Lucene search
K

1359 matches found

Cvelist
Cvelist
added 2026/06/01 9:14 p.m.32 views

CVE-2025-48616

In multiple functions of KeyguardViewMediator.java , there is a possible way to bypass lockdown mode with screen pinning due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitatio...

0.00072EPSS
Exploits0References1
CVE
CVE
added 2026/05/28 6:28 p.m.56 views

CVE-2026-47332

CVE-2026-47332 affects Ubuntu Linux releases 6.8, 6.17 and 7.0 where AppArmor SAUCE patches incorrectly validate the size of an internal structure in notification handling. Root cause: size validation flaw leading to an out-of-bounds read in the notification path. Impact: information disclosure f...

5.5CVSS5.8AI score0.00106EPSS
Exploits0References1Affected Software1
UbuntuCve
UbuntuCve
added 2026/05/28 12:0 a.m.20 views

CVE-2026-47332

Ubuntu Linux 6.8, 6.17 and 7.0 contain AppArmor SAUCE patches which incorrectly validate the size of an internal structure, leading to an out-of-bounds read in notification handling code. The bug can be triggered by an unprivileged local user and can result in information disclosure from adjacent...

5.5CVSS5.8AI score0.00106EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Linux, Linux 5.10

Incomplete cleanup of microarchitectural fill buffers on some Intel processors may allow an authenticated user to potentially enable information disclosure via local access...

5.5CVSS6.7AI score0.06451EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in Linux, Linux 5.10

The non-transparent sharing of the branch predictor within the context of some Intel processors may allow an authorized user to potentially enable information disclosure through local access...

6.5CVSS6.7AI score0.00447EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/05/13 8:22 p.m.15 views

CVE-2026-40360

Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally...

7.8CVSS5.8AI score0.00408EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/12 6:30 p.m.16 views

EUVD-2026-29595

Buffer over-read in Windows DWM Core Library allows an authorized attacker to disclose information locally...

7.8CVSS5.7AI score0.00245EPSS
Exploits0References2
NVD
NVD
added 2026/05/12 6:17 p.m.12 views

CVE-2026-35440

Files or directories accessible to external parties in Microsoft Office Word allows an unauthorized attacker to disclose information locally...

5.5CVSS0.00448EPSS
Exploits0References1
NVD
NVD
added 2026/05/12 6:17 p.m.9 views

CVE-2026-40360

Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally...

7.8CVSS0.00408EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2026/05/12 2:0 p.m.13 views

Windows DWM Core Library Elevation of Privilege Vulnerability

Integer overflow or wraparound in Windows DWM Core Library allows an authorized attacker to elevate privileges locally...

7.8CVSS5.8AI score0.00245EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/05/12 2:0 p.m.17 views

Microsoft Word Information Disclosure Vulnerability

Files or directories accessible to external parties in Microsoft Office Word allows an unauthorized attacker to disclose information locally...

5.5CVSS5.8AI score0.00448EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/05/12 2:0 p.m.14 views

Microsoft Excel Information Disclosure Vulnerability

Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally...

7.8CVSS5.8AI score0.00408EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/12 12:0 a.m.17 views

PT-2026-40180

Out-of-bounds read in Windows DWM Core Library allows an authorized attacker to disclose information locally...

5.5CVSS5.8AI score0.00374EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/05/01 11:43 p.m.7 views

CVE-2026-31781

A flaw was found in the Linux kernel's Direct Rendering Manager DRM subsystem, specifically in the drm/ioc32 component. This vulnerability, related to speculative execution a technique used by modern processors to guess future instructions, allows a local attacker to potentially disclose sensitiv...

5.5CVSS5.9AI score0.00123EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/04/27 7:23 p.m.8 views

CVE-2026-41419

4ga Boards is a boards system for realtime project management. Prior to 3.3.5, a path traversal vulnerability allows an authenticated user with board import privileges to make the server ingest arbitrary host files as board attachments during BOARDS archive import. Once imported, the file can be...

7.6CVSS5.3AI score0.00306EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/24 6:50 p.m.7 views

EUVD-2026-25613

4ga Boards is a boards system for realtime project management. Prior to 3.3.5, a path traversal vulnerability allows an authenticated user with board import privileges to make the server ingest arbitrary host files as board attachments during BOARDS archive import. Once imported, the file can be...

7.6CVSS5.3AI score0.00306EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.7 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013268)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013268 advisory. In the Android kernel in the video driver there is a kernel pointer leak due to a WARNON statement. This could lead to local information disclosure with System...

2.3CVSS6.8AI score0.00179EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2026/04/17 6:31 a.m.10 views

HashiCorp Vault has Server-Side Request Forgery in ACME Challenge Validation via Attacker-Controlled DNS

Vault’s PKI engine’s ACME validation did not reject local targets when issuing http-01 and tls-alpn-01 challenges. This may lead to these requests being sent to local network targets, potentially leading to information disclosure. Fixed in Vault Community Edition 2.0.0 and Vault Enterprise 2.0.0,...

8.6CVSS5.7AI score0.00332EPSS
Exploits0References3Affected Software1
RedhatCVE
RedhatCVE
added 2026/04/15 7:24 p.m.6 views

CVE-2026-32218

Insertion of sensitive information into log file in Windows Kernel allows an authorized attacker to disclose information locally...

5.5CVSS5.7AI score0.00436EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/04/15 7:24 p.m.5 views

CVE-2026-32215

Insertion of sensitive information into log file in Windows Kernel allows an authorized attacker to disclose information locally...

5.5CVSS5.7AI score0.00421EPSS
Exploits0References1
Rows per page
Query Builder