CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 140.0.7339.80 Description A flaw exists in Google Chrome's Devtools due to insufficient policy enforcement. This issue could allow a remote attacker to leak cross-origin data through the Devtools functionality...

8.8CVSS6.2AI score0.00353EPSS

Exploits5References25

Positive Technologies•added 2025/09/02 12:0 a.m.•2 views

PT-2025-45516

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 140.0.7339.80 Description A flaw exists in Google Chrome's Devtools due to insufficient validation of untrusted input. This can allow a remote attacker to execute arbitrary code through user interaction within...

10CVSS7.7AI score0.00251EPSS

Exploits3References24

RedhatCVE•added 2025/08/30 6:19 p.m.•2 views

CVE-2025-55301

The Scratch Channel is a news website. In version 1, it is possible to go to application in devtools and click local storage to edit the account's username locally. This issue has been patched in version 1.1...

6.7CVSS6.6AI score0.00159EPSS

Exploits0References1

Tenable Nessus•added 2025/08/30 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2025-4052

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in DevTools in Google Chrome prior to 136.0.7103.59 allowed a remote attacker who convinced a user to engage in specific UI gesture...

9.8CVSS8.2AI score0.0058EPSS

Exploits0References2

NVD•added 2025/08/25 4:15 p.m.•1 views

CVE-2025-55301

6.7CVSS0.00159EPSS

Exploits0References3

Tenable Nessus•added 2025/08/21 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2017-15393

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient Policy Enforcement in Devtools remote debugging in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to obtain access to remote debuggi...

8.8CVSS8AI score0.01413EPSS

Exploits0References2

Tenable Nessus•added 2025/08/21 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2018-6111

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An object lifetime issue in the developer tools network handler in Google Chrome prior to 66.0.3359.117 allowed a local attacker to execute arbitrary code via a...

8.8CVSS8.6AI score0.02623EPSS

Exploits0References2

Tenable Nessus•added 2025/08/21 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2018-6178

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Eliding from the wrong side in an infobar in DevTools in Google Chrome prior to 68.0.3440.75 allowed an attacker who convinced a user to install a malicious...

4.3CVSS6.7AI score0.00922EPSS

Exploits0References2

Tenable Nessus•added 2025/08/20 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2018-6139

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient target checks on the chrome.debugger API in DevTools in Google Chrome prior to 67.0.3396.62 allowed an attacker who convinced a user to install a...

8.8CVSS8.6AI score0.01948EPSS

Exploits0References2

Tenable Nessus•added 2025/08/20 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2018-6039

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient data validation in DevTools in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially leak user cross-origin data via a...

6.1CVSS7.3AI score0.01175EPSS

Exploits0References2

Tenable Nessus•added 2025/08/20 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2018-6045

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient policy enforcement in DevTools in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially leak user local file data via a...

6.5CVSS7.3AI score0.01537EPSS

Exploits0References2

Cvelist•added 2025/08/18 12:34 a.m.•7 views

CVE-2025-31714

In Developer Tools, there is a possible missing verification incorrect input. This could lead to local escalation of privilege with no additional execution privileges needed...

6.8CVSS0.00261EPSS

Exploits0References1

VulnCheck KEV•added 2025/08/18 12:0 a.m.•2 views

VulnCheck KEV: CVE-2025-54782

Nest is a framework for building scalable Node.js server-side applications. In versions 0.2.0 and below, a critical Remote Code Execution RCE vulnerability was discovered in the @nestjs/devtools-integration package. When enabled, the package exposes a local development HTTP server with an API...

9.4CVSS6.3AI score0.4617EPSS

In wildExploits4References125

Tenable Nessus•added 2025/08/18 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2018-6046

6.1CVSS7.3AI score0.01175EPSS

Exploits0References2

Tenable Nessus•added 2025/08/18 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2018-6101

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A lack of host validation in DevTools in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to execute arbitrary code via a crafted HTML page, if th...

7.5CVSS8.4AI score0.02658EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by