Lucene search
+L

379 matches found

NVD
NVD
added 4 days ago23 views

CVE-2026-58534

Heap-based buffer overflow in Microsoft Input Method Editor IME allows an authorized attacker to elevate privileges locally...

8.8CVSS0.00325EPSS
Exploits0References1
Cvelist
Cvelist
added 4 days ago32 views

CVE-2026-58534 Windows Input Method Editor (IME) Elevation of Privilege Vulnerability

...

8.8CVSS0.00325EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 4 days ago5 views

CVE-2026-58534 Windows Input Method Editor (IME) Elevation of Privilege Vulnerability

...

8.8CVSS6.1AI score0.00325EPSS
Exploits0References1
CVE
CVE
added 4 days ago6 views

CVE-2026-58534

CVE-2026-58534 is a Windows IME heap-based buffer overflow vulnerability that enables local privilege escalation for an authenticated attacker. The affected component is the Microsoft Input Method Editor (IME) in Windows. The root cause, per the available sources, is a heap-based buffer overflow ...

8.8CVSS6.1AI score0.00325EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 4 days ago10 views

Windows Input Method Editor (IME) Elevation of Privilege Vulnerability

Heap-based buffer overflow in Microsoft Input Method Editor IME allows an authorized attacker to elevate privileges locally...

8.8CVSS6.2AI score0.00325EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/07/03 2:0 p.m.3 views

Chromium: CVE-2026-13811 Use after free in IME

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS5.9AI score0.00351EPSS
Exploits0
EUVD
EUVD
added 2026/07/01 12:34 a.m.7 views

EUVD-2026-40497

Use after free in IME in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

6.2AI score0.00351EPSS
Exploits0References3
NVD
NVD
added 2026/06/30 11:16 p.m.5 views

CVE-2026-13811

Use after free in IME in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS0.00351EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/05 7:12 p.m.10 views

CVE-2026-0072

In addInputMethodListener of com.android.server.inputmethod.InputMethodManagerService, there is a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

10CVSS5.6AI score0.00122EPSS
Exploits0References1
NVD
NVD
added 2026/06/01 7:16 p.m.14 views

CVE-2026-0072

In addInputMethodListener of com.android.server.inputmethod.InputMethodManagerService, there is a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

10CVSS0.00122EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/01 5:38 p.m.13 views

CVE-2026-0072

In addInputMethodListener of com.android.server.inputmethod.InputMethodManagerService, there is a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

10CVSS5.9AI score0.00122EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/01 5:38 p.m.39 views

CVE-2026-0072

In addInputMethodListener of com.android.server.inputmethod.InputMethodManagerService, there is a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

10CVSS0.00122EPSS
Exploits0References1
CVE
CVE
added 2026/06/01 5:38 p.m.25 views

CVE-2026-0072

CVE-2026-0072 affects Android’s InputMethodManagerService (com.android.server.inputmethod.InputMethodManagerService). The issue is a missing permission check in addInputMethodListener, enabling local elevation of privilege with no additional execution privileges required and no user interaction n...

10CVSS5.9AI score0.00122EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/01 12:0 a.m.21 views

PT-2026-45496

Name of the Vulnerable Software and Affected Versions Android affected versions not specified Description A missing permission check exists in the addInputMethodListener function of com.android.server.inputmethod.InputMethodManagerService. This flaw allows for local escalation of privilege withou...

10CVSS5.9AI score0.00122EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/06/01 12:0 a.m.13 views

Google Android 安全漏洞

Google Android is an open-source operating system based on Linux, developed by Google Inc. There is a security vulnerability in Google Android, which stems from the lack of permission checks in the addInputMethodListener function within com.android.server.inputmethod.InputMethodManagerService. Th...

10CVSS5.3AI score0.00122EPSS
Exploits0References1
OSV
OSV
added 2026/05/07 5:12 p.m.41 views

JLSEC-2026-469 An integer overflow leading to a heap-buffer overflow was found in The X Input Method (XIM)...

An integer overflow leading to a heap-buffer overflow was found in The X Input Method XIM client was implemented in libX11 before version 1.6.10. As per upstream this is security relevant when setuid programs call XIM client functions while running with elevated privileges. No such programs are...

6.7CVSS7AI score0.00465EPSS
Exploits0References18
Fedora
Fedora
added 2026/04/25 1:54 a.m.13 views

[SECURITY] Fedora 44 Update: fcitx5-qt-5.1.13-2.fc44

Qt library and IM module for fcitx5...

5.2AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/01/09 10:33 a.m.8 views

CVE-2017-18685

An issue was discovered on Samsung mobile devices with KK4.4, L5.0/5.1, and M6.0 software. The InputMethod application can cause a system crash via a malformed serializable object in an Intent. The Samsung ID is SVE-2016-7123 February 2017...

7.8CVSS7AI score0.00422EPSS
Exploits0References1
Microsoft KB
Microsoft KB
added 2025/12/09 8:0 a.m.75 views

October 14, 2025—KB5066782 (OS Build 20348.4294)

None None...

9.9CVSS6.8AI score0.04767EPSS
Exploits6
Fedora
Fedora
added 2025/11/07 1:30 a.m.11 views

[SECURITY] Fedora 42 Update: fcitx5-unikey-5.1.8-1.fc42

Unikey Vietnamese Input Method engine support for Fcitx5...

7AI score
Exploits0
Rows per page
Query Builder