Lucene search
K

9 matches found

SUSE CVE
SUSE CVE
added 2026/06/13 2:28 a.m.7 views

SUSE CVE-2026-12032

Inappropriate implementation in Passwords in Google Chrome on Android prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Chromium security severity: High...

3.1CVSS5.3AI score0.00155EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/05 12:31 a.m.8 views

EUVD-2026-34386

Inappropriate implementation in Passwords in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00273EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/06/04 11:5 p.m.10 views

CVE-2026-11209

Inappropriate implementation in Passwords in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

5.5AI score0.00229EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/04 11:5 p.m.35 views

CVE-2026-11209

Inappropriate implementation in Passwords in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

0.00229EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/04 9:31 a.m.4 views

EUVD-2026-9377

SEPPmail Secure Email Gateway before version 15.0.1 insufficiently neutralizes the PDF encryption password, allowing OS command execution...

9.5CVSS5.9AI score0.0031EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/01/22 3:39 a.m.4 views

CVE-2026-24038 Horilla HR has 2FA Bypass through its OTP Handling Logic

Horilla is a free and open source Human Resource Management System HRMS. In version 1.4.0, the OTP handling logic has a flawed equality check that can be bypassed. When an OTP expires, the server returns None, and if an attacker omits the otp field from their POST request, the user-supplied OTP i...

8.1CVSS5.5AI score0.00443EPSS
Exploits1References2
NVD
NVD
added 2025/12/02 1:15 p.m.6 views

CVE-2025-11786

Stack-based buffer overflow vulnerability in Circutor SGE-PLC1000/SGE-PLC50 v9.0.2. In the 'SetUserPassword' function, the 'newPassword' parameter is directly embedded in a shell command string using 'sprintf' without any sanitisation or validation, and then executed using 'system'. This allows a...

9.8CVSS0.00344EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/02 12:0 a.m.3 views

PT-2025-48765

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 143.0.7499.41 Description An issue existed in the Passwords feature of Google Chrome that allowed a local attacker to bypass authentication with physical access to the device. The security severity was rated as...

8.8CVSS6.1AI score0.00393EPSS
Exploits0References51
CNVD
CNVD
added 2018/10/12 12:0 a.m.4 views

IBM WebSphere Application Server Information Disclosure Vulnerability (CNVD-2018-24363)

IBM Cloud is a set of open-standard cloud platforms from IBM in the U.S. WebSphere Application Server is one of the application server products, which is a platform for Java EE and Web service applications, and the foundation of the IBM WebSphere software platform. A security vulnerability exists...

6.5CVSS6.3AI score0.01588EPSS
Exploits0References1
Rows per page
Query Builder