ZDI: Upcoming Advisories

ZDI-CAN-27195: Redis

ZDI: Upcoming Advisories
2 months 2 weeks ago
A CVSS score 9.8 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Benny Isaacs, Nir Brakha, Sagi Tzadik (@sagitz_)' was reported to the affected vendor on: 2025-06-05, 81 days ago. The vendor is given until 2025-10-03 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-26862: Ivanti

ZDI: Upcoming Advisories
2 months 2 weeks ago
A CVSS score 7.2 AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by '06fe5fd2bc53027c4a3b7e395af0b850e7b8a044' was reported to the affected vendor on: 2025-06-05, 81 days ago. The vendor is given until 2025-10-03 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-26865: Ivanti

ZDI: Upcoming Advisories
2 months 2 weeks ago
A CVSS score 7.2 AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by '06fe5fd2bc53027c4a3b7e395af0b850e7b8a044' was reported to the affected vendor on: 2025-06-05, 81 days ago. The vendor is given until 2025-10-03 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-27260: PDFsam

ZDI: Upcoming Advisories
2 months 3 weeks ago
A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'rgod' was reported to the affected vendor on: 2025-06-04, 82 days ago. The vendor is given until 2025-10-02 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-26855: Ivanti

ZDI: Upcoming Advisories
2 months 3 weeks ago
A CVSS score 7.2 AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by '06fe5fd2bc53027c4a3b7e395af0b850e7b8a044' was reported to the affected vendor on: 2025-06-03, 83 days ago. The vendor is given until 2025-09-01 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-26661: Trend Micro

ZDI: Upcoming Advisories
2 months 3 weeks ago
A CVSS score 7.0 AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Xavier DANEST - Decathlon' was reported to the affected vendor on: 2025-06-03, 83 days ago. The vendor is given until 2025-10-01 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-26834: Ivanti

ZDI: Upcoming Advisories
2 months 3 weeks ago
A CVSS score 8.8 AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by '06fe5fd2bc53027c4a3b7e395af0b850e7b8a044' was reported to the affected vendor on: 2025-06-03, 83 days ago. The vendor is given until 2025-09-01 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-27248: NVIDIA

ZDI: Upcoming Advisories
2 months 3 weeks ago
A CVSS score 7.5 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N severity vulnerability discovered by 'Ho Xuan Ninh (@izx) + Tri Dang (Sea Security)' was reported to the affected vendor on: 2025-06-03, 83 days ago. The vendor is given until 2025-10-01 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-27181: NVIDIA

ZDI: Upcoming Advisories
2 months 3 weeks ago
A CVSS score 7.5 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N severity vulnerability discovered by 'Ho Xuan Ninh (@izx) + Tri Dang (Sea Security)' was reported to the affected vendor on: 2025-06-03, 78 days ago. The vendor is given until 2025-10-01 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-27169: LiteLLM

ZDI: Upcoming Advisories
2 months 3 weeks ago
A CVSS score 6.5 AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N severity vulnerability discovered by 'Alfredo Oliveira of Trend Research' was reported to the affected vendor on: 2025-06-03, 83 days ago. The vendor is given until 2025-10-01 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-27154: Oracle

ZDI: Upcoming Advisories
2 months 3 weeks ago
A CVSS score 8.2 AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H severity vulnerability discovered by 'Do Manh Dung & Nguyen Dang Nguyen of STAR Labs SG Pte. Ltd.' was reported to the affected vendor on: 2025-06-02, 43 days ago. The vendor is given until 2025-09-30 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-27182: Tencent

ZDI: Upcoming Advisories
2 months 3 weeks ago
A CVSS score 8.8 AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Peter Girnus (@gothburz) of Trend Zero Day Initiative' was reported to the affected vendor on: 2025-05-29, 84 days ago. The vendor is given until 2025-09-26 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-26921: MLflow

ZDI: Upcoming Advisories
2 months 3 weeks ago
A CVSS score 8.1 AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Mas Fadilullah dzaki' was reported to the affected vendor on: 2025-05-29, 84 days ago. The vendor is given until 2025-09-26 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-27305: Fortinet

ZDI: Upcoming Advisories
2 months 3 weeks ago
A CVSS score 8.8 AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Jason McFadyen of Trend Research' was reported to the affected vendor on: 2025-05-29, 84 days ago. The vendor is given until 2025-09-26 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-27309: Fortinet

ZDI: Upcoming Advisories
2 months 3 weeks ago
A CVSS score 8.8 AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Jason McFadyen of Trend Research' was reported to the affected vendor on: 2025-05-29, 88 days ago. The vendor is given until 2025-09-26 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.
Checked
18 minutes 59 seconds ago
The following is a list of vulnerabilities discovered by Zero Day Initiative researchers that are yet to be publicly disclosed. The affected vendor has been contacted on the specified date and while they work on a patch for these vulnerabilities, Trend Micro customers are protected from exploitation by IPS filters delivered ahead of public disclosure. Once the affected vendor patches the vulnerability, we publish an accompanying security advisory which describes the issue, including links to the vendor's fixes.
URL
http://www.zerodayinitiative.com/advisories/upcoming/
ZDI: Upcoming Advisories feed

Managed ad