#zdi
11 articles
Between 18 April and 2 May 2026, ZCyberNews published 11 articles under the zdi tag, covering two critical and eight high-severity vulnerabilities alongside one low-severity issue. The most notable CVEs include CVE-2026-41265 (CVSS 9.8), CVE-2026-22898 and CVE-2026-6406 (both CVSS 8.8), CVE-2026-41276 (CVSS 8.1), and CVE-2026-25203 (CVSS 7.8). These flaws affect sectors such as software development, technology, critical infrastructure, digital signage, and energy on a global scale.
CRITICALFlowise RCE Vulnerability CVE-2026-41265 Carries CVSS 9.8
CVE-2026-41265 in Flowise Airtable_Agent allows unauthenticated remote code execution with CVSS 9.8. ZDI advisory details code injection in default installations.
HIGHOracle VirtualBox Race Condition Lets Attackers Escalate Privileges
CVE-2026-35230: A race condition in VirtualBox's SoundBlaster 16 emulation allows local attackers with high-privileged guest access to escalate privileges. CVSS 7.5.
HIGHFlowise Auth Bypass CVE-2026-41276 Lets Attackers Reset Passwords
CVE-2026-41276 (CVSS 8.1) in Flowise AccountService resetPassword lets unauthenticated attackers bypass authentication. ZDI advisory warns no auth required.
HIGHFoxit PDF Reader CVE-2026-5943 Use-After-Free RCE Exploited via
CVE-2026-5943: A use-after-free in Foxit PDF Reader's AcroForm annotation handling allows unauthenticated RCE (CVSS 7.8). Requires user to open a malicious PDF.
LOWFoxit PDF Reader Use-After-Free Leaks Memory via AcroForm Signatures
CVE-2026-5942: A use-after-free in Foxit PDF Reader's AcroForm signature handling lets attackers read process memory. CVSS 3.3. User must open a malicious file.
HIGHDocker Desktop ECI Flaw CVE-2026-6406 Lets Attackers Escalate
CVE-2026-6406 (CVSS 8.8) in Docker Desktop's Enhanced Container Isolation allows local attackers with low-privileged code execution inside a container to escalate privileges on…
HIGHSiemens SINEC NMS Authentication Bypass CVE-2026-24032 Gets 7.3 CVSS
ZDI disclosed CVE-2026-24032, a 7.3-CVSS authentication bypass in Siemens SINEC NMS that requires no authentication to exploit. Affects industrial network management systems.
HIGHSamsung MagicINFO 9 Server Local Privilege Escalation Vulnerability Patched
CVE-2026-25203, a CVSS 7.8 local privilege escalation flaw in Samsung MagicINFO 9 Server, allows authenticated attackers to gain SYSTEM privileges by exploiting incorrect default permissions on a service.
HIGHAvast Premium Security Driver Vulnerability Enables Local Privilege Escalation
CVE-2026-5424, a flaw in Avast Premium Security's self-protection driver, allows local attackers to escalate to SYSTEM privileges. The Zero Day Initiative assigned a CVSS score of 7.8 to the vulnerability.
HIGHLinux Kernel ETS Scheduler Race Condition Enables Local Privilege Escalation
A race condition vulnerability (CVE-2025-71066) in the Linux kernel's ETS scheduler can allow local attackers to escalate privileges to root, earning a CVSS score of 7.5 from the Zero Day Initiative.
CRITICALQNAP TS-453E QVRPro Exposed Method Enables Remote Code Execution
A critical vulnerability (CVE-2026-22898) in QNAP TS-453E QVRPro allows network-adjacent attackers to execute arbitrary code without authentication, receiving a CVSS score of 8.8 from the Zero Day Initiative.
Stay Updated
Get the latest cybersecurity news delivered to your inbox.