ZDI-26-179: Microsoft Windows win32kfull Improper Locking Local Privilege Escalation Vulnerability This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the... 11/03/2026 Zero-Day Initiative
ZDI-26-178: Microsoft Windows cdd Improper Locking Local Privilege Escalation Vulnerability This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the... 11/03/2026 Zero-Day Initiative
ZDI-26-177: Array Networks MotionPro ArrayInstallManager Incorrect Permission Assignment Local Privilege Escalation Vulnerability This vulnerability allows local attackers to escalate privileges on affected installations of Array Networks MotionPro. An attacker must first obtain... 11/03/2026 Zero-Day Initiative
ZDI-26-176: Apple macOS libusd_ms Alembic File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. User interaction is required to... 11/03/2026 Zero-Day Initiative
ZDI-26-175: Apple macOS ImageIO SGI File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple macOS. Interaction with the ImageIO framework... 11/03/2026 Zero-Day Initiative
ZDI-26-174: Apple macOS ImageIO SGI File Parsing Integer Overflow Remote Code Execution Vulnerability This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. Interaction with the ImageIO library... 11/03/2026 Zero-Day Initiative
ZDI-26-173: Apple macOS Audio APAC Frame Decoding Out-Of-Bounds Write Remote Code Execution Vulnerability This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. User interaction is required to... 11/03/2026 Zero-Day Initiative
ZDI-26-172: Unraid Authentication Request Path Traversal Authentication Bypass Vulnerability This vulnerability allows remote attackers to bypass authentication on affected installations of Unraid. Authentication is not required to exploit this... 11/03/2026 Zero-Day Initiative
ZDI-26-170: GStreamer H.266 Codec Parser Out-Of-Bounds Write Remote Code Execution Vulnerability This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required... 07/03/2026 Zero-Day Initiative
ZDI-26-169: GStreamer H.266 Codec Parser Integer Underflow Remote Code Execution Vulnerability This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required... 07/03/2026 Zero-Day Initiative
