Latest zero-days Total: 436, in 2020: Zero-days 2, candidates: 0

Remote code execution in Mozilla Firefox and Firefox ESR

The vulnerability was reported by Qihoo 360 ATA researchers.

Privilege escalation in Microsoft Windows

This vulnerability was reported by Anton Ivanov and Alexey Kulaev of Kaspersky Lab. This vulnerability was used in Operation WizardOpium campaign against Korean users.