CVE-2025-71218

creationtimestamp| type| source ---|---|--- 2026-03-03 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-26-149/...

CVE-2026-0779

creationtimestamp| type| source ---|---|--- 2026-01-09 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-26-001/...

CVE-2025-14417

creationtimestamp| type| source ---|---|--- 2025-12-11 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-1074/...

CVE-2025-13709

creationtimestamp| type| source ---|---|--- 2025-12-01 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-1036/ 2026-01-12 18:07:39+00:00| seen| Telegram/Qn4zDx1gopuoFDdeF2t5YNGl6RathPfNxmtfN1VfQWpYEMo...

CVE-2025-13713

creationtimestamp| type| source ---|---|--- 2025-12-01 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-1027/ 2025-12-23 22:26:18+00:00| seen| https://bsky.app/profile/potato.software/post/3maos665sef23...

CVE-2025-12489

creationtimestamp| type| source ---|---|--- 2025-10-30 04:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-983/...

GHSA-GRJP-54V3-C442 OpenUSD File Parsing Use-After-Free Remote Code Execution Vulnerability

Patch This is fixed with commit b953092, with the fix available in OpenUSD 25.11 and onwards. Summary We have been advised by Zero Day Initiative that our usage of the USD framework may constitute a Use-After-Free Remote Code Execution Vulnerability. They have sent us the attached file illustrati...

CVE-2025-10924

creationtimestamp| type| source ---|---|--- 2025-09-24 03:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-913/...

CVE-2024-11551

creationtimestamp| type| source ---|---|--- 2024-11-21 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-24-1549/...

CVE-2019-1169

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka ‘Win32k Elevation of Privilege Vulnerability’. Recent assessments: tekwizz123 at March 20, 2020 4:16pm UTC reported: Wrote up a full analysis of this bug i...

TippingPoint Threat Intelligence and Zero-Day Coverage – Week of May 28, 2018

I ended up at an urgent care clinic earlier this week and found out I have strep throat. The doctor who examined me asked me what medicine I had taken prior to my visit to help alleviate my throat pain, to which I replied, “I took a multi-symptom liquid medicine because the pain was keeping me...

Microsoft Internet Explorer 9 IEFRAME CMarkup..RemovePointerPos Use-After-Free

Since November I have been releasing details on all vulnerabilities I found that I have not released before. This is the 32nd entry in the series. This information is available in more detail on my blog at http://blog.skylined.nl/20161214001.html. There you can find a repro that triggered this...

MS15-1 0 6 JavaScript ArrayBuffer. slice any address read-vulnerability analysis-vulnerability warning-the black bar safety net

2 0 1 5 year 8 month 1 3 day, Microsoft released the Update Patch security bulletin MS15-1 0 6, which contains the About Internet Explorer multiple vulnerabilities. Before, we have explained how to attack the VBScript engine inside the Filter function in the presence of type confusion...

KLA10666 Code execution vulnerability in Corel WordPerfect

An unspecified vulnerability was found in Corel WordPerfect. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed Microsoft Word document. Original advisories ZDI advisory Related products...

Another Internet Explorer Zero Day Surfaces

Researchers have disclosed a new zero day vulnerability in Internet Explorer 8 that could enable an attacker to run arbitrary code on vulnerable machines via drive-by downloads or malicious attachments in email messages. The vulnerability was discovered and disclosed to Microsoft in October, but...

RealNetworks Realplayer QCP Parsing Heap Overflow

This module exploits a heap overflow in Realplayer when handling a .QCP file. The specific flaw exists within qcpfformat.dll. A static 256 byte buffer is allocated on the heap and user-supplied data from the file is copied within a memory copy loop. This allows a remote attacker to execute...

Oracle Secure Backup Server Bypass / Command Injection

!/bin/bash Oracle Secure Backup Administration Server authentication bypass, plus command injection vulnerability 1-day exploit for CVE-2009-1977 and CVE-2009-1978 PoC script successfully tested on: Oracle Secure Backup Server 10.3.0.1.0win32release MS Windows Professional XP SP3 In August 2009,...

[CAID 35395, 35396]: CA Anti-Virus Engine CAB File Buffer Overflow Vulnerabilities

Title: CAID 35395, 35396: CA Anti-Virus Engine CAB File Buffer Overflow Vulnerabilities CA Vuln ID CAID: 35395, 35396 CA Advisory Date: 2007-06-05 Reported By: ZDI Impact: Remote attackers can cause a denial of service or potentially execute arbitrary code. Summary: CA Anti-Virus engine contains...

[CAID 35198, 35276]: CA BrightStor ARCserve Backup Media Server Vulnerabilities

Title: CAID 35198, 35276: CA BrightStor ARCserve Backup Media Server Vulnerabilities CA Vuln ID CAID: 35198, 35276 CA Advisory Date: 2007-04-24 Reported By: ZDI Impact: Remote attackers can cause a denial of service or potentially execute arbitrary code. Summary: CA BrightStor ARCserve Backup Med...

CVE-2006-0992

Stack-based buffer overflow in Novell GroupWise Messenger before 2.0 Public Beta 2 allows remote attackers to execute arbitrary code via a long Accept-Language value without a comma or semicolon. NOTE: due to a typo, the original ZDI advisory accidentally referenced CVE-2006-0092. This is the...