.com/advisories/ZDI-25-1123/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1122: Autodesk AutoCAD MODEL File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-28179 http://www.zerodayinitiative.com/advisories/ZDI-25-1122/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1121: Autodesk AutoCAD MODEL File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-28180 http://www.zerodayinitiative.com/advisories/ZDI-25-1121/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1120: Autodesk AutoCAD SLDPRT File Parsing Memory Corruption Remote Code Execution Vulnerability]]> ZDI-CAN-27970 http://www.zerodayinitiative.com/advisories/ZDI-25-1120/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1119: Autodesk AutoCAD PRT File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability]]> ZDI-CAN-27971 http://www.zerodayinitiative.com/advisories/ZDI-25-1119/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1118: Autodesk AutoCAD PRT File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability]]> ZDI-CAN-27972 http://www.zerodayinitiative.com/advisories/ZDI-25-1118/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1117: Autodesk AutoCAD CATPRODUCT File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability]]> ZDI-CAN-27963 http://www.zerodayinitiative.com/advisories/ZDI-25-1117/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1116: Autodesk AutoCAD SLDPRT File Parsing Memory Corruption Remote Code Execution Vulnerability]]> ZDI-CAN-27964 http://www.zerodayinitiative.com/advisories/ZDI-25-1116/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1115: Autodesk AutoCAD PRT File Parsing Memory Corruption Remote Code Execution Vulnerability]]> ZDI-CAN-27961 http://www.zerodayinitiative.com/advisories/ZDI-25-1115/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1114: Autodesk AutoCAD SLDPRT File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability]]> ZDI-CAN-27966 http://www.zerodayinitiative.com/advisories/ZDI-25-1114/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1113: Autodesk AutoCAD SLDPRT File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability]]> ZDI-CAN-27967 http://www.zerodayinitiative.com/advisories/ZDI-25-1113/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1112: Autodesk AutoCAD X_T File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-27973 http://www.zerodayinitiative.com/advisories/ZDI-25-1112/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1111: Autodesk AutoCAD CATPRODUCT File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability]]> ZDI-CAN-27974 http://www.zerodayinitiative.com/advisories/ZDI-25-1111/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1110: Autodesk AutoCAD CATPART File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-27998 http://www.zerodayinitiative.com/advisories/ZDI-25-1110/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1109: Autodesk AutoCAD MODEL File Parsing Memory Corruption Remote Code Execution Vulnerability]]> ZDI-CAN-28120 http://www.zerodayinitiative.com/advisories/ZDI-25-1109/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1108: Autodesk AutoCAD MODEL File Parsing Memory Corruption Remote Code Execution Vulnerability]]> ZDI-CAN-28126 http://www.zerodayinitiative.com/advisories/ZDI-25-1108/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1107: Autodesk AutoCAD MODEL File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-28127 http://www.zerodayinitiative.com/advisories/ZDI-25-1107/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1106: Autodesk AutoCAD CATPART File Parsing Memory Corruption Remote Code Execution Vulnerability]]> ZDI-CAN-28128 http://www.zerodayinitiative.com/advisories/ZDI-25-1106/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1105: Autodesk AutoCAD MODEL File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-28181 http://www.zerodayinitiative.com/advisories/ZDI-25-1105/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1104: Sante PACS Server HTTP Content-Length Header Handling NULL Pointer Dereference Denial-of-Service Vulnerability]]> ZDI-CAN-26770 http://www.zerodayinitiative.com/advisories/ZDI-25-1104/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1103: Fuji Electric Monitouch V-SFT V7 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-27360 http://www.zerodayinitiative.com/advisories/ZDI-25-1103/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1102: Fuji Electric Monitouch V-SFT V7 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-27436 