Latest zero-days Total: 405, in 2018: Zero-days 29, candidates: 10

Privilege escalation in Windows kernel
CVE-2018-8611

This vulnerability was reported to Microsoft by Kaspersky Lab. It is believed it was used by FruityArmor and SandCat APT groups against companies in the Middle East and Africa.

Multiple vulnerabilities in Adobe Flash Player
CVE-2018-15982

Vulnerability exploitation was spotted by several security companies. The attack was detected on November 29, 2018 and seems to be executed by a Ukrainian APT group UA-APT.

360 Core Security dubbed the attack "Operation Poison Needles".

Privilege escalation in Windows Win32k.sys driver
CVE-2018-8589

The vulnerability was privately reported to Microsoft by Kaspersky Lab.

Denial of service in Suricata
CVE-2018-18956

According to MITRE statement, the vulnerability has been exploited in the wild in November 2018.

Vulnerability Scanning SaaS

Vulnerability scanning SaaS service is online 3-rd generation vulnerability scanner with scheduled assessments and vulnerability subscription. You can use service to check security of your network perimeter.