CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

208 matches found

EUVD-2026-34526

Inappropriate implementation in FileSystem in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00019EPSS

Exploits0References3

Vulnrichment•added 3 days ago•4 views

CVE-2026-10886

Use after free in FileSystem in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

5.8AI score0.00108EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: netfs: Fixed error handling for unbuffered writes If all subrequests in an unbuffered write stream fail, the subrequest collector does not update the stream-transferred value, and it retains its initial LONGMAX value...

7.8CVSS5.8AI score0.00019EPSS

Exploits0References2

Tenable Nessus•added 2026/05/14 12:0 a.m.•14 views

Google Chrome < 148.0.7778.167 Multiple Vulnerabilities

The version of Google Chrome installed on the remote macOS host is prior to 148.0.7778.167. It is, therefore, affected by multiple vulnerabilities as referenced in the 202605stable-channel-update-for-desktop12 advisory. - Use after free in Extensions in Google Chrome on Mac prior to 148.0.7778.16...

9.6CVSS6.5AI score0.00148EPSS

Exploits0References159

Kaspersky•added 2026/05/12 12:0 a.m.•11 views

KLA91044 Multiple vulnerabilities in Google Chrome

Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, bypass security restrictions, spoof user interface, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Denial of...

9.6CVSS6.6AI score0.00148EPSS

Exploits0References3

Cvelist•added 2026/05/06 7:40 a.m.•29 views

CVE-2026-43075 ocfs2: fix out-of-bounds write in ocfs2_write_end_inline

In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix out-of-bounds write in ocfs2writeendinline KASAN reports a use-after-free write of 4086 bytes in ocfs2writeendinline, called from ocfs2writeendnolock during a copyfilerange splice fallback on a corrupted ocfs2 filesyst...

7.8CVSS0.00017EPSS

Exploits0References8

Kaspersky•added 2026/04/15 12:0 a.m.•8 views

KLA90990 Multiple vulnerabilities in Google Chrome

Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Denial of service vulnerability in ANGLE can be exploited...

9.6CVSS6.8AI score0.00056EPSS

Exploits0References3

Github Security Blog•added 2026/03/03 5:46 p.m.•6 views

BentoML Vulnerable to Arbitrary File Write via Symlink Path Traversal in Tar Extraction

Arbitrary File Write via Symlink Path Traversal in Tar Extraction Summary The safeextracttarfile function validates that each tar member's path is within the destination directory, but for symlink members it only validates the symlink's own path, not the symlink's target. An attacker can create a...

8.6CVSS6.5AI score0.0001EPSS

Exploits1References4Affected Software1

RedHat Linux•added 2026/02/09 9:51 a.m.•4 views

kernel: Linux kernel: Memory corruption in Squashfs due to incorrect block size calculation

A flaw was found in the Linux kernel's Squashfs filesystem. A local attacker can exploit this vulnerability by simultaneously mounting a Squashfs filesystem and issuing a specific input/output control ioctl command. This can lead to an incorrect block size calculation, causing a shift-out-of-boun...

7.8CVSS5.8AI score0.00094EPSS

Exploits0References5

Tenable Nessus•added 2026/01/16 12:0 a.m.•1 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000573)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000573 advisory. Multiple buffer overflows in the hfsplus filesystem implementation in the Linux kernel before 3.3.5 allow local users to gain privileges via a crafted HFS plus...

7.8CVSS6.5AI score0.03814EPSS

Exploits2References12

OSV•added 2026/01/01 5:15 p.m.•2 views

CVE-2025-48768

Release of Invalid Pointer or Reference vulnerability was discovered in fs/inode/fsinoderemove code of the Apache NuttX RTOS that allowed root filesystem inode removal leading to a debug assert trigger that is disabled by default, NULL pointer dereference handled differently depending on the targ...

6.5CVSS6.9AI score

Exploits0References3

EUVD•added 2026/01/01 4:14 p.m.•4 views

EUVD-2026-0013

6.5AI score0.0002EPSS

Exploits0References4

OSV•added 2025/10/21 8:20 p.m.•0 views

CVE-2025-53070

Vulnerability in the Oracle Solaris product of Oracle Systems component: Filesystem. The supported version that is affected is 11. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle Solaris. Successf...

5.5CVSS5.8AI score

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2014-9534

Malware in sbrugna...

4.9CVSS6.5AI score0.00041EPSS

Exploits0References19

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2006-0905

Malware in sbrugna...

7.2CVSS6.1AI score0.00094EPSS

Exploits0References8