http://www.zerodayinitiative.com/advisories/ZDI-25-1102/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1101: Fuji Electric Monitouch V-SFT V7 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-27438 http://www.zerodayinitiative.com/advisories/ZDI-25-1101/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1100: Fuji Electric Monitouch V-SFT V7 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-27440 http://www.zerodayinitiative.com/advisories/ZDI-25-1100/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1099: Microsoft Edge Mark-Of-The-Web Removal Remote Code Execution Vulnerability]]> ZDI-CAN-27795 http://www.zerodayinitiative.com/advisories/ZDI-25-1099/ Wed, 17 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1098: Fortinet FortiSandbox hcproxy Cross-Site Scripting Remote Code Execution Vulnerability]]> ZDI-CAN-27306 http://www.zerodayinitiative.com/advisories/ZDI-25-1098/ Tue, 16 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1097: Fortinet FortiSandbox name Parameter Command Injection Remote Code Execution Vulnerability]]> ZDI-CAN-27309 http://www.zerodayinitiative.com/advisories/ZDI-25-1097/ Tue, 16 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1096: Fortinet FortiSandbox upload_vdi_file Command Injection Remote Code Execution Vulnerability]]> ZDI-CAN-27308 http://www.zerodayinitiative.com/advisories/ZDI-25-1096/ Tue, 16 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1095: Fortinet FortiSandbox names admindel_confirm Command Injection Remote Code Execution Vulnerability]]> ZDI-CAN-27305 http://www.zerodayinitiative.com/advisories/ZDI-25-1095/ Tue, 16 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1094: Fortinet FortiWeb ApacheCookie_parse Improper Verification of Cryptographic Signature Authentication Bypass Vulnerability]]> ZDI-CAN-28211 http://www.zerodayinitiative.com/advisories/ZDI-25-1094/ Tue, 16 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1093: (0Day) PDFsam Enhanced Uncontrolled Search Path Element Local Privilege Escalation Vulnerability]]> ZDI-CAN-27867 http://www.zerodayinitiative.com/advisories/ZDI-25-1093/ Thu, 11 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1092: (0Day) PDFsam Enhanced XLS File Insufficient UI Warning Remote Code Execution Vulnerability]]> ZDI-CAN-27498 http://www.zerodayinitiative.com/advisories/ZDI-25-1092/ Thu, 11 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1091: (0Day) PDFsam Enhanced Launch Insufficient UI Warning Remote Code Execution Vulnerability]]> ZDI-CAN-27500 http://www.zerodayinitiative.com/advisories/ZDI-25-1091/ Thu, 11 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1090: (0Day) PDFsam Enhanced DOC File Insufficient UI Warning Remote Code Execution Vulnerability]]> ZDI-CAN-27499 http://www.zerodayinitiative.com/advisories/ZDI-25-1090/ Thu, 11 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1089: (0Day) PDFsam Enhanced App Out-Of-Bounds Read Remote Code Execution Vulnerability]]> ZDI-CAN-27260 http://www.zerodayinitiative.com/advisories/ZDI-25-1089/ Thu, 11 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1088: (0Day) Soda PDF Desktop Launch Insufficient UI Warning Remote Code Execution Vulnerability]]> ZDI-CAN-27494 http://www.zerodayinitiative.com/advisories/ZDI-25-1088/ Thu, 11 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1087: (0Day) Soda PDF Desktop Word File Insufficient UI Warning Remote Code Execution Vulnerability]]> ZDI-CAN-27496 http://www.zerodayinitiative.com/advisories/ZDI-25-1087/ Thu, 11 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1086: (0Day) Soda PDF Desktop CBZ File Parsing Directory Traversal Remote Code Execution Vulnerability]]> ZDI-CAN-27509 http://www.zerodayinitiative.com/advisories/ZDI-25-1086/ Thu, 11 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1085: (0Day) Soda PDF Desktop XLS File Insufficient UI Warning Remote Code Execution Vulnerability]]> ZDI-CAN-27495 http://www.zerodayinitiative.com/advisories/ZDI-25-1085/ Thu, 11 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1084: (0Day) Soda PDF Desktop PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability]]> ZDI-CAN-27140 http://www.zerodayinitiative.com/advisories/ZDI-25-1084/ Thu, 11 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1083: (0Day) Soda PDF Desktop PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability]]> ZDI-CAN-27142 http://www.zerodayinitiative.com/advisories/ZDI-25-1083/ Thu, 11 