ZDI-25-979: Netgate pfSense CE Suricata Path Traversal Remote Code Execution Vulnerability This vulnerability allows remote attackers to create arbitrary files on affected installations of Netgate pfSense. Authentication is required to exploit... 31/10/2025 Zero-Day Initiative
ZDI-25-978: GIMP XWD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit... 30/10/2025 Zero-Day Initiative
ZDI-25-977: Delta Electronics ASDA-Soft PAR File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics ASDA-Soft. User interaction is required... 30/10/2025 Zero-Day Initiative
ZDI-25-976: Delta Electronics ASDA-Soft PAR File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics ASDA-Soft. User interaction is required... 30/10/2025 Zero-Day Initiative
ZDI-25-975: X.Org Server XkbSetCompatMap Numeric Truncation Error Privilege Escalation Vulnerability This vulnerability allows local attackers to escalate privileges on affected installations of X.Org Server. An attacker must first obtain the... 30/10/2025 Zero-Day Initiative
ZDI-25-974: X.Org Server XkbRemoveResourceClient Use-After-Free Privilege Escalation Vulnerability This vulnerability allows local attackers to escalate privileges on affected installations of X.Org Server. An attacker must first obtain the... 30/10/2025 Zero-Day Initiative
ZDI-25-973: X.Org Server present_create_notifies Use-After-Free Privilege Escalation Vulnerability This vulnerability allows local attackers to escalate privileges on affected installations of X.Org Server. An attacker must first obtain the... 30/10/2025 Zero-Day Initiative
ZDI-25-972: Krita TGA File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability This vulnerability allows remote attackers to execute arbitrary code on affected installations of Krita. User interaction is required to exploit... 28/10/2025 Zero-Day Initiative
ZDI-25-971: Delta Electronics DIAScreen DPA File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics DIAScreen. User interaction is required... 28/10/2025 Zero-Day Initiative
ZDI-25-970: Delta Electronics DIAScreen DPA File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics DIAScreen. User interaction is required... 28/10/2025 Zero-Day Initiative
