CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

25 matches found

CVE-2026-10991

An use after free flaw was found in the V8 component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=503553614...

8.8CVSS5.4AI score0.0008EPSS

Exploits0References5

Microsoft CVE•added 2 days ago•6 views

Chromium: CVE-2026-10991 Use after free in V8

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS5.4AI score0.0008EPSS

Exploits0

Tenable Nessus•added 2 days ago•4 views

Linux Distros Unpatched Vulnerability : CVE-2026-10991

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitra...

8.8CVSS6.2AI score0.0008EPSS

Exploits0References2

OSV•added 3 days ago•3 views

DEBIAN-CVE-2026-10991

Use after free in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6AI score0.0008EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 11:14 a.m.•3 views

CVE-2016-10991

The imdb-widget plugin before 1.0.9 for WordPress has Local File Inclusion...

7.5CVSS7.1AI score0.00599EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-10991

Malware in sbrugna...

6.8CVSS6.4AI score0.00789EPSS

Exploits0References2

Cvelist•added 2025/09/30 12:8 a.m.•4 views

CVE-2025-10991 Root Access via UART

The attacker may obtain root access by connecting to the UART port and this vulnerability requires the attacker to have the physical access to the device. This issue affects Tapo D230S1 V1.20: before 1.2.2 Build 20250907...

7CVSS0.00028EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 5:38 p.m.•1 views

CVE-2020-10991

Mulesoft APIkit through 1.3.0 allows XXE because of validation/RestXmlSchemaValidator.java...

9.8CVSS6.9AI score0.00364EPSS

Exploits1References1

Circl•added 2025/05/06 2:49 p.m.•7 views

CVE-2025-10991

creationtimestamp| type| source ---|---|--- 2025-05-06 14:49:58+00:00| seen| https://gist.github.com/chrispatrick/ef9adba1d09172543266af24c83130a8...

7CVSS4.8AI score0.00028EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 4:58 a.m.•3 views

CVE-2024-10991

A vulnerability, which was classified as critical, has been found in Codezips Hospital Appointment System 1.0. This issue affects some unknown processing of the file /editBranchResult.php. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The exploi...

9.8CVSS7.4AI score0.00106EPSS

Exploits1References1

Vulnrichment•added 2024/11/08 5:0 a.m.•11 views

CVE-2024-10991 Codezips Hospital Appointment System editBranchResult.php sql injection

7.5CVSS7.5AI score0.00106EPSS

Exploits1References4

Cvelist•added 2024/11/08 5:0 a.m.•13 views

CVE-2024-10991 Codezips Hospital Appointment System editBranchResult.php sql injection

7.5CVSS0.00106EPSS

Exploits1References4

Check Point Advisories•added 2020/03/04 12:0 a.m.•2 views

Advantech WebAccess Buffer Overflow (CVE-2019-10991)

A stack-based buffer overflow vulnerability exists in Advantech WebAccess. The vulnerability is due to a lack of boundary checks while copying user-supplied data into a stack-based buffer within giffconv.exe. A remote, unauthenticated attacker could exploit this vulnerability by sending a...

7.5CVSS9.6AI score0.22161EPSS

Exploits0

NVD•added 2019/09/17 3:15 p.m.•10 views

CVE-2016-10991

The imdb-widget plugin before 1.0.9 for WordPress has Local File Inclusion...

7.5CVSS7.7AI score0.00599EPSS

Exploits0References2

CVE•added 2019/09/17 2:31 p.m.•33 views

CVE-2016-10991

The CVE-2016-10991 entry concerns the WordPress plugin imdb-widget (before version 1.0.9) and is affected by a Local File Inclusion (LFI) vulnerability. The connected documents consistently describe the same issue across multiple sources (NVD, Red Hat, CVE lists, WPVulnDB) with the vulnerable com...

7.5CVSS7.6AI score0.00599EPSS

Exploits0References2Affected Software1

Prion•added 2019/06/28 9:15 p.m.•15 views

Heap overflow

In WebAccess/SCADA Versions 8.3.5 and prior, multiple heap-based buffer overflow vulnerabilities are caused by a lack of proper validation of the length of user-supplied data. Exploitation of these vulnerabilities may allow remote code execution. Note: A different vulnerability than CVE-2019-1099...

7.5CVSS9.9AI score0.22161EPSS

Exploits0References3Affected Software1

CVE•added 2019/06/28 8:25 p.m.•80 views

CVE-2019-10991

Insight: CVE-2019-10991 corresponds to a stack-based buffer overflow in Advantech WebAccess/SCADA (and related WebAccess products) prior to version 8.3.6 where user-supplied data length is not properly validated before copying into a fixed-size buffer, enabling remote code execution. Connected ad...

9.8CVSS10AI score0.22161EPSS

Exploits0References8Affected Software1

Cvelist•added 2018/05/14 2:0 p.m.•12 views

CVE-2018-10991

...

Exploits0

CVE•added 2018/05/14 2:0 p.m.•36 views

CVE-2018-10991

This CVE-2018-10991 entry is rejected/not used; reference CVE-2018-10990 instead.

7.8AI score

Exploits0

Prion•added 2018/03/30 8:29 a.m.•11 views

Heap overflow

On Samsung mobile devices with M6.0 and N7.x software, a heap overflow in the sensorhub binder service leads to code execution in a privileged process, aka SVE-2017-10991...

10CVSS9.6AI score0.01074EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by