Lucene search
K

67 matches found

Wolfi
Wolfi
added 4 days ago5 views

CVE-2026-11233 vulnerabilities

Vulnerabilities for packages: chromium...

4.7CVSS5.8AI score0.00177EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/06/07 5:13 a.m.10 views

CVE-2026-11233

An insufficient validation of untrusted input flaw was found in the FoldableAPIs component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=496088449...

8.7CVSS5.4AI score0.00177EPSS
Exploits0References5
Circl
Circl
added 2026/06/05 1:24 p.m.8 views

CVE-2026-11233

creationtimestamp| type| source ---|---|--- 2026-06-05 13:24:31+00:00| seen| https://infosec.exchange/users/cR0w/statuses/116697713800926918 2026-06-07 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260608 2026-06-07 18:00:00+00:00| seen|...

4.7CVSS5.3AI score0.00177EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-11233

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient policy enforcement in FoldableAPIs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to...

4.7CVSS5.4AI score0.00177EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/06/04 11:5 p.m.8 views

CVE-2026-11233

Insufficient policy enforcement in FoldableAPIs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. Chromium security severity: Low...

4.7CVSS5.5AI score0.00177EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/13 12:0 a.m.10 views

TencentOS Server 3: php:7.4 (TSSA-2026:0172)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2026:0172 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

9.8CVSS7.7AI score0.02286EPSS
Exploits10References14
Tenable Nessus
Tenable Nessus
added 2025/10/08 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2025-11233

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Starting from Rust 1.87.0 and before Rust 1.89.0, the tier 3 Cygwin target x8664-pc-cygwin didn't correctly handle path separators, causing the standard library...

6.3CVSS5.8AI score0.00482EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/10/01 4:49 p.m.6 views

CVE-2025-11233 Rust standard library didn't detect all path separators on Cygwin

Starting from Rust 1.87.0 and before Rust 1.89.0, the tier 3 Cygwin target x8664-pc-cygwin didn't correctly handle path separators, causing the standard library's Path API to ignore path components separated by backslashes. Due to this, programs compiled for Cygwin that validate paths could...

6.3CVSS6.5AI score0.00482EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/05/26 12:0 a.m.11 views

Fedora: Security Advisory (FEDORA-2024-3891a08c9e)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.8AI score0.02286EPSS
Exploits4References64
RedhatCVE
RedhatCVE
added 2025/05/22 5:24 p.m.6 views

CVE-2020-11233

Time-of-check time-of-use race condition While processing partition entries due to newly created buffer was read again from mmc without validation in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdrag...

7CVSS6.7AI score0.00132EPSS
Exploits0References1
Oracle linux
Oracle linux
added 2025/05/22 12:0 a.m.17 views

php security update

8.0.30-3 - Fix libxml streams use wrong content-type header when requesting a redirected resource CVE-2025-1219 - Fix Stream HTTP wrapper header check might omit basic auth header CVE-2025-1736 - Fix Stream HTTP wrapper truncate redirect location to 1024 bytes CVE-2025-1861 - Fix Streams HTTP...

6.3CVSS8.5AI score0.49336EPSS
Exploits12
AlmaLinux
AlmaLinux
added 2025/05/13 12:0 a.m.10 views

Moderate: php:8.2 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: Leak partial content of the heap through heap buffer over-read in mysqlnd CVE-2024-8929 php: Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233 php: Configuring ...

9.8CVSS7.5AI score0.02286EPSS
Exploits5References18
Tenable Nessus
Tenable Nessus
added 2025/05/13 12:0 a.m.9 views

RHEL 9 : php (RHSA-2025:7315)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:7315 advisory. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: host/secure cookie bypass due to...

8.2CVSS7.6AI score0.49336EPSS
Exploits10References23
Tenable Nessus
Tenable Nessus
added 2025/04/28 12:0 a.m.20 views

RHEL 9 : php:8.1 (RHSA-2025:4263)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:4263 advisory. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: Leak partial content of the heap...

9.8CVSS7.6AI score0.02286EPSS
Exploits5References19
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.7 views

Azure Linux 3.0 Security Update: php (CVE-2024-11233)

The version of php installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-11233 advisory. - In PHP versions 8.1. before 8.1.31, 8.2. before 8.2.26, 8.3. before 8.3.14, due to an error in...

8.2CVSS7.4AI score0.01618EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2025/01/29 3:58 p.m.19 views

USN-7157-3: PHP vulnerabilities

USN-7157-1 fixed vulnerabilities in PHP versions 7.4, 8.1, and 8.3. This update provides the corresponding updates for PHP version 7.0. Original advisory details: It was discovered that PHP incorrectly handled certain inputs when processed with convert.quoted-printable decode filters. An attacker...

9.8CVSS7.8AI score0.02286EPSS
Exploits3
CBLMariner
CBLMariner
added 2024/12/17 11:15 p.m.15 views

CVE-2024-11233 affecting package php for versions less than 8.3.14-1

CVE-2024-11233 affecting package php for versions less than 8.3.14-1. An upgraded version of the package is available that resolves this issue...

8.2CVSS6.8AI score0.01618EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/12/12 12:0 a.m.15 views

SUSE SLES15: apache2-mod_php7 / php7 / php7-bcmath / php7-bz2 / php7-calendar / etc (SUSE-SU-2024:4146-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:4146-1 advisory. - CVE-2024-11233: Single byte overread with convert.quoted-printable-decode filter bsc1233702. - CVE-2024-11234:...

8.2CVSS6.3AI score0.02286EPSS
Exploits3References10
Tenable Nessus
Tenable Nessus
added 2024/12/12 12:0 a.m.15 views

Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 : PHP vulnerabilities (USN-7157-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7157-1 advisory. It was discovered that PHP incorrectly handled certain inputs when processed with convert.quoted-printable decode filters...

9.8CVSS7.7AI score0.02286EPSS
Exploits4References6
Tenable Nessus
Tenable Nessus
added 2024/12/12 12:0 a.m.14 views

SUSE SLES15 / openSUSE 15 Security Update : php8 (SUSE-SU-2024:4136-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:4136-1 advisory. - CVE-2024-11233: Single byte overread with convert.quoted-printable-decode filter bsc1233702. - CVE-2024-11234:...

9.8CVSS7.4AI score0.02286EPSS
Exploits4References14
Rows per page
Query Builder