ZDI: Upcoming Advisories

ZDI-CAN-29944: GIMP

ZDI: Upcoming Advisories
1 day 10 hours ago
A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by '@pacbypass' was reported to the affected vendor on: 2026-04-29, 0 days ago. The vendor is given until 2026-08-27 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-29400: GIMP

ZDI: Upcoming Advisories
1 day 10 hours ago
A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Anonymous' was reported to the affected vendor on: 2026-04-29, 0 days ago. The vendor is given until 2026-08-27 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-29493: GIMP

ZDI: Upcoming Advisories
1 day 10 hours ago
A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by '@pacbypass' was reported to the affected vendor on: 2026-04-29, 0 days ago. The vendor is given until 2026-08-27 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-29612: GIMP

ZDI: Upcoming Advisories
1 day 10 hours ago
A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Sajeeb Lohani' was reported to the affected vendor on: 2026-04-29, 0 days ago. The vendor is given until 2026-08-27 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-29611: GIMP

ZDI: Upcoming Advisories
1 day 10 hours ago
A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Sajeeb Lohani' was reported to the affected vendor on: 2026-04-29, 0 days ago. The vendor is given until 2026-08-27 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-29459: GIMP

ZDI: Upcoming Advisories
1 day 10 hours ago
A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by '@pacbypass' was reported to the affected vendor on: 2026-04-29, 0 days ago. The vendor is given until 2026-08-27 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-29373: KDE

ZDI: Upcoming Advisories
1 day 10 hours ago
A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'MICHAEL RANDRIANANTENAINA [https://elkamika.blogspot.com/]' was reported to the affected vendor on: 2026-04-29, 0 days ago. The vendor is given until 2026-08-27 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-29268: Luxion

ZDI: Upcoming Advisories
1 day 10 hours ago
A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Sean de Regge' was reported to the affected vendor on: 2026-04-29, 0 days ago. The vendor is given until 2026-08-27 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-30450: LiteLLM

ZDI: Upcoming Advisories
1 week ago
A CVSS score 8.5 AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N severity vulnerability discovered by 'Apex Security Research' was reported to the affected vendor on: 2026-04-23, 6 days ago. The vendor is given until 2026-08-21 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-30459: Flowise

ZDI: Upcoming Advisories
1 week ago
A CVSS score 9.8 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Dre Cura (@dre_cura) of TrendAI Research' was reported to the affected vendor on: 2026-04-23, 6 days ago. The vendor is given until 2026-08-21 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-28743: Quest

ZDI: Upcoming Advisories
1 week ago
A CVSS score 7.5 AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H severity vulnerability discovered by '06fe5fd2bc53027c4a3b7e395af0b850e7b8a044' was reported to the affected vendor on: 2026-04-23, 6 days ago. The vendor is given until 2026-08-21 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-28744: Quest

ZDI: Upcoming Advisories
1 week ago
A CVSS score 7.5 AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H severity vulnerability discovered by '06fe5fd2bc53027c4a3b7e395af0b850e7b8a044' was reported to the affected vendor on: 2026-04-23, 6 days ago. The vendor is given until 2026-08-21 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-30186: oFono

ZDI: Upcoming Advisories
1 week 1 day ago
A CVSS score 8.4 AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Anonymous' was reported to the affected vendor on: 2026-04-22, 7 days ago. The vendor is given until 2026-08-20 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.

ZDI-CAN-30192: oFono

ZDI: Upcoming Advisories
1 week 1 day ago
A CVSS score 8.4 AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Anonymous' was reported to the affected vendor on: 2026-04-22, 7 days ago. The vendor is given until 2026-08-20 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.
Checked
11 hours 54 minutes ago
The following is a list of vulnerabilities discovered by Zero Day Initiative researchers that are yet to be publicly disclosed. The affected vendor has been contacted on the specified date and while they work on a patch for these vulnerabilities, TrendAI customers are protected from exploitation by IPS filters delivered ahead of public disclosure. Once the affected vendor patches the vulnerability, we publish an accompanying security advisory which describes the issue, including links to the vendor's fixes.
URL
http://www.zerodayinitiative.com/advisories/upcoming/
ZDI: Upcoming Advisories feed

Managed ad