Lucene search
K

37 matches found

Chainguard
Chainguard
added 2026/07/01 2:16 p.m.7 views

CVE-2026-10891 vulnerabilities

Vulnerabilities for packages: chromium...

8.8CVSS5.8AI score0.00325EPSS
Exploits0
Chainguard
Chainguard
added 2026/07/01 2:16 p.m.6 views

CVE-2025-10891 vulnerabilities

Vulnerabilities for packages: chromium...

8.8CVSS7.3AI score0.06608EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/06/06 2:53 a.m.9 views

SUSE CVE-2026-10891

Use after free in GFX in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

8.8CVSS5.6AI score0.00325EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2026/06/05 2:0 p.m.19 views

Chromium: CVE-2026-10891 Use after free in GFX

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS5.4AI score0.00325EPSS
Exploits0
Circl
Circl
added 2026/06/05 1:23 p.m.13 views

CVE-2026-10891

creationtimestamp| type| source ---|---|--- 2026-06-05 13:23:25+00:00| seen| https://infosec.exchange/users/cR0w/statuses/116697713800926918 2026-06-07 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260608 2026-06-07 18:00:00+00:00| seen|...

8.8CVSS5.3AI score0.00325EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/05 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2026-10891

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in GFX in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS5.6AI score0.00325EPSS
Exploits0References2
OSV
OSV
added 2026/06/04 11:16 p.m.7 views

DEBIAN-CVE-2026-10891

Use after free in GFX in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

8.8CVSS5.6AI score0.00325EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2025/09/29 12:0 a.m.5 views

Fedora: Security Advisory (FEDORA-2025-0b264b890c)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS6.8AI score0.06608EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/09/29 12:0 a.m.4 views

Fedora 41 : chromium (2025-0b264b890c)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-0b264b890c advisory. Update to 140.0.7339.207 CVE-2025-10890: Side-channel information leakage in V8 CVE-2025-10891: Integer overflow in V8 CVE-2025-10892: Integer...

9.1CVSS7.9AI score0.06608EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/09/27 12:0 a.m.3 views

Fedora 42 : chromium (2025-6d1ba4a93e)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-6d1ba4a93e advisory. Update to 140.0.7339.207 CVE-2025-10890: Side-channel information leakage in V8 CVE-2025-10891: Integer overflow in V8 CVE-2025-10892: Integer...

9.1CVSS7.9AI score0.06608EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/09/26 12:0 a.m.3 views

Fedora 43 : chromium (2025-c161defb4d)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-c161defb4d advisory. Update to 140.0.7339.207 CVE-2025-10890: Side-channel information leakage in V8 CVE-2025-10891: Integer overflow in V8 CVE-2025-10892: Integer...

9.1CVSS7.9AI score0.06608EPSS
Exploits0References4
NVD
NVD
added 2025/09/24 5:15 p.m.6 views

CVE-2025-10891

Integer overflow in V8 in Google Chrome prior to 140.0.7339.207 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS0.06608EPSS
Exploits0References2
CVE
CVE
added 2025/09/24 4:17 p.m.66 views

CVE-2025-10891

CVE-2025-10891 relates to an integer overflow in V8 of Google Chrome, prior to Chromium 140.0.7339.207, which could allow remote heap corruption via a crafted HTML page. The connected Fedora advisories show Chromium/CEF package updates shipping Chromium 140.0.7339.207 across FC41/FC42/FC43 editio...

8.8CVSS6.9AI score0.06608EPSS
Exploits0References2Affected Software1
Circl
Circl
added 2025/09/24 7:8 a.m.5 views

CVE-2025-10891

creationtimestamp| type| source ---|---|--- 2025-09-24 07:08:36+00:00| seen| https://www.acn.gov.it/portale/w/risolte-vulnerabilita-in-google-chrome-26 2025-09-30 11:42:17+00:00| seen| https://bsky.app/profile/getpokemon7.bsky.social/post/3m22gza3jks22 2026-04-06 17:00:00+00:00| seen|...

8.8CVSS7.3AI score0.06608EPSS
Exploits0References3
FreeBSD
FreeBSD
added 2025/09/23 12:0 a.m.8 views

chromium -- multiple security fixes

Chrome Releases reports: This update includes 4 security fixes: 430336833 High CVE-2025-10890: Side-channel information leakage in V8. Reported by Mate Marjanović SharpEdged on 2025-07-09 443765373 High CVE-2025-10891: Integer overflow in V8. Reported by Google Big Sleep on 2025-09-09 444048019...

9.1CVSS7.1AI score0.06608EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/09/04 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2018-10891

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in moodle before versions 3.5.1, 3.4.4, 3.3.7, 3.1.13. When a quiz question bank is imported, it was possible for the question preview that is...

7.5CVSS6.5AI score0.02122EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 3:41 a.m.9 views

CVE-2019-10891

An issue was discovered in D-Link DIR-806 devices. There is a command injection in function hnapmain, which calls system without checking the parameter that can be controlled by user, and finally allows remote attackers to execute arbitrary shell commands with a special HTTP header...

10CVSS8.4AI score0.19442EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/05 3:18 p.m.15 views

CVE-2020-10891

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.0.29478. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.9AI score0.04728EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.3 views

PT-2025-39217

Name of the Vulnerable Software and Affected Versions Chrome versions prior to 140.0.7339.207/208 Description A flaw exists in Google Chrome that could allow attackers to impact the system. The issue is a side-channel information leak within Chrome’s V8 engine. Recommendations Update to Chrome...

9.4CVSS6AI score0.00293EPSS
Exploits0References25
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.6 views

PT-2025-39219

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 140.0.7339.207 Description An integer overflow in the V8 JavaScript engine within Google Chrome could lead to heap corruption. This issue potentially allows a remote attacker to exploit the system through a...

10CVSS6.8AI score0.06608EPSS
Exploits0References33
Rows per page
Query Builder