zero-day 32

• Gogs Zero-Day RCE Lets Any Authenticated User Execute Arbitrary Code May 28, 2026
• KnowledgeDeliver LMS Zero-Day Exploited to Deploy Godzilla Web Shell and Cobalt Strike May 25, 2026
• LiteSpeed cPanel Plugin CVE-2026-48172 Actively Exploited for Root Privilege Escalation May 23, 2026
• Reaper macOS Malware and Two Microsoft Defender Zero-Days Exploited in the Wild May 22, 2026
• Windows Zero-Day Barrage: YellowKey, GreenPlasma, and MiniPlasma Disclosed Post-Patch Tuesday May 19, 2026
• DirtyDecrypt PoC Published for Patched Linux Kernel LPE CVE-2026-31635 May 19, 2026
• MiniPlasma Windows Zero-Day Grants SYSTEM Privileges on Fully Patched Systems May 18, 2026
• Pwn2Own Berlin 2026: $1.3M Paid for 47 Zero-Days in Windows, Linux, VMware, and AI Products May 17, 2026
• Pwn2Own Berlin 2026 Day 2: 15 Zero-Days in Windows 11, Exchange, and RHEL Earn $385K May 15, 2026
• Microsoft Exchange CVE-2026-42897 Zero-Day Exploited via Crafted Email May 14, 2026
• Cisco SD-WAN CVE-2026-20182 Added to CISA KEV; Sixth Exploited SD-WAN Zero-Day in 2026 May 14, 2026
• Researcher Drops YellowKey BitLocker Bypass and GreenPlasma Windows EoP Zero-Days May 14, 2026
• Google Project Zero Demonstrates 0-Click Exploit Chain for Pixel 10 May 13, 2026
• Dirty Frag Linux Zero-Day Gives Root on All Major Distributions May 8, 2026
• PAN-OS Zero-Day CVE-2026-0300 Enables Unauthenticated RCE via Captive Portal May 6, 2026
• Palo Alto PAN-OS RCE Zero-Day CVE-2026-0300 Actively Exploited May 5, 2026
• MetInfo CMS CVE-2026-29014 Under Active Exploitation — Unauthenticated RCE (CVSS 9.8) May 5, 2026
• ScarCruft Compromises Gaming Platform to Deploy BirdCall Backdoor on Android and Windows May 5, 2026
• Weaver E-cology CVE-2026-22679 Actively Exploited — CVSS 9.8 Unauthenticated RCE via Debug API May 5, 2026
• 'Copy Fail' Linux Flaw Hits CISA KEV as Active Exploitation Begins May 4, 2026
• Critical cPanel and WHM Auth Bypass CVE-2026-41940 Exploited as Zero-Day Since February Apr 30, 2026
• CISA Adds Actively Exploited ConnectWise ScreenConnect and Windows Flaws to KEV Apr 29, 2026
• Incomplete Windows Patch Exposes Systems to Zero-Click APT28 Attack Vector Apr 27, 2026
• Microsoft Defender Zero-Day Exploited to Dump NTLM Hashes and Gain SYSTEM Privileges Apr 23, 2026
• Over 1,300 SharePoint Servers Still Exposed to Actively Exploited Spoofing Zero-Day Apr 21, 2026
• Windows Zero-Days Leaked, Now Actively Exploited for SYSTEM Privileges Apr 16, 2026
• CVE-2026-33032 (MCPwn): Critical Nginx UI Authentication Bypass Actively Exploited Apr 15, 2026
• April 2026 Patch Tuesday: SharePoint Zero-Day Among 167 CVEs Fixed Apr 14, 2026
• ShowDoc RCE Flaw CVE-2025-0520 Actively Exploited on Unpatched Servers Apr 13, 2026
• Anthropic Restricts Mythos Preview After Model Autonomously Exploits Zero-Days in Major OS and Browsers Apr 13, 2026
• Adobe Patches Actively Exploited Acrobat Reader RCE — CVE-2026-34621 Apr 11, 2026
• Adobe Reader Zero-Day Exploited via Malicious PDFs Since December 2025 Apr 9, 2026