259776 matches found
The vulnerability of the pg_dump utility in the PostgreSQL database management system allows a hacker to execute arbitrary code.
The vulnerability of the pgdump utility in the PostgreSQL database management system is related to the lack of security measures for SQL query structures. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
CVE-2026-42049
CVE-2026-42049 affects jadx (Dex to Java decompiler). Before 1.5.6, exporting a decompiled APK as an Android Gradle project could cause the android:versionName from the manifest to be inserted into the generated app/build.gradle Groovy template without proper sanitization, enabling opening or bui...
CVE-2026-15776
Inappropriate implementation in V8 in Google Chrome prior to 150.0.7871.125 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...
CVE-2026-15767
Heap buffer overflow in libyuv in Google Chrome on Windows prior to 150.0.7871.125 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted video file. Chromium security severity: High...
CVE-2026-15776
CVE-2026-15776 affects Google Chrome/V8: an inappropriate implementation in V8 allowed remote code execution inside the sandbox via a crafted HTML page before Chrome 150.0.7871.125. The issue is addressed in the Chrome Stable Channel Update, which upgrades to 150.0.7871.125 (Windows/Mac) and 150....
CVE-2026-15767
Summary of CVE-2026-15767 : A heap buffer overflow in libyuv used by Google Chrome on Windows allows remote code execution in the sandbox via a crafted video file. The issue is tied to Chrome prior to version 150.0.7871.125. In the connected advisories, Chrome’s July 2026 Stable Channel update li...
Malicious code in assertion-utils-js (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 311d22d9694863456136cf4f8b69a291fdbb631eda56bafca1959e0c184774a1 assertion-utils-js is a typosquat of chai name, description, and keywords mirror the real package. On require, index.js spawns a detached Node child...
MAL-2026-10612 Malicious code in assertion-utils-js (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 311d22d9694863456136cf4f8b69a291fdbb631eda56bafca1959e0c184774a1 assertion-utils-js is a typosquat of chai name, description, and keywords mirror the real package. On require, index.js spawns a detached Node child...
CVE-2026-50649
CVE-2026-50649 is a .NET/CLR deserialization vulnerability that allows a local attacker to execute arbitrary code by feeding untrusted data. Affected: .NET/NET Core components; root cause is insecure deserialization. Impact per NCSC: execution of arbitrary code with high severity. Exploitation re...
CVE-2026-50646
CVE-2026-50646 affects the .NET Framework. The vulnerability is a protection mechanism failure that could allow an unauthenticated local attacker to execute code on the affected system (attack vector: LOCAL; privileges required: NONE; user interaction required). The CVSS 3.1 base score is 7.8 (HI...
CVE-2026-50646 .NET Framework Remote Code Execution Vulnerability
...
CVE-2026-47305
Technical details such as affected products, component versions, root cause, and mitigation are not publicly available in the provided documents. Monitor for updates from MSRC and NCSC advisories.
CVE-2026-58626
Use after free in Windows Remote Desktop Services allows an authorized attacker to execute code over a network...
CVE-2026-57094
Heap-based buffer overflow in Microsoft Windows Media Foundation allows an unauthorized attacker to execute code over a network...
CVE-2026-57090
Heap-based buffer overflow in Microsoft Windows Media Foundation allows an unauthorized attacker to execute code over a network...
CVE-2026-57087
Heap-based buffer overflow in Microsoft Windows Media Foundation allows an unauthorized attacker to execute code over a network...
CVE-2026-56649
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Network File System allows an unauthorized attacker to execute code over a network...
CVE-2026-56197
Improper neutralization of special elements used in a command 'command injection' in Windows Admin Center allows an authorized attacker to execute code over a network...
CVE-2026-56159
Heap-based buffer overflow in Windows DHCP Server allows an unauthorized attacker to execute code over a network...
CVE-2026-50685
Double free in Windows DHCP Server allows an authorized attacker to execute code over a network...