Lucene search
K

27 matches found

Vulnrichment
Vulnrichment
added 2026/05/06 6:13 p.m.5 views

CVE-2026-8005

Insufficient validation of untrusted input in Cast in Google Chrome prior to 148.0.7778.96 allowed an attacker on the local network segment to bypass same origin policy via malicious network traffic. Chromium security severity: Low...

5.8AI score0.00104EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/06 6:13 p.m.35 views

CVE-2026-8005

Insufficient validation of untrusted input in Cast in Google Chrome prior to 148.0.7778.96 allowed an attacker on the local network segment to bypass same origin policy via malicious network traffic. Chromium security severity: Low...

0.00104EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/06 6:13 p.m.13 views

CVE-2026-8005

Insufficient validation of untrusted input in Cast in Google Chrome prior to 148.0.7778.96 allowed an attacker on the local network segment to bypass same origin policy via malicious network traffic. Chromium security severity: Low...

4.3CVSS5.8AI score0.00104EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/05/06 6:13 p.m.23 views

CVE-2026-8005

Summary: CVE-2026-8005 in Google Chrome involves insufficient validation of untrusted input in the Cast component, enabling a local-network attacker to bypass the same-origin policy. Affected software/area: Google Chrome prior to 148.0.7778.96 (Cast). Root cause / scope: Insufficient input valida...

4.3CVSS5.8AI score0.00104EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/05 12:0 a.m.13 views

PT-2026-38198

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.96 Description Insufficient validation of untrusted input in Cast allows an attacker on the local network segment to bypass the same origin policy via malicious network traffic. The same origin policy...

9.6CVSS5.8AI score0.00344EPSS
Exploits0References137
RedhatCVE
RedhatCVE
added 2026/04/03 11:1 p.m.3 views

CVE-2026-34593

Ash Framework is a declarative, extensible framework for building Elixir applications. Prior to version 3.22.0, Ash.Type.Module.castinput/2 unconditionally creates a new Erlang atom via Module.concatvalue for any user-supplied binary string that starts with "Elixir.", before verifying whether the...

8.2CVSS5.8AI score0.00423EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/04/02 12:0 a.m.9 views

Ash Framework 资源管理错误漏洞

Ash Framework is an open-source framework used for building Elixir applications. Versions of Ash Framework prior to 3.22.0 contained a resource management vulnerability. This vulnerability stems from Ash.Type.Module.castinput/2, which “Elixir.”, thereby creating new Erlang atoms. This could lead ...

8.2CVSS5.8AI score0.00423EPSS
Exploits1References2
Rows per page
Query Builder