CVE-2026-8002

An use after free flaw was found in the Audio component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=495779613...

SUSE CVE-2026-8002

Use after free in Audio in Google Chrome on Mac prior to 148.0.7778.96 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Low...

Chromium: CVE-2026-8002 Use after free in Audio

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

CVE-2026-8002

creationtimestamp| type| source ---|---|--- 2026-05-06 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260507 2026-05-06 23:02:56+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3ml7sozho6k2q 2026-05-07 01:27:19+00:00|...

CVE-2025-59090

On the exos 9300 server, a SOAP API is reachable on port 8002. This API does not require any authentication prior to sending requests. Therefore, network access to the exos server allows e.g. the creation of arbitrary access log events as well as querying the 2FA PINs associated with the enrolled...

EUVD-2025-206366

On the exos 9300 server, a SOAP API is reachable on port 8002. This API does not require any authentication prior to sending requests. Therefore, network access to the exos server allows e.g. the creation of arbitrary access log events as well as querying the 2FA PINs associated with the enrolled...

CVE-2025-59090 Unauthenticated SOAP API in dormakaba Kaba exos 9300

On the exos 9300 server, a SOAP API is reachable on port 8002. This API does not require any authentication prior to sending requests. Therefore, network access to the exos server allows e.g. the creation of arbitrary access log events as well as querying the 2FA PINs associated with the enrolled...

CVE-2025-59090

CVE-2025-59090 affects dormakaba exos 9300 systems where an unauthenticated SOAP API is exposed on port 8002. The API is reachable without credentials, enabling an attacker with network access to create arbitrary access log events and query 2FA PINs linked to enrolled chip cards. CVSS metrics in ...

CVE-2025-59090 Unauthenticated SOAP API in dormakaba Kaba exos 9300

On the exos 9300 server, a SOAP API is reachable on port 8002. This API does not require any authentication prior to sending requests. Therefore, network access to the exos server allows e.g. the creation of arbitrary access log events as well as querying the 2FA PINs associated with the enrolled...

MAL-2025-8002 Malicious code in @hishpr/expedita-consequuntur-deleniti-doloribus (npm)

The package @hishpr/expedita-consequuntur-deleniti-doloribus was found to contain malicious code...

CVE-2025-8002

creationtimestamp| type| source ---|---|--- 2025-07-30 03:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-724/ 2025-09-17 23:07:51+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lz2xb6ewxe2j...

CVE-2024-8002

A vulnerability has been found in VIWIS LMS 9.11 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component File Upload. The manipulation of the argument filename leads to cross site scripting. The attack can be launched remotely. Upgrading to versi...

CVE-2024-8002 VIWIS LMS File Upload cross site scripting

A vulnerability has been found in VIWIS LMS 9.11 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component File Upload. The manipulation of the argument filename leads to cross site scripting. The attack can be launched remotely. Upgrading to versi...

Advisory ROSA-SA-2024-2547

software: virglrenderer 0.8.1 OS: ROSA-CHROME packageevrstring: virglrenderer-0.8.1-4 CVE-ID: CVE-2020-8002 BDU-ID: 2023-00917 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the vrendrenderer.c component of the Virglrenderer virtual OpenGL renderer is related to pointer dereferencing errors...

AMD UltraScale™/UltraScale+™ FPGA Series RSA Authentication

Bulletin ID: AMD-SB-8002 Potential Impact: Information Integrity Severity: Refer to the Summary section for details Summary Insufficient verification of data authenticity in the configuration state machine may allow a local attacker to potentially load arbitrary bitstreams. CVE| Severity| CVE...

MAL-2024-892 Malicious code in wlwz-2312-8002 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4e50ff8ee4598dcc1509ce4c8ecb86cbb96b648f09c621746a6bf8b87f62052c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in wlwz-2312-8002 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4e50ff8ee4598dcc1509ce4c8ecb86cbb96b648f09c621746a6bf8b87f62052c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Debian: Security Advisory (DLA-3232-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Backdoor.Win32.Hupigon.adef Remote Stack Buffer Overflow

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/c8f55ce7bbec784a97d7bfc6d7b1931f.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Hupigon.adef Vulnerability: Remote Stack Buffer Overflow Description: Backdoor Hupigo...

CVE-2020-8002

creationtimestamp| type| source ---|---|--- 2020-01-27 08:37:54+00:00| seen| https://t.me/cveNotify/439...