Fedora 42 : chromium (2026-3675ac2066)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-3675ac2066 advisory. Update to 147.0.7727.101 Critical CVE-2026-6296: Heap buffer overflow in ANGLE Critical CVE-2026-6297: Use after free in Proxy Critical CVE-2026-629...

openSUSE 16 Security Update : chromium (openSUSE-SU-2026:20588-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20588-1 advisory. Changes in chromium: - Chromium 147.0.7727.101 boo1262174 CVE-2026-6296: Heap buffer overflow in ANGLE CVE-2026-6297: Use after free in Proxy...

DEBIAN-CVE-2026-6364

Out of bounds read in Skia in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted file. Chromium security severity: Medium...

CVE-2026-6364

Out of bounds read in Skia in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted file. Chromium security severity: Medium...

CVE-2026-6364

Out of bounds read in Skia in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted file. Chromium security severity: Medium...

CVE-2026-6364

creationtimestamp| type| source ---|---|--- 2026-04-15 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260416 2026-04-15 22:13:20+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjkw4zvfwd2m 2026-04-19 20:00:00+00:00| seen|...

Linux Distros Unpatched Vulnerability : CVE-2026-6364

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Out of bounds read in Skia in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to obtain potentially sensitive information from process memory vi...

CGA-84H6-Q76X-6364

Bulletin has no description...

CVE-2025-6364

A vulnerability has been found in code-projects Simple Pizza Ordering System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /adduser-exec.php. The manipulation of the argument Username leads to sql injection. The attack can be launched...

CVE-2025-6364

A vulnerability has been found in code-projects Simple Pizza Ordering System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /adduser-exec.php. The manipulation of the argument Username leads to sql injection. The attack can be launched...

CVE-2025-6364

creationtimestamp| type| source ---|---|--- 2025-06-20 20:44:06+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/19064 2025-06-20 22:42:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ls34dcqlmd2a...

CVE-2024-6364

A vulnerability in Absolute Persistence® versions before 2.8 exists when it is not activated. This may allow a skilled attacker with both physical access to the device, and full hostile network control, to initiate OS commands on the device. To remediate this vulnerability, update the device...

CVE-2024-6364 Server Identity Validation Bypass in Absolute Persistence®

A vulnerability in Absolute Persistence® versions before 2.8 exists when it is not activated. This may allow a skilled attacker with both physical access to the device, and full hostile network control, to initiate OS commands on the device. To remediate this vulnerability, update the device...

CVE-2020-6364

SAP Solution Manager and SAP Focused Run update provided in WILYINTROENTERPRISE 9.7, 10.1, 10.5, 10.7, allows an attacker to modify a cookie in a way that OS commands can be executed and potentially gain control over the host running the CA Introscope Enterprise Manager,leading to Code Injection...

Progress WhatsUp Gold < 23.1 Multiple Vulnerabilities

According to its self-reported version number, the Progress WhatsUp Gold application installed on the remote host is prior to 23.1. It is, therefore, affected by multiple vulnerabilities: - In WhatsUp Gold versions released before 2023.1, a stored cross-site scripting XSS vulnerability has been...

CVE-2023-6364

creationtimestamp| type| source ---|---|--- 2023-12-19 17:09:10+00:00| seen| https://t.me/darkcommunityofficial/203...

CVE-2023-6364

In WhatsUp Gold versions released before 2023.1, a stored cross-site scripting XSS vulnerability has been identified. It is possible for an attacker to craft a XSS payload and store that value within a dashboard component. If a WhatsUp Gold user interacts with the crafted payload, the attacker...

CVE-2023-6364 WhatsUp Gold Stored Cross-Site Scripting (XSS) via Dashboard

In WhatsUp Gold versions released before 2023.1, a stored cross-site scripting XSS vulnerability has been identified. It is possible for an attacker to craft a XSS payload and store that value within a dashboard component. If a WhatsUp Gold user interacts with the crafted payload, the attacker...

CVE-2023-6364

Concrete details available: Progress WhatsUp Gold before version 2023.1 contains a stored XSS vulnerability in dashboard components. An attacker can craft a payload stored in a dashboard element; when a user interacts with it, the attacker could execute malicious JavaScript in the victim’s browse...

Ubuntu: Security Advisory (USN-6364-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...