ZDI-25-852: (0Day) CData API Server MySQL Misconfiguration Information Disclosure Vulnerability This vulnerability allows remote attackers to disclose sensitive information on affected installations of CData API Server. Authentication is required to... 21/08/2025 Zero-Day Initiative
ZDI-25-851: (Pwn2Own) NVIDIA Triton Inference Server IPC Push Out-Of-Bounds Write Remote Code Execution Vulnerability This vulnerability allows remote attackers to execute arbitrary code on affected installations of NVIDIA Triton Inference Server. Authentication is not... 21/08/2025 Zero-Day Initiative
ZDI-25-850: (Pwn2Own) NVIDIA Triton Inference Server LoadFromSharedMemory Out-Of-Bounds Read Information Disclosure Vulnerability This vulnerability allows remote attackers to disclose sensitive information on affected installations of NVIDIA Triton Inference Server. Authentication is not... 21/08/2025 Zero-Day Initiative
ZDI-25-849: (Pwn2Own) NVIDIA Triton Inference Server SharedMemoryManager Error Message Information Disclosure Vulnerability This vulnerability allows remote attackers to disclose sensitive information on affected installations of NVIDIA Triton Inference Server. Authentication is not... 21/08/2025 Zero-Day Initiative
ZDI-25-848: NVIDIA Isaac-GR00T secure_server Authentication Bypass Vulnerability This vulnerability allows remote attackers to bypass authentication on affected installations of NVIDIA Isaac-GR00T. Authentication is not required to exploit... 21/08/2025 Zero-Day Initiative
ZDI-25-847: NVIDIA Isaac-GR00T TorchSerializer Deserialization of Untrusted Data Remote Code Execution Vulnerability This vulnerability allows remote attackers to execute arbitrary code on affected installations of NVIDIA Isaac-GR00T. User interaction is required to... 21/08/2025 Zero-Day Initiative
Cisco Secure Firewall Management Center Software RADIUS Remote Code Execution Vulnerability (CVE-2025-20265) Cisco addressed a critical severity vulnerability impacting its Secure Firewall Management Center Software. Tracked as CVE-2025-20265, the vulnerability has a... 19/08/2025 Qualys-Threat-Protect
ZDI-25-846: Apple macOS USD importMeshJointWeights Out-Of-Bounds Read Information Disclosure Vulnerability This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple macOS. Interaction with the USD library... 15/08/2025 Zero-Day Initiative
ZDI-25-845: (Pwn2Own) Microsoft Windows win32kfull Race Condition Local Privilege Escalation Vulnerability This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the... 15/08/2025 Zero-Day Initiative
ZDI-25-844: Microsoft Windows Subsystem for Linux WslCoreVm::Initialize Incorrect Privilege Management Information Disclosure Vulnerability This vulnerability allows local attackers to read arbitrary files on affected installations of Microsoft Windows. An attacker must first obtain... 15/08/2025 Zero-Day Initiative