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1082: (0Day) Soda PDF Desktop PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-27120 http://www.zerodayinitiative.com/advisories/ZDI-25-1082/ Thu, 11 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1081: (0Day) Soda PDF Desktop PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability]]> ZDI-CAN-27143 http://www.zerodayinitiative.com/advisories/ZDI-25-1081/ Thu, 11 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1080: (0Day) Soda PDF Desktop PDF File Parsing Memory Corruption Information Disclosure Vulnerability]]> ZDI-CAN-27141 http://www.zerodayinitiative.com/advisories/ZDI-25-1080/ Thu, 11 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1079: (0Day) Soda PDF Desktop Uncontrolled Search Path Element Local Privilege Escalation Vulnerability]]> ZDI-CAN-25793 http://www.zerodayinitiative.com/advisories/ZDI-25-1079/ Thu, 11 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1078: (0Day) pdfforge PDF Architect PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability]]> ZDI-CAN-27915 http://www.zerodayinitiative.com/advisories/ZDI-25-1078/ Thu, 11 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1077: (0Day) pdfforge PDF Architect CBZ File Parsing Directory Traversal Remote Code Execution Vulnerability]]> ZDI-CAN-27514 http://www.zerodayinitiative.com/advisories/ZDI-25-1077/ Thu, 11 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1076: (0Day) pdfforge PDF Architect PDF File Parsing Memory Corruption Remote Code Execution Vulnerability]]> ZDI-CAN-27902 http://www.zerodayinitiative.com/advisories/ZDI-25-1076/ Thu, 11 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1075: (0Day) pdfforge PDF Architect XLS File Insufficient UI Warning Remote Code Execution Vulnerability]]> ZDI-CAN-27502 http://www.zerodayinitiative.com/advisories/ZDI-25-1075/ Thu, 11 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1074: (0Day) pdfforge PDF Architect Launch Insufficient UI Warning Remote Code Execution Vulnerability]]> ZDI-CAN-27501 http://www.zerodayinitiative.com/advisories/ZDI-25-1074/ Thu, 11 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1073: (0Day) pdfforge PDF Architect DOC File Insufficient UI Warning Remote Code Execution Vulnerability]]> ZDI-CAN-27503 http://www.zerodayinitiative.com/advisories/ZDI-25-1073/ Thu, 11 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1072: IceWarp14 X-File-Operation Command Injection Remote Code Execution Vulnerability]]> ZDI-CAN-27394 http://www.zerodayinitiative.com/advisories/ZDI-25-1072/ Wed, 10 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1071: IceWarp gmaps Cross-Site Scripting Authentication Bypass Vulnerability]]> ZDI-CAN-25441 http://www.zerodayinitiative.com/advisories/ZDI-25-1071/ Wed, 10 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1070: TradingView Desktop Electron Uncontrolled Search Path Local Privilege Escalation Vulnerability]]> ZDI-CAN-27395 http://www.zerodayinitiative.com/advisories/ZDI-25-1070/ Wed, 10 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1069: (Pwn2Own) oFono CUSD Stack-based Buffer Overflow Code Execution Vulnerability]]> ZDI-CAN-23193 http://www.zerodayinitiative.com/advisories/ZDI-25-1069/ Wed, 10 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1068: Fuji Electric Monitouch V-SFT V7 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-27353 http://www.zerodayinitiative.com/advisories/ZDI-25-1068/ Wed, 10 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1067: Fuji Electric Monitouch V-SFT V7 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-27358 http://www.zerodayinitiative.com/advisories/ZDI-25-1067/ Wed, 10 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1066: Fuji Electric Monitouch V-SFT V7 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-27352 http://www.zerodayinitiative.com/advisories/ZDI-25-1066/ Wed, 10 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1065: Fuji Electric Monitouch V-SFT V7 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-27350 http://www.zerodayinitiative.com/advisories/ZDI-25-1065/ Wed, 10 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1064: Fuji Electric Monitouch V-SFT V7 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-27527 http://www.zerodayinitiative.com/advisories/ZDI-25-1064/ Wed, 10 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1063: Fuji Electric Monitouch V-SFT V7 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-27399 