CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1306 matches found

OSV•added 2025/11/10 8:15 p.m.•1 views

CVE-2025-12436

Policy bypass in Extensions in Google Chrome prior to 142.0.7444.59 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information from process memory via a crafted Chrome Extension. Chromium security severity: Medium...

5.9CVSS5.8AI score

Exploits0References2

OSV•added 2025/11/10 8:15 p.m.•1 views

CVE-2025-12439

Inappropriate implementation in App-Bound Encryption in Google Chrome on Windows prior to 142.0.7444.59 allowed a local attacker to obtain potentially sensitive information from process memory via a malicious file. Chromium security severity: Medium...

5.5CVSS5.8AI score

Exploits0References2

Cvelist•added 2025/11/10 8:0 p.m.•5 views

CVE-2025-12439

0.00003EPSS

Exploits1References2

Cvelist•added 2025/11/10 8:0 p.m.•3 views

CVE-2025-12436

0.00018EPSS

Exploits0References2

CVE•added 2025/10/27 12:0 a.m.•9 views

CVE-2025-60791

CVE-2025-60791 affects Easywork Enterprise 2.1.3.354. The vulnerability is Cleartext Storage of Sensitive Information in Memory, where device-bound license keys remain in process memory after a failed activation. An attacker with local access can attach a debugger or dump memory to retrieve keys ...

6.2CVSS6.5AI score0.00011EPSS

Exploits1References2

Vulnrichment•added 2025/10/27 12:0 a.m.•1 views

CVE-2025-60791

Easywork Enterprise 2.1.3.354 is vulnerable to Cleartext Storage of Sensitive Information in Memory. The application leaves valid device-bound license keys in process memory after a failed activation attempt. The keys can be obtained by attaching a debugger or analyzing the process/memory dump an...

6.4AI score0.00011EPSS

Exploits1References2