ZDI-26-434: (Pwn2Own) Autel MaxiCharger AC Elite Home USB Authentication Bypass Vulnerability This vulnerability allows physically present attackers to bypass authentication on affected installations of Autel MaxiCharger AC Elite Home EV chargers.... 16/07/2026 Zero-Day Initiative
ZDI-26-433: (Pwn2Own) Autel MaxiCharger AC Elite Home Software Update Improper Verification of Cryptographic Signature Arbitrary Code Execution Vulnerability This vulnerability allows physically present attackers to execute arbitrary code on affected installations of Autel MaxiCharger AC Elite Home EV... 16/07/2026 Zero-Day Initiative
ZDI-26-432: G DATA Total Security Backup Service Link Following Local Privilege Escalation Vulnerability This vulnerability allows local attackers to escalate privileges on affected installations of G DATA Total Security. An attacker must first... 16/07/2026 Zero-Day Initiative
ZDI-26-431: ASUS Business Manager Service Client-Side Authentication Local Privilege Escalation Vulnerability This vulnerability allows local attackers to escalate privileges on affected installations of ASUS Business Manager. An attacker must first obtain... 16/07/2026 Zero-Day Initiative
ZDI-26-430: MSI Center NTIOLib_X64 Origin Validation Error Local Privilege Escalation Vulnerability This vulnerability allows local attackers to escalate privileges on affected installations of MSI Center. An attacker must first obtain the... 16/07/2026 Zero-Day Initiative
ZDI-26-403: (0Day) Ollama downloadBlob Improper Validation of Array Index Denial-of-Service Vulnerability This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Ollama. Authentication is not required to... 09/07/2026 Zero-Day Initiative
ZDI-26-402: (0Day) Glarysoft Glary Utilities Link Following Local Privilege Escalation Vulnerability This vulnerability allows local attackers to escalate privileges on affected installations of Glarysoft Glary Utilities. An attacker must first obtain... 09/07/2026 Zero-Day Initiative
ZDI-26-401: (0Day) AnyDesk Support Information Link Following Denial-of-Service Vulnerability This vulnerability allows local attackers to create a denial-of-service condition on affected installations of AnyDesk. An attacker must first obtain... 09/07/2026 Zero-Day Initiative
ZDI-26-400: (0Day) AnyDesk Screen Recording Link Following Denial-of-Service Vulnerability This vulnerability allows local attackers to create a denial-of-service condition on affected installations of AnyDesk. An attacker must first obtain... 09/07/2026 Zero-Day Initiative
ZDI-26-399: (0Day) (Pwn2Own) Lorex 2K Indoor Wi-Fi Security Camera Device Management Server Improper Certificate Validation Vulnerability This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Lorex 2K Indoor Wi-Fi Security Cameras. User... 09/07/2026 Zero-Day Initiative