http://www.zerodayinitiative.com/advisories/ZDI-25-1063/ Wed, 10 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1062: Fuji Electric Monitouch V-SFT V7 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-27351 http://www.zerodayinitiative.com/advisories/ZDI-25-1062/ Wed, 10 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1061: Windscribe Uncontrolled Search Path Element Local Privilege Escalation Vulnerability]]> ZDI-CAN-27873 http://www.zerodayinitiative.com/advisories/ZDI-25-1061/ Wed, 10 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1060: Senstar Symphony FetchStoredLicense Information Disclosure Vulnerability]]> ZDI-CAN-26908 http://www.zerodayinitiative.com/advisories/ZDI-25-1060/ Wed, 10 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1059: Vim for Windows Uncontrolled Search Path Element Remote Code Execution Vulnerability]]> ZDI-CAN-28569 http://www.zerodayinitiative.com/advisories/ZDI-25-1059/ Wed, 10 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1058: (0Day) Microsoft Windows TAR File UI Misrepresentation Vulnerability]]> ZDI-CAN-27311 http://www.zerodayinitiative.com/advisories/ZDI-25-1058/ Wed, 10 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1057: (0Day) Microsoft Visual Studio VsDevCmd Uncontrolled Search Path Element Remote Code Execution Vulnerability]]> ZDI-CAN-26574 http://www.zerodayinitiative.com/advisories/ZDI-25-1057/ Wed, 10 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1056: (0Day) Microsoft ASP.NET SOAP Execution Restriction Bypass Remote Code Execution Vulnerability]]> ZDI-CAN-27220 http://www.zerodayinitiative.com/advisories/ZDI-25-1056/ Wed, 10 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1055: (0Day) Microsoft Windows MP4 File Parsing Null Pointer Dereference Denial-of-Service Vulnerability]]> ZDI-CAN-27835 http://www.zerodayinitiative.com/advisories/ZDI-25-1055/ Wed, 10 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1054: (0Day) Microsoft Windows dir Command Improper Character Neutralization Vulnerability]]> ZDI-CAN-26750 http://www.zerodayinitiative.com/advisories/ZDI-25-1054/ Wed, 10 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1053: (0Day) Microsoft SharePoint Calendar Overlay Hyperlink Injection Vulnerability]]> ZDI-CAN-27955 http://www.zerodayinitiative.com/advisories/ZDI-25-1053/ Wed, 10 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1052: Ivanti Endpoint Manager CAB File Parsing Directory Traversal Remote Code Execution Vulnerability]]> ZDI-CAN-28116 http://www.zerodayinitiative.com/advisories/ZDI-25-1052/ Wed, 10 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1051: Ivanti Endpoint Manager HIIDriver Improper Verification of Cryptographic Signature Remote Code Execution Vulnerability]]> ZDI-CAN-26897 http://www.zerodayinitiative.com/advisories/ZDI-25-1051/ Wed, 10 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1050: Microsoft Azure Virtual Desktop Link Following Local Privilege Escalation Vulnerability]]> ZDI-CAN-26573 http://www.zerodayinitiative.com/advisories/ZDI-25-1050/ Tue, 09 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1049: Microsoft Windows win32kfull Out-Of-Bounds Write Local Privilege Escalation Vulnerability]]> ZDI-CAN-27759 http://www.zerodayinitiative.com/advisories/ZDI-25-1049/ Tue, 09 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1048: Microsoft Windows win32kfull Out-Of-Bounds Write Local Privilege Escalation Vulnerability]]> ZDI-CAN-27760 http://www.zerodayinitiative.com/advisories/ZDI-25-1048/ Tue, 09 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1047: Microsoft Windows win32kbase Out-Of-Bounds Access Local Privilege Escalation Vulnerability]]> ZDI-CAN-27761 http://www.zerodayinitiative.com/advisories/ZDI-25-1047/ Tue, 09 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1046: Microsoft Windows win32kfull Type Confusion Local Privilege Escalation Vulnerability]]> ZDI-CAN-27832 http://www.zerodayinitiative.com/advisories/ZDI-25-1046/ Tue, 09 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1045: Schneider Electric PowerChute Serial Shutdown Directory Traversal Local Privilege Escalation Vulnerability]]> ZDI-CAN-27376 http://www.zerodayinitiative.com/advisories/ZDI-25-1045/ Tue, 09 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1044: NVIDIA Isaac-GR00T secure_server Authentication Bypass Vulnerability]]> ZDI-CAN-27954 http://www.zerodayinitiative.com/advisories/ZDI-25-1044/ Tue, 09 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1043: Adobe Acrobat