Lucene search
K

45998 matches found

NVD
NVD
added 10 hours ago5 views

CVE-2026-44041

UltraVNC through 1.8.2.2 contains an out-of-bounds read in the wide-string to multibyte conversion helper. In rfb/dh.cpp:204, the vncWc2Mb function passes a caller-supplied WCHAR pointer to wcslen before any bounds check. If the caller provides a wide-character buffer that is not properly...

4.3CVSS
Exploits0References2
EUVD
EUVD
added 15 hours ago2 views

EUVD-2026-40663

Out of bounds read in ANGLE in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

5.3CVSS5.8AI score
Exploits0References3
EUVD
EUVD
added 15 hours ago2 views

EUVD-2026-40592

Out of bounds read in Codecs in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.8AI score
Exploits0References3
EUVD
EUVD
added 15 hours ago2 views

EUVD-2026-40559

Out of bounds read in Layout in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.8AI score
Exploits0References3
RedHat Linux
RedHat Linux
added 15 hours ago6 views

kernel: libceph: prevent potential out-of-bounds reads in handle_auth_done()

In the Linux kernel, the following vulnerability has been resolved: libceph: prevent potential out-of-bounds reads in handleauthdone Perform an explicit bounds check on payloadlen to avoid a possible out-of-bounds access in the callout. idryomov: changelog...

9.8CVSS6.7AI score0.00351EPSS
Exploits0References5
NVD
NVD
added yesterday5 views

CVE-2026-14090

Insufficient validation of untrusted input in CameraCapture in Google Chrome on ChromeOS prior to 150.0.7871.47 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. Chromium security severity: Low...

Exploits0References2
NVD
NVD
added yesterday4 views

CVE-2026-14063

Out of bounds read in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a local attacker to obtain potentially sensitive information from process memory via malicious network traffic. Chromium security severity: Low...

5.7CVSS
Exploits0References2
NVD
NVD
added yesterday4 views

CVE-2026-14011

Out of bounds read in SurfaceCapture in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. Chromium security severity: Medium...

Exploits0References2
Cvelist
Cvelist
added yesterday14 views

CVE-2026-14063

Out of bounds read in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a local attacker to obtain potentially sensitive information from process memory via malicious network traffic. Chromium security severity: Low...

Exploits0References2
CVE
CVE
added yesterday5 views

CVE-2026-14063

The CVE-2026-14063 entry describes an out-of-bounds read in Chromecast within Google Chrome prior to 150.0.7871.47. The issue allows a local attacker to obtain potentially sensitive information from process memory via malicious network traffic. The documented impact is information disclosure with...

5.5CVSS5.8AI score
Exploits0References2
Cvelist
Cvelist
added yesterday15 views

CVE-2026-13975

Out of bounds read in ANGLE in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

Exploits0References2
CVE
CVE
added yesterday4 views

CVE-2026-13890

CVE-2026-13890 describes an out-of-bounds read in Chromecast within Google Chrome before version 150.0.7871.47. An attacker who already compromised the renderer process could exploit a crafted HTML page to read potentially sensitive information from process memory. The impact is data leakage of m...

5.3CVSS5.8AI score
Exploits0References2
Cvelist
Cvelist
added yesterday13 views

CVE-2026-13873

Out of bounds read in Layout in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

Exploits0References2
Cvelist
Cvelist
added yesterday12 views

CVE-2026-13831

Out of bounds read and write in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

Exploits0References2
CVE
CVE
added yesterday5 views

CVE-2026-13820

CVE-2026-13820 describes an out-of-bounds read in the Skia graphics library used by Google Chrome on macOS, prior to version 150.0.7871.47. The issue could be triggered by a crafted HTML page and, if a renderer process is already compromised, may allow a remote attacker to leak cross-origin data....

5.8AI score
Exploits0References2
Cvelist
Cvelist
added yesterday13 views

CVE-2026-13820

Out of bounds read in Skia in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

Exploits0References2
CVE
CVE
added yesterday9 views

CVE-2026-9263

The CVE-2026-9263 issue affects Zephyr’s Bluetooth controller ISO Adaptation Layer (ISOAL). It stems from insufficient validation of framed ISO PDU start segments: start segments with sc=0 are required to have a len of at least 3 (PDU_ISO_SEG_TIMEOFFSET_SIZE), but isoal_check_seg_header() accepte...

6.5CVSS6AI score
Exploits0References2
CVE
CVE
added yesterday5 views

CVE-2026-10652

Summary: Zephyr's DNS resolver (dns_unpack_answer) validates only the fixed RR header and may accept an attacker-declared rdlength that extends past the datagram, enabling an out-of-bounds read in TXT/SRV parsing (dns_validate_record). This can leak stale memory contents to applications and, in s...

4.8CVSS5.8AI score
Exploits0References2
EUVD
EUVD
added yesterday5 views

EUVD-2026-40319

A flaw was found in GLib. A state confusion issue exists in gdbusnodeinfonewforxml in the gio/gdbusintrospection.c file when processing malformed D-Bus introspection XML, specifically with a element nested within other elements like , , or . This issue can cause an unsigned integer overflow and...

7.5CVSS5.8AI score
Exploits0References3
EUVD
EUVD
added yesterday5 views

EUVD-2026-40312

A flaw was found in GLib. An off-by-one error can occur in the gvstupleisnormal function in the glib/gvariant-serialiser.c file when doing an alignment padding check because the bounds check uses instead of =, causing an out-of-bounds read of only 1 byte. This issue can cause a minor information...

6.5CVSS5.8AI score
Exploits0References3
Rows per page
Query Builder