Lucene search
K

335 matches found

CVE
CVE
•added 2 days ago•15 views

CVE-2026-15476

CVE-2026-15476 affects QILING Disk Master 6.0.0.0 and its Kernel Driver component diskbckp.sys, where an unknown function in that library enables local privilege escalation via improper access controls. The vulnerability is local, with low attack complexity and proof-of-concept exploit maturity r...

5.3CVSS5.8AI score0.00103EPSS
Exploits0References6
NVD
NVD
•added 5 days ago•6 views

CVE-2026-0278

Multiple protection mechanism failures in the Prisma Access Agent Data Loss Prevention DLP component for Windows allow a local user to bypass DLP policy enforcement controls. The Prisma Access Agent on macOS is not affected...

8.4CVSS0.00151EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
•added 5 days ago•7 views

CVE-2026-0278

Multiple protection mechanism failures in the Prisma Access Agent Data Loss Prevention DLP component for Windows allow a local user to bypass DLP policy enforcement controls. The Prisma Access Agent on macOS is not affected...

8.4CVSS5.9AI score0.00151EPSS
Exploits0References2Affected Software1
EUVD
EUVD
•added 5 days ago•10 views

EUVD-2026-42486

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.115 allowed a local attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: High...

6AI score0.00089EPSS
Exploits0References3
EUVD
EUVD
•added 2026/07/01 12:34 a.m.•6 views

EUVD-2026-40538

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.47 allowed a local attacker to bypass discretionary access control via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00289EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
•added 2026/07/01 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2026-13852

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.47 allowed a local attacker to bypass discretionary...

9.1CVSS6.2AI score0.00289EPSS
Exploits0References2
OSV
OSV
•added 2026/06/30 11:17 p.m.•4 views

DEBIAN-CVE-2026-13929

Insufficient policy enforcement in DevTools in Google Chrome on Android prior to 150.0.7871.47 allowed a local attacker to bypass navigation restrictions via a malicious file. Chromium security severity: Medium...

5.5CVSS5.8AI score0.00131EPSS
Exploits0References1
Debian CVE
Debian CVE
•added 2026/06/30 10:37 p.m.•7 views

CVE-2026-13851

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.47 allowed a local attacker to bypass discretionary access control via a crafted HTML page. Chromium security severity: High...

9.1CVSS5.8AI score0.00289EPSS
Exploits0
NVD
NVD
•added 2026/06/22 4:16 p.m.•8 views

CVE-2026-41045

A time-to-check-time-of-use in polkit authentication of qSnapper before version 1.3.3 allowed a local attacker to bypass qSnappers authentication mechanism and operate e.g. as root user...

8.1CVSS0.00136EPSS
Exploits0References3
Vulnrichment
Vulnrichment
•added 2026/06/22 3:32 p.m.•7 views

CVE-2026-41049 Caching of Authentication allows Authentication Bypass between users in qSnapper

Incorrect caching of authentication between different users of the qSnapper dbus service before version 1.3.3 allowed any local attacker to use dbus functions after a privileged users has authenticated for them...

8.4CVSS5.9AI score0.00134EPSS
Exploits0References3
NVD
NVD
•added 2026/06/21 6:16 a.m.•10 views

CVE-2026-12780

A vulnerability was determined in AOMEI Backupper up to 8.3.0. Impacted is an unknown function in the library amwrtdrv.sys of the component Kernel Driver. Executing a manipulation can lead to improper access controls. The attack needs to be launched locally. The exploit has been publicly disclose...

8.5CVSS0.00111EPSS
Exploits0References5
NVD
NVD
•added 2026/06/11 8:16 p.m.•11 views

CVE-2026-45175

Idira Endpoint Privilege Manager Agent versions prior to 26.5 exhibit improper access control within internal agent validation processes. A local attacker could potentially bypass built-in security controls or cryptographic validations. Under specific circumstances, this could allow the attacker ...

8.5CVSS0.00128EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•11 views

CVE-2026-48570

Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally...

7.9CVSS5.4AI score0.00303EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•9 views

CVE-2026-48573

Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally...

7.9CVSS5.4AI score0.01029EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•8 views

CVE-2026-48576

Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally...

7.9CVSS5.4AI score0.01028EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:2 p.m.•8 views

CVE-2026-48578

Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally...

7.9CVSS5.4AI score0.00268EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•16 views

CVE-2026-48568

Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally...

7.9CVSS5.4AI score0.00303EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•9 views

CVE-2026-48575

Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally...

7.9CVSS5.4AI score0.00303EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•9 views

CVE-2026-45654

Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally...

7.9CVSS5.4AI score0.00309EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/06/10 9:1 p.m.•12 views

CVE-2026-45482

Improper limitation of a pathname to a restricted directory 'path traversal' in GitHub Copilot and Visual Studio Code allows an unauthorized attacker to bypass a security feature locally...

8.4CVSS5.5AI score0.00345EPSS
Exploits0References1
Rows per page
Query Builder