Reader DC Annotation Out-Of-Bounds Read Remote Code Execution Vulnerability]]> ZDI-CAN-27425 http://www.zerodayinitiative.com/advisories/ZDI-25-1043/ Tue, 09 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1042: Siemens Simcenter Femap IGS File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability]]> ZDI-CAN-26755 http://www.zerodayinitiative.com/advisories/ZDI-25-1042/ Tue, 09 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1041: NVIDIA Isaac-GR00T TorchSerializer Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-27950 http://www.zerodayinitiative.com/advisories/ZDI-25-1041/ Thu, 04 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1040: (Pwn2Own) Synology DiskStation DS925+ samlAuth Authentication Bypass Vulnerability]]> ZDI-CAN-28409 http://www.zerodayinitiative.com/advisories/ZDI-25-1040/ Wed, 03 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1039: (Pwn2Own) Synology BeeStation Plus auth_info Stack-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-28275 http://www.zerodayinitiative.com/advisories/ZDI-25-1039/ Wed, 03 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1038: NVIDIA Megatron load_common Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-27201 http://www.zerodayinitiative.com/advisories/ZDI-25-1038/ Mon, 01 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1037: Emerson Movicon RTUSERS File Parsing Memory Corruption Remote Code Execution Vulnerability]]> ZDI-CAN-27649 http://www.zerodayinitiative.com/advisories/ZDI-25-1037/ Mon, 01 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1036: Tencent TFace restore_checkpoint Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-27185 http://www.zerodayinitiative.com/advisories/ZDI-25-1036/ Mon, 01 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1035: Tencent TFace eval Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-27187 http://www.zerodayinitiative.com/advisories/ZDI-25-1035/ Mon, 01 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1034: Tencent PatrickStar merge_checkpoint Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-27182 http://www.zerodayinitiative.com/advisories/ZDI-25-1034/ Mon, 01 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1033: Tencent NeuralNLP-NeuralClassifier _load_checkpoint Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-27184 http://www.zerodayinitiative.com/advisories/ZDI-25-1033/ Mon, 01 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1032: Tencent MimicMotion create_pipeline Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-27208 http://www.zerodayinitiative.com/advisories/ZDI-25-1032/ Mon, 01 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1031: Tencent MedicalNet generate_model Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-27192 http://www.zerodayinitiative.com/advisories/ZDI-25-1031/ Mon, 01 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1030: Tencent HunyuanVideo load_vae Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-27186 http://www.zerodayinitiative.com/advisories/ZDI-25-1030/ Mon, 01 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1029: Tencent HunyuanDiT model_resume Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-27183 http://www.zerodayinitiative.com/advisories/ZDI-25-1029/ Mon, 01 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1028: Tencent HunyuanDiT merge Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-27190 http://www.zerodayinitiative.com/advisories/ZDI-25-1028/ Mon, 01 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1027: Tencent Hunyuan3D-1 load_pretrained Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-27191 http://www.zerodayinitiative.com/advisories/ZDI-25-1027/ Mon, 01 Dec 2025 00:00:00 -0600 <![CDATA[ZDI-25-1026: Appleton UPSMON-PRO UPSMONProService Stack-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-24122 http://www.zerodayinitiative.com/advisories/ZDI-25-1026/ Thu, 27 Nov 2025 00:00:00 -0600 <![CDATA[ZDI-25-1025: MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution Vulnerability]]> ZDI-CAN-27000 http://www.zerodayinitiative.com/advisories/ZDI-25-1025/ Thu, 27 Nov 2025 00:00:00 -0600 <![CDATA[ZDI-25-1024: DreamFactory saveZipFile Command Injection Remote Code Execution Vulnerability]]> ZDI-CAN-26589 http://www.zerodayinitiative.com/advisories/ZDI-25-1024/ Wed, 26 Nov 2025 00:00:00 -0600 <![CDATA[ZDI-25-1023: VIPRE Advanced Security Incorrect Permission Assignment Local Privilege Escalation Vulnerability]]> ZDI-CAN-27147 