chromedriver-149.0.7827.114-1.1 on GA media (moderate)

chromedriver-149.0.7827.114-1.1 on GA media Announcement ID: openSUSE-SU-2026:11029-1 Rating: moderate Cross-References: CVE-2026-12007 CVE-2026-12008 CVE-2026-12009 CVE-2026-12010 CVE-2026-12011 CVE-2026-12012 CVE-2026-12013 CVE-2026-12014 CVE-2026-12015 CVE-2026-12016 CVE-2026-12017...

Linux Distros Unpatched Vulnerability : CVE-2026-12023

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in GPU in Google Chrome on Mac prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform ...

CVE-2026-12023

Use after free in GPU in Google Chrome on Mac prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

CVE-2026-12023

Use after free in GPU in Google Chrome on Mac prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

CVE-2026-12023

creationtimestamp| type| source ---|---|--- 2026-06-11 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260612 2026-06-12 14:00:32+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mo3vn7c5lc26...

CVE-2020-12023

Philips IntelliBridge Enterprise IBE, Versions B.12 and prior, IntelliBridge Enterprise system integration with SureSigns VS4, EarlyVue VS30 and IntelliVue Guardian IGS. Unencrypted user credentials received in the IntelliBridge Enterprise IBE are logged within the transaction logs, which are...

CVE-2025-12023

The ELEX WordPress HelpDesk & Customer Ticketing System plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ehcrmrestoredata function in all versions up to, and including, 3.3.1. This makes it possible for authenticated attackers, with...

CVE-2025-12023

creationtimestamp| type| source ---|---|--- 2025-11-21 05:57:25+00:00| seen| https://bsky.app/profile/potato.software/post/3m64lyh4bbc2j...

CVE-2024-12023

The FULL – Cliente plugin for WordPress is vulnerable to SQL Injection via the 'formId' parameter in all versions 3.1.5 to 3.1.25 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated...

CVE-2024-12023

creationtimestamp| type| source ---|---|--- 2025-05-02 04:15:43+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/14431 2025-05-02 07:34:51+00:00| seen| https://t.me/cvedetector/24324...

CVE-2024-12023 FULL – Cliente 3.1.5 - 3.1.25 - Authenticated (Subscriber+) SQL Injection

The FULL – Cliente plugin for WordPress is vulnerable to SQL Injection via the 'formId' parameter in all versions 3.1.5 to 3.1.25 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated...

CVE-2024-12023 FULL – Cliente 3.1.5 - 3.1.25 - Authenticated (Subscriber+) SQL Injection

The FULL – Cliente plugin for WordPress is vulnerable to SQL Injection via the 'formId' parameter in all versions 3.1.5 to 3.1.25 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated...

WordPress FULL – Cliente plugin <= 3.1.25 - Authenticated (Subscriber+) SQL Injection

Authenticated Subscriber+ SQL Injection vulnerability discovered by kr0d in WordPress Plugin FULL Customer versions = 3.1.25...

Security Bulletin: Vulnerabilities in jackson-databind affect IBM watsonx.data

Summary FasterXML jackson-databind has multiple vulnerabilities including the possibility of remote attackers executing arbitrary code on the system. These can affect IBM watsonx.data. Vulnerability Details CVEID:CVE-2017-15095 DESCRIPTION: Jackson Library could allow a remote attacker to execute...

Ubuntu 16.04 ESM : Jackson Databind vulnerabilities (USN-4813-1)

The remote Ubuntu 16.04 ESM host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4813-1 advisory. It was discovered that Jackson Databind incorrectly handled deserialization. An attacker could possibly use this issue to obtain sensitive information...

Security Bulletin: IBM Security Guardium Insights is affected by Components with known vulnerabilities

Summary IBM Security Guardium Insights has addressed the following vulnerabilities. Vulnerability Details CVEID: CVE-2017-15095 DESCRIPTION: Jackson Library could allow a remote attacker to execute arbitrary code on the system, caused by a deserialization flaw in the readValue method of the...

USN-4813-1: Jackson Databind vulnerabilities

It was discovered that Jackson Databind incorrectly handled deserialization. An attacker could possibly use this issue to obtain sensitive information. CVE-2018-11307, CVE-2019-12086, CVE-2019-12814 It was discovered that Jackson Databind incorrectly handled deserialization. An attacker could...

ai.agnos:reactive-sparql_2.12 (>=0.3.0 <=0.3.1), ai.databand:dbnd-agent (>=0.42.1 <=0.80.6) +5692 more potentially affected by CVE-2018-12023 via com.fasterxml.jackson.core:jackson-databind (>=2.7.0 <=2.7.9.3)

com.fasterxml.jackson.core:jackson-databind MAVEN version =2.7.0, =0.3.0, =0.42.1, =0.42.1, =0.40.2, =0.42.1, =0.2, =0.8.0, =3.3.3, =0.0.1, =0.0.2, =0.0.3 - at.ac.ait.lablink.clients:sync =0.0.1 - at.ac.ait.lablink:core =0.0.1 and more Source cves: CVE-2018-12023 Source advisory:...

ai.snips:play-mongo-bson_2.12 (>=0.5 <=0.5.1), al.bluecryst:bluecrystal (>=2.3.0 <=2.3.4) +5075 more potentially affected by CVE-2018-12023 via com.fasterxml.jackson.core:jackson-databind (>=2.8.0 <=2.8.11.1)

com.fasterxml.jackson.core:jackson-databind MAVEN version =2.8.0, =0.5, =2.3.0, =1.5.6, =4.2.1, =4.4.1, =1.0.0.RELEASE, =2.5.0-beta.0, =3.5.4-rc.0, =3.5.9, =3.5.9, =3.5.15, =3.5.15, =3.5.21 and more Source cves: CVE-2018-12023 Source advisory: OSV:GHSA-6WQP-V4V6-C87C...

CVE-2020-12023

Philips IntelliBridge Enterprise (IBE) prior to B.13 logs unencrypted user credentials in transaction logs, which are protected behind a login-based admin portal. The vulnerability affects IBE versions B.12 and earlier and stems from logging the credentials exchanged with SureSigns, EarlyVue, and...