Google Chrome 安全漏洞

Google Chrome is a web browser from Google, an American company. A memory misreference vulnerability exists in the Google Chrome Video component, which can be exploited by an attacker to perform out-of-bounds memory access via specially crafted HTML pages...

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google with a Dawn component to handle WebGPU related functions. A memory misreference vulnerability exists in the Dawn component of Google Chrome. The vulnerability stems from improper management of the lifecycle of specific objects in the Dawn compone...

RHEL 8 : thunderbird (RHSA-2026:8288)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2026:8288 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: thunderbird: Use-after-free in the JavaScript Engine...

Google Chrome on Android 安全漏洞

Google Chrome on Android is an American web browser for Android by Google. A memory misreference vulnerability exists in the Google Chrome Permissions component, which can be exploited by an attacker to execute arbitrary code via specially crafted HTML pages...

Google Chrome 安全漏洞

Google Chrome is a web browser from Google, an American company. A memory misreference vulnerability exists in the Google Chrome Codecs component, which can be exploited by an attacker to execute arbitrary code in a sandbox via specially crafted HTML pages...

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 147.0.7727.101 contained a security vulnerability. This vulnerability stemmed from the Codecs component allowing for reusing of resources after they were released. This could allow remote attackers to execu...

SUSE CVE-2026-34002

A flaw was found in the X.Org X server. This vulnerability, an out-of-bounds read, affects the XKB X Keyboard Extension modifier map handling. An attacker with access to the X11 server can exploit this by sending a malformed request, which causes the server to read beyond its intended memory...

CVE-2026-6160

A vulnerability was found in code-projects Simple ChatBox 1.0. Affected by this issue is the function SimpleChatboxPHP of the file chatbox.sql of the component Endpoint. Performing a manipulation results in file and directory information exposure. It is possible to initiate the attack remotely. T...

EUVD-2026-22617

Out-of-bounds read in Windows HTTP.sys allows an unauthorized attacker to deny service over a network...

EUVD-2026-22609

Heap-based buffer overflow in Microsoft Graphics Component allows an unauthorized attacker to execute code locally...

EUVD-2026-22551

Acceptance of extraneous untrusted data with trusted data in Windows COM allows an unauthorized attacker to elevate privileges locally...

EUVD-2026-22483

Time-of-check time-of-use toctou race condition in Windows LUAFV allows an authorized attacker to elevate privileges locally...

EUVD-2026-22447

Use after free in Microsoft Windows Search Component allows an authorized attacker to elevate privileges locally...

EUVD-2026-22351

Access of resource using incompatible type 'type confusion' in Windows COM allows an authorized attacker to disclose information locally...

CVE-2026-32221

Heap-based buffer overflow in Microsoft Graphics Component allows an unauthorized attacker to execute code locally...

CVE-2026-27909

Use after free in Microsoft Windows Search Component allows an authorized attacker to elevate privileges locally...

CVE-2026-20806

Access of resource using incompatible type 'type confusion' in Windows COM allows an authorized attacker to disclose information locally...

CVE-2026-32162

Acceptance of extraneous untrusted data with trusted data in Windows COM allows an unauthorized attacker to elevate privileges locally...

CVE-2026-32162 Windows COM Elevation of Privilege Vulnerability

...

CVE-2026-32162

CVE-2026-32162 is a Windows COM elevation of privilege vulnerability with local access, no user interaction, and high impact to confidentiality, integrity, and availability. The CVSS 3.1 base score is 8.4 (HIGH) with exploit code maturity labeled UNPROVEN and remediation level OFFICIAL_FIX. Affec...