http://www.zerodayinitiative.com/advisories/ZDI-25-1023/ Wed, 26 Nov 2025 00:00:00 -0600 <![CDATA[ZDI-25-1022: Deciso OPNsense diag_backup.php filename Directory Traversal Remote Code Execution Vulnerability]]> ZDI-CAN-28133 http://www.zerodayinitiative.com/advisories/ZDI-25-1022/ Tue, 25 Nov 2025 00:00:00 -0600 <![CDATA[ZDI-25-1021: Siemens SINEC NMS getTotalAndFilterCounts SQL Injection Privilege Escalation Vulnerability]]> ZDI-CAN-26570 http://www.zerodayinitiative.com/advisories/ZDI-25-1021/ Tue, 25 Nov 2025 00:00:00 -0600 <![CDATA[ZDI-25-1020: Arista NG Firewall runTroubleshooting Command Injection Remote Code Execution Vulnerability]]> ZDI-CAN-27310 http://www.zerodayinitiative.com/advisories/ZDI-25-1020/ Tue, 25 Nov 2025 00:00:00 -0600 <![CDATA[ZDI-25-1019: Arista NG Firewall replace_marker Exposed Dangerous Function Authentication Bypass Vulnerability]]> ZDI-CAN-27007 http://www.zerodayinitiative.com/advisories/ZDI-25-1019/ Tue, 25 Nov 2025 00:00:00 -0600 <![CDATA[ZDI-25-1018: Arista NG Firewall load_capture_settings Exposed Dangerous Function Information Disclosure Vulnerability]]> ZDI-CAN-27006 http://www.zerodayinitiative.com/advisories/ZDI-25-1018/ Tue, 25 Nov 2025 00:00:00 -0600 <![CDATA[ZDI-25-1017: ASUS MyASUS Incorrect Permission Assignment Local Privilege Escalation Vulnerability]]> ZDI-CAN-27794 http://www.zerodayinitiative.com/advisories/ZDI-25-1017/ Tue, 25 Nov 2025 00:00:00 -0600 <![CDATA[ZDI-25-1016: Wibu-Systems WibuKey Runtime Untrusted Pointer Dereference Local Privilege Escalation Vulnerability]]> ZDI-CAN-27540 http://www.zerodayinitiative.com/advisories/ZDI-25-1016/ Tue, 25 Nov 2025 00:00:00 -0600 <![CDATA[ZDI-25-1015: Parallels Toolbox CleanDrive Link Following Local Privilege Escalation Vulnerability]]> ZDI-CAN-26516 http://www.zerodayinitiative.com/advisories/ZDI-25-1015/ Tue, 25 Nov 2025 00:00:00 -0600 <![CDATA[ZDI-25-1014: Fortinet FortiWeb policy_scripting_post_handler Command Injection Remote Code Execution Vulnerability]]> ZDI-CAN-27383 http://www.zerodayinitiative.com/advisories/ZDI-25-1014/ Wed, 19 Nov 2025 00:00:00 -0600 <![CDATA[ZDI-25-1013: NVIDIA AIStore AuthN Hard-coded Credentials Authentication Bypass Vulnerability]]> ZDI-CAN-27858 http://www.zerodayinitiative.com/advisories/ZDI-25-1013/ Fri, 14 Nov 2025 00:00:00 -0600 <![CDATA[ZDI-25-1012: NVIDIA AIStore AuthN users Missing Authentication for Critical Function Information Disclosure Vulnerability]]> ZDI-CAN-27857 http://www.zerodayinitiative.com/advisories/ZDI-25-1012/ Fri, 14 Nov 2025 00:00:00 -0600 <![CDATA[ZDI-25-1011: Apple Safari JavaScriptCore Wasm Function Parsing Use-After-Free Remote Code Execution Vulnerability]]> ZDI-CAN-28039 http://www.zerodayinitiative.com/advisories/ZDI-25-1011/ Thu, 13 Nov 2025 00:00:00 -0600 <![CDATA[ZDI-25-1010: Apple Safari JavaScriptCore DFG CSE Phase Graph Node Substitution Use-After-Free Remote Code Execution Vulnerability]]> ZDI-CAN-27991 http://www.zerodayinitiative.com/advisories/ZDI-25-1010/ Thu, 13 Nov 2025 00:00:00 -0600 <![CDATA[ZDI-25-1009: Apple macOS USD readAccessorData Heap-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-27849 http://www.zerodayinitiative.com/advisories/ZDI-25-1009/ Thu, 13 Nov 2025 00:00:00 -0600 <![CDATA[ZDI-25-1008: Apple macOS ICC Profile Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-27894 http://www.zerodayinitiative.com/advisories/ZDI-25-1008/ Thu, 13 Nov 2025 00:00:00 -0600 <![CDATA[ZDI-25-1007: Apple Safari JavaScriptCore operationMapIteratorNext Type Confusion Information Disclosure Vulnerability]]> ZDI-CAN-27825 http://www.zerodayinitiative.com/advisories/ZDI-25-1007/ Thu, 13 Nov 2025 00:00:00 -0600 <![CDATA[ZDI-25-1006: Apple macOS CoreText Font Glyph Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability]]> ZDI-CAN-27796 http://www.zerodayinitiative.com/advisories/ZDI-25-1006/ Thu, 13 Nov 2025 00:00:00 -0600 <![CDATA[ZDI-25-1005: Apple macOS WindowServer Excessive Iteration Denial-of-Service Vulnerability]]> ZDI-CAN-27348 http://www.zerodayinitiative.com/advisories/ZDI-25-1005/ Thu, 13 Nov 2025 00:00:00 -0600 <![CDATA[ZDI-25-1004: Apple macOS USD importMeshJointWeights Heap-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-27854 http://www.zerodayinitiative.com/advisories/ZDI-25-1004/ Thu, 13 Nov 2025 00:00:00 -0600 <![CDATA[ZDI-25-1003: Apple macOS USD importNodeAnimations Heap-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-27853 http://www.zerodayinitiative.com/advisories/ZDI-25-1003/ Thu, 13 Nov 2025 00:00:00 -0600