Lucene search
K

1598 matches found

Debian CVE
Debian CVE
added 2026/06/04 11:4 p.m.8 views

CVE-2026-10993

Heap buffer overflow in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.8AI score0.00333EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/06/04 10:13 p.m.10 views

xorg: xwayland: X.Org X server: Information exposure and denial of service via out-of-bounds memory access

A flaw was found in the X.Org X server's XKB key types request validation. A local attacker could send a specially crafted request to the X server, leading to an out-of-bounds memory access vulnerability. This could result in the disclosure of sensitive information or cause the server to crash,...

7.8CVSS5.7AI score0.0025EPSS
Exploits0References4
NVD
NVD
added 2026/06/03 6:16 p.m.15 views

CVE-2026-36602

Mercusys AC12G EU V1 router with firmware AC12GEUV1200909 discloses kernel memory layout via the UPnP GetStatusInfo action. An unauthenticated attacker on the adjacent network can obtain a raw MIPS KSEG0 kernel pointer, revealing kernel memory layout and aiding further exploitation...

4.3CVSS0.00166EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/03 12:0 a.m.11 views

PT-2026-45999

Mercusys AC12G EU V1 with firmware AC12GEU V1 200909 returns 128 bytes of uninitialized buffer when receiving POST requests without SOAPAction header on UPnP port 1900, exposing internal memory to unauthenticated adjacent network attackers...

5.9AI score0.00231EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.8 views

Google Chrome 缓冲区错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a buffer overflow vulnerability, which was caused by out-of-bound reading in the V8 engine. A remote attacker could obtain sensitive information from the process memory through a...

6.5CVSS5.8AI score0.00229EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.8 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a security vulnerability. This vulnerability stemmed from an issue with the ANGLE component where uninitialized resources were used, which could allow remote attackers to access...

6.5CVSS5.3AI score0.0025EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.9 views

OpenTelemetry eBPF Instrumentation 安全漏洞

OpenTelemetry eBPF Instrumentation is an open-source, eBPF-based lightweight telemetry data collection tool developed by OpenTelemetry. Versions of OpenTelemetry eBPF Instrumentation prior to 0.9.0 contained security vulnerabilities. These vulnerabilities stemmed from the Java TLS ioctl probe usi...

3.8CVSS5.3AI score0.00174EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/06/02 12:0 a.m.19 views

PT-2026-46624

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.53 Description An out of bounds read in WebRTC allows a remote attacker to obtain potentially sensitive information from process memory by using a crafted HTML page. An out of bounds read occurs when ...

9.6CVSS5.8AI score0.00985EPSS
Exploits0References437
SUSE CVE
SUSE CVE
added 2026/05/30 2:15 a.m.12 views

SUSE CVE-2026-10018

Integer overflow in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.9AI score0.00191EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/30 12:0 a.m.9 views

RockyLinux 10 : xorg-x11-server-Xwayland (RLSA-2026:19125)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:19125 advisory. xorg: xwayland: X.Org X server: Denial of Service via integer underflow in XKB compatibility map handling CVE-2026-33999 xorg: xwayland: X.Org X server...

7.8CVSS5.9AI score0.0038EPSS
Exploits0References7
Rockylinux
Rockylinux
added 2026/05/29 4:3 p.m.14 views

xorg-x11-server-Xwayland security update

An update is available for xorg-x11-server-Xwayland. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Xwayland is an X server for running X clients under Wayland...

7.8CVSS5.8AI score0.0038EPSS
Exploits0
EUVD
EUVD
added 2026/05/29 12:38 a.m.15 views

EUVD-2026-33138

Out of bounds read in WebRTC in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00191EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/05/28 10:25 p.m.12 views

CVE-2026-10018

Integer overflow in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.9AI score0.00191EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/05/28 8:5 p.m.14 views

CVE-2026-46123

A flaw was found in the Linux kernel's virtio Bluetooth virtiobt driver. A malicious or faulty virtualized Bluetooth device could send a specially crafted message with an incorrect length. This could lead to the kernel reading uninitialized memory, potentially exposing sensitive information from...

7.7CVSS5.8AI score0.00142EPSS
Exploits0References4
Rockylinux
Rockylinux
added 2026/05/28 3:43 p.m.10 views

xorg-x11-server security update

An update is available for xorg-x11-server. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list X.Org is an open-source implementation of the X Window System. It...

7.8CVSS5.8AI score0.0038EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/28 12:0 a.m.11 views

PT-2026-44704

Name of the Vulnerable Software and Affected Versions Google Chrome on Mac versions prior to 148.0.7778.216 Description An out of bounds read in WebRTC allows a remote attacker to obtain potentially sensitive information from process memory by using a crafted HTML page. An out of bounds read occu...

9.6CVSS5.9AI score0.00368EPSS
Exploits0References155
RedhatCVE
RedhatCVE
added 2026/05/26 8:14 p.m.18 views

CVE-2026-9274

This vulnerability exists in CP Plus Wi-Fi Camera due to improper protection of sensitive information in runtime memory. An attacker with physical access could exploit this vulnerability by accessing the UART interface and performing memory extraction to obtain sensitive information, including...

5.2CVSS5.8AI score0.00125EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/26 12:0 a.m.9 views

NVIDIA GPU Display Driver 信息泄露漏洞

NVIDIA GPU Display Driver is a display driver developed by NVIDIA Corporation. The NVIDIA GPU Display Driver for Linux has a vulnerability known as information leakage. This vulnerability stems from the possibility of advanced attackers exploiting race conditions to leak sensitive memory. As a...

5.6CVSS5.8AI score0.00155EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/05/25 9:19 a.m.14 views

CVE-2026-9274 Information Exposure Vulnerability in CP-Plus Wi-Fi Camera

This vulnerability exists in CP Plus Wi-Fi Camera due to improper protection of sensitive information in runtime memory. An attacker with physical access could exploit this vulnerability by accessing the UART interface and performing memory extraction to obtain sensitive information, including...

5.2CVSS5.8AI score0.00125EPSS
Exploits0References1
CVE
CVE
added 2026/05/25 9:19 a.m.22 views

CVE-2026-9274

CVE-2026-9274 affects CP Plus Wi-Fi Camera due to improper protection of sensitive information in runtime memory. A physical attacker can access the UART interface to perform memory extraction and obtain sensitive data stored in RAM, including cryptographic private keys, Wi‑Fi credentials, and co...

5.2CVSS5.8AI score0.00125EPSS
Exploits0References1
Rows per page
Query Builder