Lucene search
K

11 matches found

NVD
NVD
added 3 days ago5 views

CVE-2026-14018

Use after free in Updater in Google Chrome on Windows prior to 150.0.7871.47 allowed a local attacker to perform OS-level privilege escalation via a malicious file. Chromium security severity: Medium...

7.8CVSS0.00104EPSS
Exploits0References2
CVE
CVE
added 3 days ago5 views

CVE-2026-13800

CVE-2026-13800 : In Google Chrome, an inappropriate implementation in the Windows Updater allows a local attacker to escalate privileges via a malicious file. Affected product is Google Chrome Updater on Windows prior to version 150.0.7871.47. Root cause as described is an Updater implementation ...

7.8CVSS5.8AI score0.00116EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 3 days ago21 views

CVE-2026-13800

Inappropriate implementation in Updater in Google Chrome on Windows prior to 150.0.7871.47 allowed a local attacker to perform OS-level privilege escalation via a malicious file. Chromium security severity: High...

0.00116EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/07 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-7990

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient validation of untrusted input in Updater in Google Chrome on Windows prior to 148.0.7778.96 allowed a local attacker to perform OS-level privilege...

7.8CVSS5.8AI score0.00112EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/06 6:13 p.m.34 views

CVE-2026-7997

Insufficient validation of untrusted input in Updater in Google Chrome on Mac prior to 148.0.7778.96 allowed a local attacker to perform OS-level privilege escalation via a malicious file. Chromium security severity: Low...

0.0008EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/12/08 3:17 p.m.5 views

CVE-2025-13631

Inappropriate implementation in Google Updater in Google Chrome on Mac prior to 143.0.7499.41 allowed a remote attacker to perform privilege escalation via a crafted file. Chromium security severity: High...

8.8CVSS6.4AI score0.00303EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/06 12:50 a.m.9 views

CVE-2022-3093

This vulnerability allows physical attackers to execute arbitrary code on affected Tesla vehicles. Authentication is not required to exploit this vulnerability. The specific flaw exists within the iceupdater update mechanism. The issue results from the lack of proper validation of user-supplied...

7.6CVSS7AI score0.00439EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/08 12:0 a.m.6 views

HASOMED Elefant 安全漏洞

HASOMED Elefant is an exercise software from the German company HASOMED. It specializes in meeting the needs of psychotherapists, child and adolescent psychotherapists, and medical psychotherapists. HASOMED Elefant has a security vulnerability. An attacker with local access to a medical office...

7CVSS6.4AI score0.00176EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.3 views

Corel Parallels Desktop 安全漏洞

Corel Parallels Desktop is a suite of virtual machine software for the macOS platform from Canada's Corel Digital Technology Corel. A security vulnerability exists in Corel Parallels Desktop that stems from a specific flaw in the updater service that can be abused to move arbitrary files by...

7.8CVSS7.7AI score0.00201EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2024/01/11 12:0 a.m.5 views

The vulnerability of the Updater service in Parallels Desktop hypervisor allows a hacker to execute arbitrary code and increase their privileges.

The vulnerability of the Updater service in Parallels Desktop operating systems is related to improper verification of the cryptographic signature. Exploiting this vulnerability allows an attacker to execute arbitrary code and enhance their privileges...

7.8CVSS7.6AI score0.00211EPSS
Exploits0References6Affected Software1
RedHat Linux
RedHat Linux
added 2012/08/29 4:19 a.m.6 views

Mozilla: Multiple Use-after-free issues (MFSA 2012-58)

Use-after-free vulnerability in the nsRangeUpdater::SelAdjDeleteNode function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allows remote attackers to execute arbitrary code or cause a denial ...

10CVSS7.8AI score0.04697EPSS
Exploits0References4
Rows per page
Query Builder