Fedora: Security Advisory (FEDORA-2026-a48b5f36ec)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2026-2321 vulnerabilities

Vulnerabilities for packages: chromium...

CVE-2026-2321 vulnerabilities

Vulnerabilities for packages: chromium...

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2026:0052-1 Rating: important References: 1258116 1258185 1258199 Cross-References: CVE-2026-2313 CVE-2026-2314 CVE-2026-2315 CVE-2026-2316 CVE-2026-2317 CVE-2026-2318 CVE-2026-2319 CVE-2026-2320 CVE-2026-2321...

Debian dsa-6135 : chromium - security update

The remote Debian 12 / 13 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-6135 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6135-1 [email protected]...

chromedriver-145.0.7632.45-1.1 on GA media (moderate)

chromedriver-145.0.7632.45-1.1 on GA media Announcement ID: openSUSE-SU-2026:10201-1 Rating: moderate Cross-References: CVE-2026-2313 CVE-2026-2314 CVE-2026-2315 CVE-2026-2316 CVE-2026-2317 CVE-2026-2318 CVE-2026-2319 CVE-2026-2320 CVE-2026-2321 CVE-2026-2322 CVE-2026-2323 CVE-2026-2441 Affected...

CVE-2026-2321

An use after free flaw was found in the Ozone component of the Chromium browser...

CVE-2026-2321

creationtimestamp| type| source ---|---|--- 2026-02-11 21:58:15+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116054234584233655 2026-02-12 14:10:30+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3meo6aknzuu2e 2026-02-13 15:14:27+00:00| seen|...

CVE-2026-2321

Use after free in Ozone in Google Chrome prior to 145.0.7632.45 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

DEBIAN-CVE-2026-2321

Use after free in Ozone in Google Chrome prior to 145.0.7632.45 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

CVE-2026-2321

Use after free in Ozone in Google Chrome prior to 145.0.7632.45 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

CVE-2026-2321

Use after free in Ozone in Google Chrome prior to 145.0.7632.45 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

EUVD-2026-2321

In the Linux kernel, the following vulnerability has been resolved: hwmon: ibmpex fix use-after-free in high/low store The ibmpexhighlowstore function retrieves driver data using devgetdrvdata and uses it without validation. This creates a race condition where the sysfs callback can be invoked...

CVE-2019-2321

Incorrect length used while validating the qsee log buffer sent from HLOS which could then lead to remap conflict in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT,...

CVE-2023-2321

The WPForms Google Sheet Connector WordPress plugin before 3.4.6, gsheetconnector-wpforms-pro WordPress plugin through 3.4.6 does not escape a parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as...

CVE-2025-2321

creationtimestamp| type| source ---|---|--- 2025-03-15 12:44:38+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/7681 2025-03-15 15:06:16+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lkgfmsfqlg2x 2025-03-15 15:17:12+00:00| seen| https://t.me/cvedetector/20...

CVE-2025-2321 274056675 springboot-openai-chatgpt addData logic error

A vulnerability was found in 274056675 springboot-openai-chatgpt e84f6f5 and classified as critical. Affected by this issue is some unknown functionality of the file /api/mjkj-chat/cgform-api/addData/. The manipulation of the argument chatUserID leads to business logic errors. The attack may be...

CVE-2025-2321

CVE-2025-2321 affects the 274056675 springboot-openai-chatgpt (commit e84f6f5). The vulnerability concerns the file /api/mjkj-chat/cgform-api/addData/ where manipulation of the chatUserID parameter triggers business logic errors. It is described as exploitable remotely, with the exploit disclosed...

CVE-2025-2321 274056675 springboot-openai-chatgpt addData logic error

A vulnerability was found in 274056675 springboot-openai-chatgpt e84f6f5 and classified as critical. Affected by this issue is some unknown functionality of the file /api/mjkj-chat/cgform-api/addData/. The manipulation of the argument chatUserID leads to business logic errors. The attack may be...

CVE-2024-2321

An incorrect authorization vulnerability exists in multiple WSO2 products, allowing protected APIs to be accessed directly using a refresh token instead of the expected access token. Due to improper authorization checks and token mapping, session cookies are not required for API access, potential...