Zero-day Exploit - Attack Type

Threat entity extracted from intelligence sources

Frequency
2721
occurrences
First Seen
October 24, 2025
Last Seen
July 17, 2026

Zero-day Exploit is a attack_type tracked across 50 threat clusters and 2721 intelligence report mentions on ThreatCluster. First observed October 24, 2025; most recent activity July 17, 2026.

Related Threat Clusters

  • Google Addresses Unreported Chrome Zero-Day Vulnerability

    Google has patched a zero-day vulnerability in Chrome that lacks a CVE identifier. The details of the vulnerability, including the component affected and the identity of the reporter, remain unclear. Users of the Chrome…

    1 article · Updated December 11, 2025
  • Google Addresses Eighth Chrome Zero-Day Vulnerability in 2025

    Google has issued emergency updates to address the eighth zero-day vulnerability in Chrome for 2025. The flaw, identified as 466192044, was actively exploited in the wild, prompting the company to roll out fixes for…

    45 articles · Updated December 11, 2025
  • Apple Fixes Zero-Day Vulnerability in Software Update

    Apple has released an urgent update to address a Zero Day vulnerability affecting its devices. Users are advised to update their software immediately to protect against potential exploits. This vulnerability was…

    5 articles · Updated February 19, 2026
  • Cisco Fixes Critical AsyncOS Vulnerability Under Attack

    Cisco has addressed a maximum-severity vulnerability in AsyncOS, tracked as CVE-2025-20393, which has been actively exploited for at least a month. The flaw affects Secure Email Gateway (SEG) and Secure Email and Web…

    11 articles · Updated January 15, 2026
  • CISA Directs Agencies to Address Gogs RCE Vulnerability Exploited in Zero-Day Attacks

    The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has mandated that government agencies secure their systems against a critical Gogs vulnerability, tracked as CVE-2025-8110. This remote code execution…

    6 articles · Updated January 12, 2026
  • Cisco Addresses AsyncOS Zero-Day Exploited by Threat Actors

    Cisco has released fixes for CVE-2025-20393, a zero-day vulnerability in AsyncOS. This vulnerability has been exploited by suspected Chinese threat actors since November 2025, affecting users of Cisco's AsyncOS software.

    3 articles · Updated January 16, 2026
  • Critical 0-Day RCE Flaw in Networking Devices Exposes 70,000 Hosts

    A critical remote code execution vulnerability, tracked as CVE-2025-54322, has been identified in networking devices, allowing attackers to gain complete control over affected systems without authentication. Over 70,000…

    4 articles · Updated December 29, 2025
  • Data Breach at University of Phoenix Due to Oracle EBS Zero-Day Exploit

    The University of Phoenix reported a data breach on November 21, 2025, resulting from the exploitation of a zero-day vulnerability (CVE-2025-61882) in Oracle EBS. This flaw allowed threat actors to execute remote code…

    2 articles · Updated December 8, 2025
  • Critical Zero-Day Vulnerability CVE-2025-14733 Exploited in WatchGuard Firewalls

    A critical zero-day vulnerability, CVE-2025-14733, has been exploited in WatchGuard Firebox firewall appliances. Network administrators are facing significant challenges as they work to secure their systems against this…

    4 articles · Updated December 19, 2025
  • APT28 Exploits MSHTML Zero-Day Vulnerability in Windows

    APT28 has actively exploited a zero-day vulnerability in MSHTML affecting all Windows versions, which has a CVSS score of 8.8. The vulnerability allows for security bypass and poses significant risks to users. A patch…

    4 articles · Updated March 2, 2026

Recent Intelligence Reports

  • CVE-2026-15409 — nvd.nist.gov · July 17, 2026
  • Zero-Day Initiative (ZDI) discovered and reported the vulnerability — www.zerodayinitiative.com · July 17, 2026
  • Mitiga Blog News Jul 16, 2026 What is the Spring4Shell exploit? An overview of the Spring vulnerability mitiga.io Open source — www.mitiga.io · July 17, 2026
  • CVE-2026-7304 — nvd.nist.gov · July 17, 2026
  • CVE-2026-7301 — nvd.nist.gov · July 17, 2026
  • Critical 7-Zip Vulnerability Fixed in Version 26.02 found — Guru3D · July 17, 2026
  • Oracle Linux 9 ELSA-2026-500004 Kernel Important DoS CVE-2026 — Linuxsecurity · July 17, 2026
  • 7 — Gbhackers · July 17, 2026

CVSS v3.1 Breakdown