CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

58537 matches found

BIT-AIRFLOW-2026-40963 Apache Airflow: DAG authorization bypass on /ui/structure/structure_data

The structuredata endpoint in the Airflow UI returned external dependency graph nodes for linked Dags without checking whether the caller had read permission on those linked Dags. An authenticated UI/API user authorized for one Dag could enumerate linked Dag IDs and dependency metadata for other...

3.1CVSS5.5AI score0.00051EPSS

Exploits0References4

Fedora•added 3 days ago•6 views

[SECURITY] Fedora 44 Update: nextcloud-33.0.4-1.fc44

NextCloud gives you universal access to your files through a web interface or WebDAV. It also provides a platform to easily view & sync your contacts, calendars and bookmarks across all your devices and enables basic editing rig ht on the web. NextCloud is extendable via a simple but powerful API...

9.1CVSS5.8AI score0.00188EPSS

Exploits1

Fedora•added 3 days ago•12 views

[SECURITY] Fedora 44 Update: rust-sequoia-chameleon-gnupg-0.13.1-13.fc44

Sequoia's reimplementation of the GnuPG interface...

5.8AI score

Exploits0

Fedora•added 3 days ago•9 views

[SECURITY] Fedora 44 Update: rust-sequoia-octopus-librnp-1.11.1-7.fc44

Reimplementation of RNP's interface using Sequoia for use with Thunderbird...

5.8AI score

Exploits0

Fedora•added 3 days ago•10 views

[SECURITY] Fedora 44 Update: rust-sequoia-cert-store-0.7.3-1.fc44

A certificate database interface...

5.8AI score

Exploits0

Fedora•added 3 days ago•8 views

[SECURITY] Fedora 43 Update: transmission-4.1.2-1.fc43

Transmission is a free, lightweight BitTorrent client. It features a simple, intuitive interface on top on an efficient, cross-platform back-end...

5.3CVSS5.8AI score0.00029EPSS

Exploits0

Fedora•added 3 days ago•8 views

[SECURITY] Fedora 43 Update: nextcloud-33.0.4-1.fc43

9.1CVSS5.8AI score0.00188EPSS

Exploits1

Fedora•added 3 days ago•12 views

[SECURITY] Fedora 43 Update: rust-sequoia-chameleon-gnupg-0.13.1-13.fc43

Sequoia's reimplementation of the GnuPG interface...

5.8AI score

Exploits0

Fedora•added 3 days ago•8 views

[SECURITY] Fedora 43 Update: perl-ExtUtils-Builder-Compiler-0.036-1.fc43

This is an interface wrapping around different compilers. It's usually not used directly but by a portability layer like ExtUtils::Builder::Autodetect::C...

5.3CVSS5.8AI score0.00041EPSS

Exploits0

OSV•added 3 days ago•4 views

MINI-R232-QJ48-CMC3

Bulletin has no description...

6.5CVSS5.7AI score0.00023EPSS

Exploits0

EUVD•added 3 days ago•7 views

EUVD-2026-34770

Insufficient policy enforcement in History in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00013EPSS

Exploits0References3

EUVD•added 3 days ago•6 views

EUVD-2026-34761

Inappropriate implementation in Permissions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00017EPSS

Exploits0References3

EUVD•added 3 days ago•7 views

EUVD-2026-34755

Inappropriate implementation in Passwords in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00022EPSS

Exploits0References3

EUVD•added 3 days ago•6 views

EUVD-2026-34746

Inappropriate implementation in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00022EPSS

Exploits0References3

EUVD•added 3 days ago•6 views

EUVD-2026-34734

Insufficient validation of untrusted input in Omnibox in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: Low...

6AI score0.00025EPSS

Exploits0References3

EUVD•added 3 days ago•6 views

EUVD-2026-34719

Inappropriate implementation in File System Access in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass discretionary access control via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.0002EPSS

Exploits0References3

EUVD•added 3 days ago•6 views

EUVD-2026-34715

Inappropriate implementation in Permissions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00017EPSS

Exploits0References3

EUVD•added 3 days ago•4 views

EUVD-2026-34688

Incorrect security UI in Tab Hover Cards in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform domain spoofing via a crafted domain name. Chromium security severity: Low...

5.8AI score0.00022EPSS

Exploits0References3

EUVD•added 3 days ago•6 views

EUVD-2026-34686

Inappropriate implementation in WebUI in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform domain spoofing via a crafted domain name. Chromium security severity: Low...

5.8AI score0.0002EPSS

Exploits0References3

EUVD•added 3 days ago•6 views

EUVD-2026-34706

Inappropriate implementation in Payments in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00022EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by