Lucene search
K

33 matches found

RedhatCVE
RedhatCVE
added 2026/06/07 5:3 a.m.10 views

CVE-2026-11147

An use after free flaw was found in the WebML component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=501731689...

8.8CVSS5.4AI score0.00354EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2026/06/05 2:0 p.m.10 views

Chromium: CVE-2026-11147 Use after free in WebML

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS5.4AI score0.00354EPSS
Exploits0
Circl
Circl
added 2026/06/05 7:1 a.m.9 views

CVE-2026-11147

creationtimestamp| type| source ---|---|--- 2026-06-05 07:01:20+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mnjkx645qb2r 2026-06-05 13:24:15+00:00| seen| https://infosec.exchange/users/cR0w/statuses/116697713800926918 2026-06-07 18:00:00+00:00| seen|...

8.8CVSS5.3AI score0.00354EPSS
Exploits0References4
NVD
NVD
added 2026/06/04 11:17 p.m.6 views

CVE-2026-11147

Use after free in WebML in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS0.00354EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/09 10:9 a.m.8 views

CVE-2019-11147

Insufficient access control in hardware abstraction driver for MEInfo software for IntelR CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.0, 14.0.10; TXEInfo software for IntelR TXE before versions 3.1.70 and 4.0.20; INTEL-SA-00086 Detection Tool version 1.2.7.0 or before;...

7.8CVSS7.1AI score0.00377EPSS
Exploits0References1
OSV
OSV
added 2025/09/29 10:15 a.m.4 views

DEBIAN-CVE-2025-11147

Reflected cross-site scripting XSS in Apt-Cacher-NG v3.2.1. The vulnerability allows malicious scripts XSS to be executed in “/html/.html”...

5.4CVSS4.8AI score0.00164EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/09/29 10:15 a.m.5 views

CVE-2025-11147

Reflected cross-site scripting XSS in Apt-Cacher-NG v3.2.1. The vulnerability allows malicious scripts XSS to be executed in “/html/.html”...

5.4CVSS5.8AI score0.00164EPSS
Exploits0References2
Circl
Circl
added 2025/09/29 9:56 a.m.5 views

CVE-2025-11147

creationtimestamp| type| source ---|---|--- 2025-09-29 09:56:29+00:00| seen| Telegram/q8KwOg9iKnetYlSdRIom8jtJP0HSh4DcfwiV2v0KYh96II...

5.4CVSS4.8AI score0.00164EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/09/29 9:26 a.m.5 views

CVE-2025-11147

Reflected cross-site scripting XSS in Apt-Cacher-NG v3.2.1. The vulnerability allows malicious scripts XSS to be executed in “/html/.html”...

5.4CVSS4.8AI score0.00164EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 4:9 p.m.6 views

CVE-2020-11147

Use after free issue in audio modules while removing and freeing objects during list iteration due to incorrect usage of macro in Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile...

6.7CVSS7.6AI score0.00152EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.21 views

Linux Distros Unpatched Vulnerability : CVE-2017-11147

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In PHP before 5.6.30 and 7.x before 7.0.15, the PHAR archive handler could be used by attackers supplying malicious archive files to crash the PHP interpreter o...

9.1CVSS6.8AI score0.0471EPSS
Exploits1References2
NVD
NVD
added 2025/01/23 5:15 p.m.20 views

CVE-2024-11147

ECOVACS robot lawnmowers and vacuums use a deterministic root password generated based on model and serial number. An attacker with shell access can login as root...

7.6CVSS0.00393EPSS
Exploits1References3
Circl
Circl
added 2024/03/15 2:52 p.m.6 views

CVE-2019-11147

creationtimestamp| type| source ---|---|--- 2024-03-15 14:52:15+00:00| seen| https://t.me/ctinow/208816...

7.8CVSS8AI score0.00377EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 4:43 a.m.5 views

SUSE CVE-2017-11147

In PHP before 5.6.30 and 7.x before 7.0.15, the PHAR archive handler could be used by attackers supplying malicious archive files to crash the PHP interpreter or potentially disclose information due to a buffer over-read in the pharparsepharfile function in ext/phar/phar.c...

4.8CVSS8.8AI score0.0471EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.44 views

Ubuntu: Security Advisory (USN-3382-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.1AI score0.07511EPSS
Exploits6References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.37 views

SUSE: Security Advisory (SUSE-SU-2017:2317-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS8.5AI score0.07495EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.35 views

SUSE: Security Advisory (SUSE-SU-2017:2522-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.7AI score0.07495EPSS
Exploits2References12
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.39 views

SUSE: Security Advisory (SUSE-SU-2017:2303-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS8.4AI score0.08255EPSS
Exploits2References2
CVE
CVE
added 2021/02/22 6:25 a.m.88 views

CVE-2020-11147

CVE-2020-11147 affects Snapdragon Compute, Snapdragon Industrial IOT, and Snapdragon Mobile: a use-after-free in audio modules caused by incorrect macro usage during list iteration when removing/freeing objects. Root cause is the macro misuse leading to freeing objects while iterating. Documented...

6.7CVSS7AI score0.00152EPSS
Exploits0References1Affected Software1
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.52 views

Huawei EulerOS: Security Advisory for php (EulerOS-SA-2019-2221)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.2AI score0.35438EPSS
Exploits15References2
Rows per page
Query Builder