Lucene search
K

38571 matches found

SUSE CVE
SUSE CVE
added 2026/05/05 1:45 a.m.8 views

SUSE CVE-2026-37457

An off-by-one out-of-bounds write vulnerability in the bgpflowspecopdecode function bgpd/bgpflowspecutil.c of FRRouting FRR stable/10.0 allows attackers to cause a Denial of Service DoS via supplying a crafted FlowSpec component...

7.5CVSS5.8AI score0.00263EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2026/05/05 12:0 a.m.11 views

PT-2026-38169

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.96 Description A use after free issue exists in Views. This occurs when a program continues to use a pointer after it has been freed, which can lead to memory corruption. An attacker can exploit this ...

9.6CVSS6.3AI score0.00344EPSS
Exploits0References135
Positive Technologies
Positive Technologies
added 2026/05/05 12:0 a.m.11 views

PT-2026-38178

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.96 Description A use after free issue in the GPU component allows a remote attacker who has compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Use after...

9.6CVSS5.8AI score0.00344EPSS
Exploits0References136
Positive Technologies
Positive Technologies
added 2026/05/05 12:0 a.m.11 views

PT-2026-38140

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.96 Description Insufficient validation of untrusted input in the Network component allows a remote attacker who has compromised the renderer process to perform UI spoofing using a crafted HTML page...

9.6CVSS5.8AI score0.00344EPSS
Exploits0References135
CNNVD
CNNVD
added 2026/05/05 12:0 a.m.9 views

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.96 contained a resource management vulnerability. This vulnerability stemmed from the reuse of resources after their release in the Audio component, which could allow remote attackers to execute...

8.8CVSS6.2AI score0.00242EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/05/05 12:0 a.m.12 views

PT-2026-38162

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.96 Description An integer overflow in the Network component allows a remote attacker who has compromised the renderer process to bypass the same origin policy a security mechanism that restricts how a...

9.6CVSS5.9AI score0.00344EPSS
Exploits0References135
CNNVD
CNNVD
added 2026/05/05 12:0 a.m.7 views

LangChain-Chatchat 加密问题漏洞

LangChain-Chatchat is a chatbot software developed based on the LangChain framework, open-sourced by Chatchat-Space. Versions of LangChain-Chatchat 0.3.1.3 and earlier had an encryption vulnerability. This vulnerability stems from a function in the Uploaded File Handler component, specifically th...

2.6CVSS5.7AI score0.00235EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/05 12:0 a.m.9 views

Google Chrome 输入验证错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.96 had a vulnerability related to input validation. This vulnerability stemmed from insufficient trust-based input validation in the Payments component, which could allow a remote attacker with...

4.2CVSS5.8AI score0.00186EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/05/05 12:0 a.m.13 views

PT-2026-38153

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.96 Description A race condition in the Speech component allows a remote attacker who has already compromised the renderer process to obtain potentially sensitive information from process memory by usi...

9.6CVSS5.8AI score0.00344EPSS
Exploits0References135
Positive Technologies
Positive Technologies
added 2026/05/05 12:0 a.m.14 views

PT-2026-37038

Name of the Vulnerable Software and Affected Versions IObit Advanced SystemCare 19 Description A security flaw in the Service component's "ASC.exe" file allows for symlink following. A symbolic link symlink is a type of file that points to another file or directory. This issue requires local acce...

7.3CVSS7AI score0.00131EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/05/05 12:0 a.m.12 views

PT-2026-38183

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.96 Description Insufficient validation of untrusted input in the Updater component on Windows allows a local attacker to achieve OS-level privilege escalation by using a malicious file. Recommendation...

9.6CVSS5.8AI score0.00344EPSS
Exploits0References135
Redos
Redos
added 2026/05/05 12:0 a.m.5 views

ROS-20260505-73-0053

A vulnerability in the http.cookies.Morsel component of the Python programming language interpreter is related to the failure to take measures to neutralize CRLF sequences. Exploitation of the vulnerability could allow a remote attacker to affect the availability of protected information...

6CVSS7.3AI score0.00401EPSS
Exploits0
Redos
Redos
added 2026/05/05 12:0 a.m.8 views

ROS-20260505-73-0032

A vulnerability in the Content-Length component of the Python programming language interpreter is associated with uncontrolled resource consumption. Exploitation of the vulnerability allows an attacker acting remotely to cause a denial of service...

7.5CVSS7.3AI score0.01468EPSS
Exploits0
CNNVD
CNNVD
added 2026/05/05 12:0 a.m.16 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google to provide web browsing, application running and internet communication features. Google Chrome suffers from an integer overflow vulnerability that stems from the Network component failing to properly handle certain data, which can be exploited b...

4.3CVSS5.9AI score0.00225EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/05 12:0 a.m.8 views

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser developed by the American company Google. Versions of Google Chrome prior to 148.0.7778.96 contained a resource management vulnerability. This vulnerability stemmed from the reuse of resources after they were released in the Views component, which could allow...

7.5CVSS6.2AI score0.0018EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/05 12:0 a.m.7 views

Google Chrome 输入验证错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.96 contained a vulnerability related to input validation. This vulnerability stemmed from insufficient input validation by Network, which could allow a remote attacker with access to the renderer...

4.2CVSS5.9AI score0.00186EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/05 12:0 a.m.9 views

Google Chrome 输入验证错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.96 had a vulnerability related to input validation. This vulnerability stemmed from insufficient trust-based input validation in the Omnibox component, which could allow remote attackers to injec...

6.1CVSS6AI score0.00171EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/05 12:0 a.m.7 views

RHEL 8 : firefox (RHSA-2026:13683)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2026:13683 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: libpng:...

9.8CVSS6.8AI score0.01052EPSS
Exploits1References12
Positive Technologies
Positive Technologies
added 2026/05/05 12:0 a.m.11 views

PT-2026-38128

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.96 Description An inappropriate implementation in the Speech component allows a remote attacker to perform UI spoofing, which is the act of mimicking a legitimate user interface to deceive users, via ...

9.6CVSS5.8AI score0.00344EPSS
Exploits0References136
Tenable Nessus
Tenable Nessus
added 2026/05/05 12:0 a.m.15 views

AlmaLinux 8 : thunderbird (ALSA-2026:13537)

The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2026:13537 advisory. firefox: thunderbird: Incorrect boundary conditions in the Libraries component in NSS CVE-2026-6772 firefox: thunderbird: Use-after-free in the JavaScrip...

9.8CVSS6.1AI score0.04938EPSS
Exploits1References27
Rows per page
Query Builder