CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Positive Technologies•added 2026/06/02 12:0 a.m.•8 views

PT-2026-46644

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.53 Description A use after free issue in Views allows a remote attacker to execute arbitrary code when a user opens a crafted HTML page. Use after free is a memory corruption flaw that occurs when an...

Positive Technologies•added 2026/06/02 12:0 a.m.•14 views

PT-2026-46507

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.53 Description A use after free issue in Chromoting allows a remote attacker to execute arbitrary code through malicious network traffic. Use after free occurs when an application continues to use a...

9.6CVSS6.3AI score0.00456EPSS

Positive Technologies•added 2026/06/02 12:0 a.m.•15 views

PT-2026-46629

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.53 Description An inappropriate implementation in Isolated Web Apps allows a remote attacker to execute arbitrary code inside a sandbox by using a malicious file. Recommendations Update to version...

9.6CVSS6.4AI score0.00493EPSS

VulnCheck KEV•added 2026/06/02 12:0 a.m.•46 views

VulnCheck KEV: CVE-2026-7465

The Spectra Gutenberg Blocks – Website Builder for the Block Editor plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 2.19.25. This makes it possible for authenticated attackers, with Contributor-level access and above, to execute code on the server...

8.8CVSS6.1AI score0.01174EPSS

In wildExploits3References2

Positive Technologies•added 2026/06/02 12:0 a.m.•10 views

PT-2026-45765

A critical chain of vulnerabilities in the Collibra Platform Agent, including CVE-2026-26847 improper authentication and path traversal, allows remote, unauthenticated attackers to achieve Remote Code Execution RCE. Technical Breakdown: Vulnerability Chain: Attackers can exploit improperly...

6AI score

Exploits0References1

Positive Technologies•added 2026/06/02 12:0 a.m.•15 views

PT-2026-46494

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.53 Description An integer overflow in DevTools allows a remote attacker to execute arbitrary code within a sandbox by using a specially crafted HTML page. Recommendations Update to version 149.0.7827....

9.6CVSS6.4AI score0.00456EPSS

Exploits0References438

Tenable Nessus•added 2026/06/02 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2026-42588

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper Input Validation, Improper Control of Generation of Code 'Code Injection' vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ...

8.1CVSS6.5AI score0.00546EPSS

Exploits1References3

Tenable Nessus•added 2026/06/02 12:0 a.m.•22 views

IBM WebSphere Application Server 8.5.x < 8.5.5.30 / 9.x < 9.0.5.29 RCE (7274738)

The version of IBM WebSphere Application Server running on the remote host is affected by a remote code execution vulnerability as referenced in the 7274738 advisory. - IBM WebSphere Application Server 9.0, and 8.5 is vulnerable to potential remote code execution due to deserialization of untrust...

9CVSS6.4AI score0.00441EPSS

Exploits0References2

Positive Technologies•added 2026/06/02 12:0 a.m.•16 views

PT-2026-46832

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.53 Description A use after free issue in PDFium allows a remote attacker to execute arbitrary code within a sandbox by using a specially crafted PDF file. Use after free is a memory corruption flaw th...

9.6CVSS6AI score0.00985EPSS

Exploits0References439

Positive Technologies•added 2026/06/02 12:0 a.m.•7 views

PT-2026-46674

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.53 Description A use after free issue exists in WebML, which allows a remote attacker to execute arbitrary code within a sandbox by utilizing a specially crafted HTML page. Use after free is a memory...

Positive Technologies•added 2026/06/02 12:0 a.m.•7 views

PT-2026-46657

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.53 Description A use after free issue in the Media component allows a remote attacker to execute arbitrary code within a sandbox by utilizing a specially crafted HTML page. Use after free occurs when ...

9.6CVSS6.3AI score0.00985EPSS

Positive Technologies•added 2026/06/02 12:0 a.m.•8 views

PT-2026-46422

Positive Technologies•added 2026/06/02 12:0 a.m.•11 views

PT-2026-46516

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.53 Description An integer overflow in V8 allows a remote attacker to execute arbitrary code inside a sandbox by using a crafted HTML page. V8 is the open-source high-performance JavaScript and...

9.6CVSS6.4AI score0.00493EPSS

Positive Technologies•added 2026/06/02 12:0 a.m.•19 views

PT-2026-46464

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.53 Description A type confusion issue exists in V8, the JavaScript and WebAssembly engine. This allows a remote attacker to execute arbitrary code within a sandbox by inducing a user to open a special...