Lucene search
K

7351 matches found

redhatcve
redhatcve
added 2026/06/07 5:22 a.m.13 views

CVE-2026-11289

A side-channel information leakage flaw was found in the Paint component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=502239897...

6.5CVSS5.4AI score0.00197EPSS
Exploits0References5
redhatcve
redhatcve
added 2026/06/07 5:22 a.m.13 views

CVE-2026-11284

A side-channel information leakage flaw was found in the PerformanceAPIs component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=502073069...

6.5CVSS5.4AI score0.00237EPSS
Exploits0References5
redhatcve
redhatcve
added 2026/06/07 5:3 a.m.13 views

CVE-2026-11153

A side-channel information leakage flaw was found in the Forms component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=501779840...

9.1CVSS5.4AI score0.00264EPSS
Exploits0References5
susecve
susecve
added 2026/06/07 4:39 a.m.15 views

SUSE CVE-2026-11284

Side-channel information leakage in PerformanceAPIs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

6.5CVSS5.5AI score0.00237EPSS
Exploits0References2
redhatcve
redhatcve
added 2026/06/05 7:47 p.m.13 views

CVE-2026-6923

A side-channel attack, which requires a physical presence to the TPM, can lead to extraction of an Elliptic Curve Diffie-Hellman ECDH key...

3.8CVSS5.4AI score0.00117EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 7:46 p.m.16 views

CVE-2026-33877

ApostropheCMS is an open-source Node.js content management system. Versions 4.28.0 and prior contain a timing side-channel vulnerability in the password reset endpoint /api/v1/@apostrophecms/login/reset-request that allows unauthenticated username and email enumeration. When a user is not found,...

3.7CVSS5.4AI score0.00365EPSS
Exploits1References1
redhatcve
redhatcve
added 2026/06/05 7:19 p.m.12 views

CVE-2026-5921

A server-side request forgery SSRF vulnerability was identified in GitHub Enterprise Server that allowed an attacker to extract sensitive environment variables from the instance through a timing side-channel attack against the notebook rendering service. When private mode was disabled, the notebo...

9.5CVSS5.4AI score0.00328EPSS
Exploits0References1
mscve
mscve
added 2026/06/05 2:0 p.m.10 views

Chromium: CVE-2026-11289 Side-channel information leakage in Paint

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.5CVSS5.4AI score0.00197EPSS
Exploits0
mscve
mscve
added 2026/06/05 2:0 p.m.10 views

Chromium: CVE-2026-11284 Side-channel information leakage in PerformanceAPIs

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.5CVSS5.4AI score0.00237EPSS
Exploits0
mscve
mscve
added 2026/06/05 2:0 p.m.12 views

Chromium: CVE-2026-11153 Side-channel information leakage in Forms

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

9.1CVSS5.4AI score0.00264EPSS
Exploits0
euvd
euvd
added 2026/06/05 12:31 a.m.13 views

EUVD-2026-34750

Side-channel information leakage in Paint in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00197EPSS
Exploits0References3
euvd
euvd
added 2026/06/05 12:31 a.m.12 views

EUVD-2026-34745

Side-channel information leakage in PerformanceAPIs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00237EPSS
Exploits0References3
euvd
euvd
added 2026/06/05 12:31 a.m.12 views

EUVD-2026-34614

Side-channel information leakage in Forms in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00264EPSS
Exploits0References3
nvd
nvd
added 2026/06/05 12:17 a.m.12 views

CVE-2026-11289

Side-channel information leakage in Paint in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

6.5CVSS0.00197EPSS
Exploits0References2
osv
osv
added 2026/06/05 12:17 a.m.7 views

DEBIAN-CVE-2026-11289

Side-channel information leakage in Paint in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

6.5CVSS5.5AI score0.00197EPSS
Exploits0References1
osv
osv
added 2026/06/05 12:17 a.m.6 views

DEBIAN-CVE-2026-11284

Side-channel information leakage in PerformanceAPIs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

6.5CVSS5.5AI score0.00237EPSS
Exploits0References1
nvd
nvd
added 2026/06/05 12:17 a.m.11 views

CVE-2026-11284

Side-channel information leakage in PerformanceAPIs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

6.5CVSS0.00237EPSS
Exploits0References2
nessus
nessus
added 2026/06/05 12:0 a.m.14 views

Linux Distros Unpatched Vulnerability : CVE-2026-11289

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Side-channel information leakage in Paint in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

6.5CVSS5.4AI score0.00197EPSS
Exploits0References2
osv
osv
added 2026/06/04 11:17 p.m.8 views

DEBIAN-CVE-2026-11153

Side-channel information leakage in Forms in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

9.1CVSS5.5AI score0.00264EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/04 11:6 p.m.11 views

CVE-2026-11289

Side-channel information leakage in Paint in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

5.5AI score0.00197EPSS
Exploits0References2
Rows per page
Query Builder