ZDI-26-185: Microsoft Windows GDI Bitmap Parsing Out-Of-Bound Read Information Disclosure Vulnerability 11/03/2026
CISA Warns About Ivanti EPM Vulnerability Exploited in Attacks (CVE-2026-1603) The U.S. Cybersecurity and Infrastructure Security Agency (CISA) informs users that the Ivanti Endpoint Manager vulnerability is being exploited in the wild. CISA added the vulnerability to its Known... 11/03/2026 Qualys-Threat-Protect
Microsoft Patch Tuesday, March 2026 Security Update Review Microsoft has rolled out its March 2026 Patch Tuesday updates, delivering a fresh batch of security fixes designed to keep... 11/03/2026 Qualys-Threat-Protect
ZDI-26-186: Fortinet FortiClient Link Following Local Privilege Escalation Vulnerability This vulnerability allows local attackers to escalate privileges on affected installations of Fortinet FortiClient. An attacker must first obtain the... 11/03/2026 Zero-Day Initiative
ZDI-26-185: Microsoft Windows GDI Bitmap Parsing Out-Of-Bound Read Information Disclosure Vulnerability This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Windows. Interaction with the GDI library... 11/03/2026 Zero-Day Initiative
ZDI-26-184: Microsoft Windows NDIS Driver Use-After-Free Local Privilege Escalation Vulnerability This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the... 11/03/2026 Zero-Day Initiative
ZDI-26-183: Microsoft Windows win32full Improper Release Local Privilege Escalation Vulnerability This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the... 11/03/2026 Zero-Day Initiative
ZDI-26-182: Microsoft Windows win32full Improper Release Local Privilege Escalation Vulnerability This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the... 11/03/2026 Zero-Day Initiative
ZDI-26-181: Microsoft Windows win32full Improper Release Local Privilege Escalation Vulnerability This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the... 11/03/2026 Zero-Day Initiative
ZDI-26-180: Microsoft Windows cdd Improper Locking Local Privilege Escalation Vulnerability This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the... 11/03/2026 Zero-Day Initiative
ZDI-26-179: Microsoft Windows win32kfull Improper Locking Local Privilege Escalation Vulnerability This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the... 11/03/2026 Zero-Day Initiative
