Lucene search
K

92 matches found

EUVD
EUVD
added 20 hours ago4 views

EUVD-2026-40597

Insufficient policy enforcement in Spellcheck in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

5.3CVSS5.8AI score
Exploits0References3
NVD
NVD
added yesterday4 views

CVE-2026-13911

Insufficient policy enforcement in Spellcheck in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

5.3CVSS
Exploits0References2
CVE
CVE
added yesterday6 views

CVE-2026-13911

CVE-2026-13911 concerns Google Chrome’s Spellcheck: insufficient policy enforcement could allow a renderer-compromised attacker to read potentially sensitive data from process memory via a crafted HTML page. Affected are Chrome builds prior to 150.0.7871.47; exploitation is described as remote, r...

5.3CVSS5.8AI score
Exploits0References2Affected Software1
Cvelist
Cvelist
added yesterday16 views

CVE-2026-13911

Insufficient policy enforcement in Spellcheck in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.2 views

Astra Linux – Vulnerability in Chromium

In version 119.0.6045.199 of Google Chrome’s Spellcheck, type confusion allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: High...

8.8CVSS7.3AI score0.01007EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/12/13 10:0 p.m.4 views

CVE-2025-43518

A logic issue was addressed with improved checks. This issue is fixed in iOS 26.2 and iPadOS 26.2, macOS Sequoia 15.7.3, macOS Sonoma 14.8.3, macOS Tahoe 26.2, watchOS 26.2. An app may be able to inappropriately access files through the spellcheck API...

3.3CVSS5.8AI score0.00149EPSS
Exploits0References1
NVD
NVD
added 2025/12/12 9:15 p.m.4 views

CVE-2025-43518

A logic issue was addressed with improved checks. This issue is fixed in iOS 26.2 and iPadOS 26.2, macOS Sequoia 15.7.3, macOS Sonoma 14.8.3, macOS Tahoe 26.2, watchOS 26.2. An app may be able to inappropriately access files through the spellcheck API...

3.3CVSS0.00149EPSS
Exploits0References5
OSV
OSV
added 2025/12/12 9:15 p.m.4 views

CVE-2025-43518

A logic issue was addressed with improved checks. This issue is fixed in watchOS 26.2, macOS Sonoma 14.8.3, macOS Tahoe 26.2, iOS 26.2 and iPadOS 26.2, macOS Sequoia 15.7.3. An app may be able to inappropriately access files through the spellcheck API...

3.3CVSS5.7AI score
Exploits0References5
Cvelist
Cvelist
added 2025/12/12 8:57 p.m.20 views

CVE-2025-43518

A logic issue was addressed with improved checks. This issue is fixed in iOS 26.2 and iPadOS 26.2, macOS Sequoia 15.7.3, macOS Sonoma 14.8.3, macOS Tahoe 26.2, watchOS 26.2. An app may be able to inappropriately access files through the spellcheck API...

0.00149EPSS
Exploits0References5
CVE
CVE
added 2025/12/12 8:57 p.m.12 views

CVE-2025-43518

CVE-2025-43518 is a logic-issue vulnerability fixed in multiple Apple platforms. The flaw allows an app to potentially inappropriately access files via the spellcheck API. Affected products include watchOS 26.2; macOS Sonoma 14.8.3; macOS Tahoe 26.2; iOS 26.2 and iPadOS 26.2; macOS Sequoia 15.7.3...

3.3CVSS5.8AI score0.00149EPSS
Exploits0References5Affected Software1
EUVD
EUVD
added 2025/12/12 8:57 p.m.4 views

EUVD-2025-203128

A logic issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.8.3, macOS Sequoia 15.7.3. An app may be able to inappropriately access files through the spellcheck API...

5.6AI score0.00149EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/12/12 8:57 p.m.3 views

CVE-2025-43518

A logic issue was addressed with improved checks. This issue is fixed in watchOS 26.2, macOS Sonoma 14.8.3, macOS Tahoe 26.2, iOS 26.2 and iPadOS 26.2, macOS Sequoia 15.7.3. An app may be able to inappropriately access files through the spellcheck API...

5.3AI score0.00149EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/12/12 12:0 a.m.5 views

PT-2025-51012

CVE-2025-43518 A logic issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.8.3, macOS Sequoia 15.7.3. An app may be able to inappropriately access files… https://t.co/CiUXjJLsoN...

6.1AI score0.00149EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2015-1429

Malware in sbrugna...

6.8CVSS9.3AI score0.01079EPSS
Exploits0References14
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-1404

Malware in sbrugna...

4.3CVSS9.3AI score0.00989EPSS
Exploits0References14
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.3 views

Malicious code in figma-api-spellcheck (npm)

The package figma-api-spellcheck was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.1 views

MAL-2025-20520 Malicious code in figma-api-spellcheck (npm)

The package figma-api-spellcheck was found to contain malicious code...

7.2AI score
Exploits0
OSV
OSV
added 2024/05/15 9:7 p.m.8 views

GHSA-9CQ2-PCGR-8H62 Cross-site Scripting in eZFind spellcheck

This security advisory fixes a vulnerability in the legacy eZ Find extension, which can be used with the LegacyBridge in eZ Platform. It affects sites using the "Did you mean...?" spell check / search suggestion feature. This feature is vulnerable to Cross-site Scripting XSS injection reflected...

6.5AI score
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/02/18 12:0 a.m.40 views

GLSA-202402-14 : QtWebEngine: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202402-14 QtWebEngine: Multiple Vulnerabilities - Use after free in Garbage Collection in Google Chrome prior to 119.0.6045.159 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium...

9.6CVSS7.9AI score0.43238EPSS
Exploits4References30
Tenable Nessus
Tenable Nessus
added 2023/12/12 12:0 a.m.37 views

openSUSE 15 Security Update : opera (openSUSE-SU-2023:0396-1)

The remote openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2023:0396-1 advisory. - Integer overflow in Skia in Google Chrome prior to 119.0.6045.199 allowed a remote attacker who had compromised the renderer process to...

9.6CVSS8.8AI score0.1963EPSS
Exploits0References13
Rows per page
Query Builder