Lucene search
K

3395 matches found

Positive Technologies
Positive Technologies
added 2026/06/11 12:0 a.m.8 views

PT-2026-48768

Name of the Vulnerable Software and Affected Versions Google Chrome on Mac versions prior to 149.0.7827.115 Description A race condition in Safe Browsing allows a remote attacker who has compromised the renderer process to potentially perform a sandbox escape by using a malicious file. A sandbox...

8.8CVSS5.3AI score0.00253EPSS
Exploits0References37
CNNVD
CNNVD
added 2026/06/11 12:0 a.m.18 views

Google Chrome 竞争条件问题漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.115 contained a vulnerability due to race conditions in the Safe Browsing component. This vulnerability could allow remote attackers to execute a sandbox escape through malicious files after...

8.3CVSS5.6AI score0.00166EPSS
Exploits0References2
FreeBSD
FreeBSD
added 2026/06/11 12:0 a.m.8 views

chromium -- security fixes

Chrome Releases reports: This update includes 33 security fixes: 516496659 Critical CVE-2026-12437: Use after free in WebShare. 516947912 Critical CVE-2026-12438: Inappropriate implementation in WebView. 519728275 Critical CVE-2026-12439: Use after free in Digital Credentials. 519731619 Critical...

9.6CVSS5.5AI score0.00601EPSS
Exploits0References1
Snyk
Snyk
added 2026/06/08 12:0 a.m.9 views

Direct Request ('Forced Browsing')

Overview org.springframework:spring-webmvc is a package that provides Model-View-Controller MVC architecture and ready components that can be used to develop flexible and loosely coupled web applications. Affected versions of this package are vulnerable to Direct Request 'Forced Browsing' via...

8.2CVSS5.4AI score0.00313EPSS
Exploits0References2
Snyk
Snyk
added 2026/06/08 12:0 a.m.6 views

Direct Request ('Forced Browsing')

Overview org.springframework:spring-webflux is a Spring Framework module that contains support for reactive HTTP and WebSocket clients as well as for reactive server web applications including REST, HTML browser, and WebSocket style interactions. Affected versions of this package are vulnerable t...

8.2CVSS5.4AI score0.00313EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/07 5:18 a.m.11 views

CVE-2026-11266

A policy bypass flaw was found in the SafeBrowsing component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=500521311...

6.3CVSS5.4AI score0.00168EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/06/07 5:13 a.m.13 views

CVE-2026-11231

An inappropriate implementation flaw was found in the Safe Browsing component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=495840862...

8.8CVSS5.4AI score0.00218EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/06/07 5:13 a.m.12 views

CVE-2026-11210

An insufficient policy enforcement flaw was found in the Safe Browsing component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=506473226...

6.5CVSS5.4AI score0.00185EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2026/06/07 4:41 a.m.12 views

SUSE CVE-2026-11210

Inappropriate implementation in Safe Browsing in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass discretionary access control via a crafted RAR file. Chromium security severity: Medium...

6.5CVSS5.5AI score0.00185EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/06/07 4:41 a.m.9 views

SUSE CVE-2026-11231

Inappropriate implementation in Safe Browsing in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a malicious file. Chromium security severity: Low...

8.1CVSS6AI score0.00218EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/06/07 4:40 a.m.10 views

SUSE CVE-2026-11266

Inappropriate implementation in SafeBrowsing in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass Safe Browsing via a malicious file. Chromium security severity: Low...

4.3CVSS5.5AI score0.00168EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2026/06/06 1:36 p.m.18 views

New ChatGPT Lockdown Mode Limits Tools That Could Enable Data Exfiltration

OpenAI has begun rolling out a new Lockdown Mode to ChatGPT for eligible personal accounts to reduce the risk of data exfiltration arising from prompt injection attacks. The feature is primarily designed for people and organizations that handle sensitive data and require stricter protection...

5.7AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/06/05 7:43 p.m.11 views

CVE-2026-8495

Missing Authorization vulnerability in Drupal Date iCal allows Forceful Browsing. This issue affects Date iCal: from 0.0.0 before 4.0.15...

9.8CVSS5.4AI score0.00369EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:42 p.m.9 views

CVE-2026-8491

Improper Check for Unusual or Exceptional Conditions vulnerability in Drupal Node View Permissions allows Forceful Browsing. This issue affects Node View Permissions: from 0.0.0 before 1.7.0, from 2.0.0 before 2.0.1...

3.7CVSS5.4AI score0.00214EPSS
Exploits0References1
NVD
NVD
added 2026/06/05 7:16 p.m.15 views

CVE-2026-46390

HAX CMS helps manage microsite universe with PHP or NodeJs backends. Starting in version 2.0.0 and prior to version 26.0.0, the gitlist plugin is exposed to unauthenticated users, allowing unauthenticated browsing of git repositories and git history. Version 26.0.0 patches the issue...

6.9CVSS0.0027EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/05 6:16 p.m.7 views

CVE-2026-46390

HAX CMS helps manage microsite universe with PHP or NodeJs backends. Starting in version 2.0.0 and prior to version 26.0.0, the gitlist plugin is exposed to unauthenticated users, allowing unauthenticated browsing of git repositories and git history. Version 26.0.0 patches the issue...

6.9CVSS5.5AI score0.0027EPSS
Exploits0References2Affected Software1
Microsoft CVE
Microsoft CVE
added 2026/06/05 2:0 p.m.10 views

Chromium: CVE-2026-11231 Inappropriate implementation in Safe Browsing

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.1CVSS5.4AI score0.00218EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/06/05 2:0 p.m.12 views

Chromium: CVE-2026-11266 Policy bypass in SafeBrowsing

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS5.4AI score0.00168EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/06/05 2:0 p.m.10 views

Chromium: CVE-2026-11210 Insufficient policy enforcement in Safe Browsing

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.5CVSS5.4AI score0.00185EPSS
Exploits0
EUVD
EUVD
added 2026/06/05 12:31 a.m.9 views

EUVD-2026-34727

Inappropriate implementation in SafeBrowsing in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass Safe Browsing via a malicious file. Chromium security severity: Low...

5.8AI score0.00168EPSS
Exploits0References3
Rows per page
Query Builder