CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

55 matches found

Positive Technologies•added 2025/11/03 12:0 a.m.•5 views

PT-2025-44764

Name of the Vulnerable Software and Affected Versions NetSurf version 3.11 Description NetSurf version 3.11 contains a Use After Free issue within the dom node set text content function. Recommendations At the moment, there is no information about a newer version that contains a fix for this...

6.5CVSS6.5AI score0.00265EPSS

Exploits1References5

Positive Technologies•added 2025/11/03 12:0 a.m.•4 views

PT-2025-44763

Name of the Vulnerable Software and Affected Versions Netsurf version 3.11 Description An issue in NetSurf allows a remote attacker to execute arbitrary code via the dom node normalize function. Recommendations At the moment, there is no information about a newer version that contains a fix for...

6.5CVSS7.5AI score0.00359EPSS

Exploits1References4

CVE•added 2025/11/03 12:0 a.m.•13 views

CVE-2025-29699

NetSurf 3.11 is affected by a Use After Free in the dom_node_set_text_content function. The issue is described as a post-release reuse flaw in that function, leading to possible memory corruption (Use-After-Free) with impact levels as noted in vendor records. The CVE entry identifies NetSurf 3.11...

6.5CVSS6.6AI score0.00265EPSS

Exploits1References2Affected Software1

Cvelist•added 2025/11/03 12:0 a.m.•7 views

CVE-2024-51317

An issue in NetSurf v.3.11 allows a remote attacker to execute arbitrary code via the domnodenormalize function...

0.00359EPSS

Exploits1References2

CNNVD•added 2025/11/03 12:0 a.m.•4 views

NetSurf 安全漏洞

NetSurf is a lightweight browser from the NetSurf organization. A security vulnerability exists in NetSurf version v3.11 that originates from reading uninitialized heap memory when creating a domevent structure...

6.5CVSS6.5AI score0.00302EPSS

Exploits1References3

CNNVD•added 2025/11/03 12:0 a.m.•4 views

NetSurf 安全漏洞

NetSurf is a lightweight browser from the NetSurf organization. A security vulnerability exists in NetSurf version 3.11, which stems from a post-release reuse issue with the domnodesettextcontent function...

6.5CVSS6.5AI score0.00265EPSS

Exploits1References3

CVE•added 2025/11/03 12:0 a.m.•16 views

CVE-2024-51317

CVE-2024-51317 affects NetSurf v3.11. The issue is in dom_node_normalize and allows remote attackers to execute arbitrary code. Reported impact is remote code execution (low to moderate) with network exploitability; no specific patch/version fix details are provided in the documents. Red Hat miti...

6.5CVSS7.6AI score0.00359EPSS

Exploits1References2Affected Software1

CVE•added 2025/11/03 12:0 a.m.•15 views

CVE-2025-45663

NetSurf v3.11 is affected by CVE-2025-45663 due to a vulnerability in dom_event structure creation that reads uninitialized heap memory. The Red Hat, Debian, Ubuntu, and OSV entries corroborate the issue in NetSurf 3.11; however, the provided documents do not specify a fix or patched version. The...

6.5CVSS6.5AI score0.00302EPSS

Exploits1References2Affected Software1

Tenable Nessus•added 2025/11/01 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2024-51317

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue in NetSurf v.3.11 allows a remote attacker to execute arbitrary code via the domnodenormalize function CVE-2024-51317 Note that Nessus relies on the...

6.5CVSS6.2AI score0.00359EPSS

Exploits1References3

Tenable Nessus•added 2025/11/01 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2025-29699

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NetSurf 3.11 is vulnerable to Use After Free in domnodesettextcontent function. CVE-2025-29699 Note that Nessus relies on the presence of the package as reporte...

6.5CVSS5.5AI score0.00265EPSS

Exploits1References3

Tenable Nessus•added 2025/11/01 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2025-45663

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue in NetSurf v3.11 causes the application to read uninitialized heap memory when creating a domevent structure. CVE-2025-45663 Note that Nessus relies on...

6.5CVSS5.5AI score0.00302EPSS

Exploits1References3