CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

CVE•added 2026/05/14 3:30 p.m.•7 views

CVE-2026-42592

Gotenberg (v7/v8) contains a DNS rebinding/SSRF issue in the FilterOutboundURL flow. Before 8.32.0, FilterOutboundURL resolves hostnames, filters IPs against a private-address deny-list, but discards the resolved addresses. Chromium then performs its own DNS resolution when navigating to the URL,...

5.3CVSS5.8AI score0.00035EPSS

Exploits1References1Affected Software1

Cvelist•added 2026/05/14 3:30 p.m.•34 views

CVE-2026-42592 Gotenberg: DNS rebinding bypasses SSRF validation on Chromium URL conversion routes

Gotenberg is a Docker-powered stateless API for PDF files. Prior to 8.32.0, FilterOutboundURL resolves the hostname, checks the resolved IPs against the private-address deny-list, and returns only the error. It discards the resolved addresses. Chromium later performs its own DNS resolution when i...

5.3CVSS0.00035EPSS

Exploits1References1

RedhatCVE•added 2026/05/08 10:34 p.m.•4 views

CVE-2026-7956

An use after free flaw was found in the Navigation component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=496463315...

8.3CVSS5.7AI score0.00118EPSS

Exploits0References5

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux - уязвимость в chromium

Inappropriate implementation in Navigation in Google Chrome prior to 118.0.5993.70 allowed a remote attacker to spoof security UI via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS8.5AI score0.00156EPSS

Exploits0References2

RedhatCVE•added 2026/04/10 6:57 a.m.•3 views

CVE-2026-5918

An inappropriate implementation flaw was found in the Navigation component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=490139441...

5.9CVSS5.7AI score0.00017EPSS

Exploits0References5

RedhatCVE•added 2026/03/20 8:40 a.m.•3 views

CVE-2026-4451

An insufficient validation of untrusted input flaw was found in the Navigation component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=487768779...

8.8CVSS5.7AI score0.00055EPSS

Exploits0References5

RedHat Linux•added 2025/07/07 2:28 a.m.•0 views

chromium-browser: Inappropriate implementation in Navigation

Inappropriate implementation in Navigation in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

6.5CVSS7.4AI score0.00406EPSS

Exploits1References4

Microsoft CVE•added 2025/04/03 5:47 p.m.•16 views

Chromium: CVE-2025-3066 Use after free in Site Isolation

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS8.3AI score0.00142EPSS

Exploits0

CNNVD•added 2021/02/03 12:0 a.m.•4 views

Google Chromium 资源管理错误漏洞

Chrome is a simple and efficiently designed web browsing tool developed by Google. A post-release reuse vulnerability exists in Navigation in versions prior to Google Chrome 88.0.4324.146. An attacker can exploit this vulnerability to potentially perform sandbox escaping via a crafted HTML page...

9.6CVSS7.3AI score0.00206EPSS

Exploits0References10

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by