ZDI-26-140: Trend Micro Apex One Origin Validation Error Local Privilege Escalation Vulnerability This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Apex One Security Agent. An attacker... 04/03/2026 Zero-Day Initiative
ZDI-26-139: Trend Micro Apex One Security Agent iCore Service Origin Validation Error Local Privilege Escalation Vulnerability This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Apex One Security Agent. An attacker... 04/03/2026 Zero-Day Initiative
ZDI-26-138: Trend Micro Apex One Virus Scan Engine Link Following Local Privilege Escalation Vulnerability This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Apex One Security Agent. An attacker... 04/03/2026 Zero-Day Initiative
ZDI-26-137: Trend Micro Apex One Console Directory Traversal Remote Code Execution Vulnerability This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trend Micro Apex One. Authentication is not... 04/03/2026 Zero-Day Initiative
ZDI-26-136: Trend Micro Apex One Console Directory Traversal Remote Code Execution Vulnerability This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trend Micro Apex One. Authentication is not... 04/03/2026 Zero-Day Initiative
Cisco SD-WAN Controller and Manager Authentication Bypass Vulnerability (CVE-2026-20127) Cisco released a security update to address an actively exploited vulnerability impacting Cisco Catalyst SD-WAN Controller and SD-WAN Manager. Tracked as CVE-2026-20127, successful exploitation of... 26/02/2026 Qualys-Threat-Protect
ZDI-26-132: Siemens SINEC NMS Uncontrolled Search Path Element Local Privilege Escalation Vulnerability This vulnerability allows local attackers to escalate privileges on affected installations of Siemens SINEC NMS. An attacker must first obtain... 26/02/2026 Zero-Day Initiative
ZDI-26-131: Siemens SINEC NMS Uncontrolled Search Path Element Local Privilege Escalation Vulnerability This vulnerability allows local attackers to escalate privileges on affected installations of Siemens SINEC NMS. An attacker must first obtain... 26/02/2026 Zero-Day Initiative
ZDI-26-130: IceWarp collaboration Directory Traversal Information Disclosure Vulnerability This vulnerability allows remote attackers to disclose sensitive information on affected installations of IceWarp. Authentication is not required to exploit... 26/02/2026 Zero-Day Initiative
ZDI-26-129: Socomec DIRIS A-40 HTTP API Authentication Bypass Vulnerability This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of Socomec DIRIS A-40 power monitoring devices. Authentication is... 26/02/2026 Zero-Day Initiative
