Lucene search
K

12624 matches found

OSV
OSV
added 2026/06/07 6:11 a.m.7 views

OPENSUSE-SU-2026:20916-1 Security update for chromium

This update for chromium fixes the following issues: Changes in chromium: - Chromium 149 149.0.7827.53 stable boo1267706: CVE-2026-10881: Out of bounds read and write in ANGLE CVE-2026-10882: Use after free in Network CVE-2026-10883: Out of bounds write in ANGLE CVE-2026-10884: Use after free in...

9.6CVSS6.2AI score0.00985EPSS
Exploits1References431
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/06/07 5:44 a.m.15 views

Malicious code in @solana-labs/etherjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c086a8d2c3022bc55743fdca944c8810b997ec203e8742606bf14cccee721db Package is published as @solana-labs/etherjs but its README documents itself as @solana-labs/web3.js and instructs consumers to import Connection,...

5.7AI score
Exploits0References8
RedhatCVE
RedhatCVE
added 2026/06/07 5:12 a.m.11 views

CVE-2026-11200

An inappropriate implementation flaw was found in the WebRTC component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=504579798...

7.4CVSS5.4AI score0.00176EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/06/07 4:53 a.m.14 views

CVE-2026-11074

An use after free flaw was found in the WebRTC component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=499587071...

9.6CVSS5.4AI score0.00355EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/06/07 4:52 a.m.10 views

CVE-2026-11054

An use after free flaw was found in the WebRTC component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=498845284...

8.8CVSS5.4AI score0.00355EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2026/06/07 4:50 a.m.13 views

SUSE CVE-2026-10939

Use after free in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00456EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/06/07 4:50 a.m.12 views

SUSE CVE-2026-10947

Use after free in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00493EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/06/07 4:50 a.m.13 views

SUSE CVE-2026-10948

Use after free in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00493EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/06/07 4:44 a.m.12 views

SUSE CVE-2026-11118

Use after free in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6AI score0.00387EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/07 4:43 a.m.10 views

CVE-2026-11003

An use after free flaw was found in the WebRTC component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=494823867...

9.6CVSS5.4AI score0.00456EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2026/06/07 4:42 a.m.10 views

SUSE CVE-2026-11200

Inappropriate implementation in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.5AI score0.00176EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/07 4:38 a.m.10 views

CVE-2026-10943

An use after free flaw was found in the WebRTC component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=504194151...

8.8CVSS5.4AI score0.00493EPSS
Exploits0References5
EUVD
EUVD
added 2026/06/07 12:31 a.m.12 views

EUVD-2026-34977

clash-verge-service-ipc before 2.3.0 has a world-reachable IPC endpoint, leading to local privilege escalation...

8.4CVSS5.4AI score0.00164EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/06/06 2:53 a.m.10 views

SUSE CVE-2026-11074

Use after free in WebRTC in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6.1AI score0.00355EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/06 12:0 a.m.15 views

PT-2026-47167

Name of the Vulnerable Software and Affected Versions clash-verge-service-ipc versions prior to 2.3.0 Description The software contains a world-reachable IPC Inter-Process Communication endpoint, which is a mechanism that allows different processes to communicate. This configuration allows for...

8.4CVSS5.5AI score0.00164EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/06/06 12:0 a.m.10 views

CVE-2026-26422

clash-verge-service-ipc before 2.3.0 has a world-reachable IPC endpoint, leading to local privilege escalation...

8.4CVSS5.4AI score0.00164EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/05 7:50 p.m.9 views

CVE-2026-21404

NAVTOR NavBox through version 4.16.1.20 contains hard-coded credentials within its Windows Communication Foundation SOAP implementation. If the SOAP functionality is enabled, a local attacker can extract credentials to bypass the intended transfer workflow. Successful authentication against the...

6.3CVSS5.5AI score0.00122EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:43 p.m.8 views

CVE-2026-8972

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Privilege escalation in the WebRTC: Audio/Video component...

8.8CVSS5.4AI score0.0033EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/06/05 7:42 p.m.10 views

CVE-2025-36180

IBM watsonx.data 2.2 through 2.3 IBM Lakehouse does not properly restrict communication between pods which could allow an attacker to transfer data between pods without restrictions...

7.5CVSS5.4AI score0.00186EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:41 p.m.10 views

CVE-2025-31976

HCL BigFix Service Management SM is vulnerable to insufficiently protected credentials for a short duration while communicating with a backend, internal application which could allow an attacker to potentially misuse them, if exfiltrated...

7.5CVSS5.4AI score0.00162EPSS
Exploits0References1
Rows per page
Query Builder