ZDI: Upcoming Advisories

ZDI-CAN-25833: Siemens

ZDI: Upcoming Advisories
2 months 1 week ago
A CVSS score 7.5 AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H severity vulnerability discovered by 'Jay Turla and Jerold Camacho of VicOne, Japz Divino of VikingCloud Inc.' was reported to the affected vendor on: 2024-11-19, 72 days ago. The vendor is given until 2025-03-19 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25837: ServiceStack

ZDI: Upcoming Advisories
2 months 1 week ago
A CVSS score 8.1 AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Piotr Bazydlo (@chudypb) of Trend Micro Zero Day Initiative' was reported to the affected vendor on: 2024-11-19, 72 days ago. The vendor is given until 2025-03-19 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25834: ServiceStack

ZDI: Upcoming Advisories
2 months 1 week ago
A CVSS score 5.9 AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N severity vulnerability discovered by 'Piotr Bazydlo (@chudypb) of Trend Micro Zero Day Initiative' was reported to the affected vendor on: 2024-11-19, 72 days ago. The vendor is given until 2025-03-19 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25850: Autodesk

ZDI: Upcoming Advisories
2 months 1 week ago
A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Vladislav Berghici of Trend Micro Research & Mat Powell of Trend Micro Zero Day Initiative' was reported to the affected vendor on: 2024-11-19, 30 days ago. The vendor is given until 2025-03-19 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25676: Lexmark

ZDI: Upcoming Advisories
2 months 2 weeks ago
A CVSS score 8.8 AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'PHP Hooligans / Midnight Blue' was reported to the affected vendor on: 2024-11-15, 76 days ago. The vendor is given until 2025-03-15 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25621: Lexmark

ZDI: Upcoming Advisories
2 months 2 weeks ago
A CVSS score 8.8 AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'PHP Hooligans / Midnight Blue' was reported to the affected vendor on: 2024-11-15, 76 days ago. The vendor is given until 2025-03-15 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25674: Lexmark

ZDI: Upcoming Advisories
2 months 2 weeks ago
A CVSS score 4.3 AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N severity vulnerability discovered by 'Chris Anastasio @mufinnnnnnn & Fabius Watson' was reported to the affected vendor on: 2024-11-15, 76 days ago. The vendor is given until 2025-03-15 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25603: Ubiquiti Networks

ZDI: Upcoming Advisories
2 months 2 weeks ago
A CVSS score 7.5 AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Bongeun Koo(@kiddo_pwn), Dohyun Kim(@d0now), Junyoung Choi(@insp3ct0r_x), Wonbeen Im(@D0b6y), Juhyeop Lee(@leeju_04), Juyeong Lee(@ju_cheda), GuckHyeon Jin(@nang__lam), Jongmin Kim(@slyfizz3) of STEALIEN Inc.' was reported to the affected vendor on: 2024-11-15, 76 days ago. The vendor is given until 2025-03-15 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25666: Ubiquiti Networks

ZDI: Upcoming Advisories
2 months 2 weeks ago
A CVSS score 7.5 AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Bongeun Koo(@kiddo_pwn), Dohyun Kim(@d0now), Junyoung Choi(@insp3ct0r_x), Wonbeen Im(@D0b6y), Juhyeop Lee(@leeju_04), Juyeong Lee(@ju_cheda), GuckHyeon Jin(@nang__lam), Jongmin Kim(@slyfizz3) of STEALIEN Inc.' was reported to the affected vendor on: 2024-11-15, 76 days ago. The vendor is given until 2025-03-15 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25626: iXsystems

ZDI: Upcoming Advisories
2 months 2 weeks ago
A CVSS score 7.5 AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Daan Keuper, Thijs Alkemade and Khaled Nassar from Computest Sector 7' was reported to the affected vendor on: 2024-11-15, 21 days ago. The vendor is given until 2025-03-15 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25668: iXsystems

ZDI: Upcoming Advisories
2 months 2 weeks ago
A CVSS score 3.1 AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N severity vulnerability discovered by 'Daan Keuper, Thijs Alkemade and Khaled Nassar from Computest Sector 7' was reported to the affected vendor on: 2024-11-15, 21 days ago. The vendor is given until 2025-03-15 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25636: iXsystems

ZDI: Upcoming Advisories
2 months 2 weeks ago
A CVSS score 7.5 AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Sina Kheirkhah (@SinSinology) of Summoning Team (@SummoningTeam)' was reported to the affected vendor on: 2024-11-15, 76 days ago. The vendor is given until 2025-03-15 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25637: iXsystems

ZDI: Upcoming Advisories
2 months 2 weeks ago
A CVSS score 7.8 AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Sina Kheirkhah (@SinSinology) of Summoning Team (@SummoningTeam)' was reported to the affected vendor on: 2024-11-15, 76 days ago. The vendor is given until 2025-03-15 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25545: X.Org

ZDI: Upcoming Advisories
2 months 2 weeks ago
A CVSS score 7.8 AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Jan-Niklas Sohn' was reported to the affected vendor on: 2024-11-15, 76 days ago. The vendor is given until 2025-03-15 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-23861: Viessmann

ZDI: Upcoming Advisories
2 months 2 weeks ago
A CVSS score 6.8 AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'adhkr - LuwakLab' was reported to the affected vendor on: 2024-11-15, 76 days ago. The vendor is given until 2025-03-15 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-25495: Trend Micro

ZDI: Upcoming Advisories
2 months 2 weeks ago
A CVSS score 9.8 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Piotr Bazydlo (@chudypb) of Trend Micro Zero Day Initiative' was reported to the affected vendor on: 2024-11-15, 76 days ago. The vendor is given until 2025-03-15 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.
Checked
4 hours 47 minutes ago
The following is a list of vulnerabilities discovered by Zero Day Initiative researchers that are yet to be publicly disclosed. The affected vendor has been contacted on the specified date and while they work on a patch for these vulnerabilities, Trend Micro customers are protected from exploitation by IPS filters delivered ahead of public disclosure. Once the affected vendor patches the vulnerability, we publish an accompanying security advisory which describes the issue, including links to the vendor's fixes.
URL
http://www.zerodayinitiative.com/advisories/upcoming/
ZDI: Upcoming Advisories feed

Managed ad