Lucene search
+L

137 matches found

wolfi
wolfi
added 2026/07/01 2:16 p.m.7 views

CVE-2026-4461 vulnerabilities

Vulnerabilities for packages: chromium...

8.8CVSS7.3AI score0.00281EPSS
Exploits0
circl
circl
added 2026/03/22 1:1 a.m.5 views

CVE-2026-4461

creationtimestamp| type| source ---|---|--- 2026-03-22 01:01:15+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhmduaeqde2s 2026-03-24 01:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/microsoft-edge-multiple-vulnerabilities20260324...

8.8CVSS7.8AI score0.00281EPSS
Exploits0References2
susecve
susecve
added 2026/03/22 12:25 a.m.8 views

SUSE CVE-2026-4461

Inappropriate implementation in V8 in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.9AI score0.00281EPSS
Exploits0References3
cve
cve
added 2026/03/20 1:34 a.m.15 views

CVE-2026-4461

CVE-2026-4461 affects Google Chrome’s V8 engine and Chrome/Chromium builds prior to 146.0.7680.153, where an inappropriate V8 implementation could allow a remote attacker to trigger heap corruption via a crafted HTML page. The issue is rated High severity (AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H, bas...

8.8CVSS5.8AI score0.00281EPSS
Exploits0References2Affected Software1
nessus
nessus
added 2026/03/20 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-4461

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in V8 in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML...

8.8CVSS7AI score0.00281EPSS
Exploits0References2
osv
osv
added 2026/02/01 12:0 a.m.4 views

DLA-4461-1 python-tornado - security update

Bulletin has no description...

7.5CVSS5.8AI score0.00403EPSS
Exploits0
euvd
euvd
added 2026/01/23 3:28 a.m.4 views

EUVD-2026-4461

GPT Academic streamdaas Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GPT Academic. Interaction with a malicious DAAS server is required to exploit this vulnerability but...

8.1CVSS6.6AI score0.007EPSS
Exploits0References3
redhatcve
redhatcve
added 2026/01/09 11:55 a.m.11 views

CVE-2018-4461

A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 12.1.1, macOS Mojave 10.14.2, tvOS 12.1.1, watchOS 5.1.2...

9.3CVSS6.2AI score0.01052EPSS
Exploits0References1
circl
circl
added 2025/10/30 9:52 p.m.9 views

CVE-2021-4461

creationtimestamp| type| source ---|---|--- 2025-10-30 21:52:26+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m4gx3w6gi42b 2025-11-04 21:02:32+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3m4tgnbv2dp26 2026-06-19 12:45:22+00:00| exploited|...

9.3CVSS5.8AI score0.00602EPSS
Exploits0References3
cvelist
cvelist
added 2025/10/30 9:16 p.m.14 views

CVE-2021-4461 Seeyon Zhiyuan OA Web Application System < 7.0 SP1 Authentication Bypass

Seeyon Zhiyuan OA Web Application System versions up to and including 7.0 SP1 improperly decode and parse the enc parameter in thirdpartyController.do. The decoded map values can influence session attributes without sufficient authentication/authorization checks, enabling attackers to assign a...

9.3CVSS0.00602EPSS
Exploits0References4
vulncheck_kev
vulncheck_kev
added 2025/10/30 12:0 a.m.13 views

VulnCheck KEV: CVE-2021-4461

Seeyon Zhiyuan OA Web Application System versions up to and including 7.0 SP1 improperly decode and parse the enc parameter in thirdpartyController.do. The decoded map values can influence session attributes without sufficient authentication/authorization checks, enabling attackers to assign a...

9.3CVSS5.8AI score0.00602EPSS
In wildExploits0References119
osv
osv
added 2025/09/15 1:11 a.m.1 views

ECHO-4461-1A57-8C26

Bulletin has no description...

5.7CVSS7AI score0.01231EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/21 8:57 p.m.11 views

CVE-2006-4461

Paessler IPCheck Server Monitor before 5.3.3.639/640 does not properly implement a "list of acceptable host IP addresses in the probe settings," which has unknown impact and attack vectors...

10CVSS7AI score0.01399EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/11 5:6 a.m.27 views

CVE-2025-4461

A vulnerability classified as problematic was found in TOTOLINK N150RT 3.4.0-B20190525. This vulnerability affects unknown code of the component Virtual Server Page. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public...

5.4CVSS6.7AI score0.005EPSS
Exploits1References1
vulnrichment
vulnrichment
added 2025/05/09 4:31 a.m.8 views

CVE-2025-4461 TOTOLINK N150RT Virtual Server Page cross site scripting

A vulnerability classified as problematic was found in TOTOLINK N150RT 3.4.0-B20190525. This vulnerability affects unknown code of the component Virtual Server Page. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public...

4.8CVSS3.7AI score0.005EPSS
Exploits1References5
cvelist
cvelist
added 2025/05/09 4:31 a.m.30 views

CVE-2025-4461 TOTOLINK N150RT Virtual Server Page cross site scripting

A vulnerability classified as problematic was found in TOTOLINK N150RT 3.4.0-B20190525. This vulnerability affects unknown code of the component Virtual Server Page. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public...

4.8CVSS0.005EPSS
Exploits1References5
cve
cve
added 2025/05/09 4:31 a.m.62 views

CVE-2025-4461

CVE-2025-4461 affects TOTOLINK N150RT (version 3.4.0-B20190525) via the Virtual Server Page component. Multiple connected sources confirm a cross-site scripting vulnerability caused by insufficient input filtering/escaping, enabling remote exploitation. The exploit has been disclosed publicly. PT...

5.4CVSS3.7AI score0.005EPSS
Exploits1References5Affected Software1
nessus
nessus
added 2025/03/03 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2011-4461

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Jetty 8.1.0.RC2 and earlier computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote...

5.3CVSS6.1AI score0.05044EPSS
Exploits1References2
nessus
nessus
added 2024/06/03 12:0 a.m.29 views

RHEL 6 : jetty-eclipse (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - jetty: hash table collisions CPU usage DoS oCERT-2011-003 CVE-2011-4461 Note that Nessus has not tested for this...

5.3CVSS7.3AI score0.05044EPSS
Exploits1References1
circl
circl
added 2024/01/29 8:41 a.m.6 views

CVE-2019-4461

creationtimestamp| type| source ---|---|--- 2024-01-29 08:41:18+00:00| seen| https://t.me/ctinow/175107...

5.4CVSS5.4AI score0.00561EPSS
Exploits0References1
Rows per page
Query Builder