We research, we share, we empower.
Aretiq AI is an LLM-augmented security research company focused on automated binary and source code auditing.
Research.
In-depth N-day vulnerability analysis — root cause, patch diff, detection, and proof-of-concept.
CVE-2026-3593 — ISC BIND 9 DNS-over-HTTPS HTTP/2 SETTINGS Use-After-Free
1. Overview A use-after-free vulnerability exists in ISC BIND 9’s DNS-over-HTTPS (DoH) implementation. When a DoH response has been sent, the …
CVE-2026-8206 — Themeum Kirki WordPress Plugin Password Reset Email Redirect Privilege Escalation
1. Overview A vulnerability exists in the Kirki – Freeform Page Builder, Website Builder & Customizer plugin for WordPress, in the password reset …
CVE-2026-48827 — Apache MINA SSHD sshd-git Path Traversal Info Disclosure
1. Overview A path traversal vulnerability exists in the Apache MINA SSHD sshd-git module, which provides Git-over-SSH server functionality. The …
Discoveries.
Original 0-day vulnerabilities discovered by Aretiq AI. We follow responsible disclosure — advisories are published only after vendors have had the opportunity to release patches. Read our Disclosure Policy.
Discoveries will be published here as advisories are released.
Contact us.
Interested in working with us or learning more? Reach out.