Lucene search
K

104207 matches found

RedHat Linux
RedHat Linux
added 2 hours ago3 views

kernel: KVM: x86: Fix shadow paging use-after-free due to unexpected GFN

A flaw was found in the Linux kernel's KVM Kernel-based Virtual Machine x86 shadow paging mechanism. This use-after-free vulnerability arises from incorrect handling of Guest Frame Numbers GFNs when guest page tables are modified. A local attacker with control over a guest virtual machine could...

8.8CVSS6.5AI score0.00126EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2 hours ago4 views

kernel: net/sched: ets: Always remove class from active list before deleting in ets_qdisc_change

In the Linux kernel, the following vulnerability has been resolved: net/sched: ets: Always remove class from active list before deleting in etsqdiscchange [email protected] says: The vulnerability is a race condition between etsqdiscdequeue and etsqdiscchange. It leads to UAF on stru...

7.5CVSS6.2AI score0.00151EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2 hours ago3 views

Important: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

8.8CVSS6.7AI score0.00176EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2 hours ago2 views

kernel: KVM: x86: Fix shadow paging use-after-free due to unexpected role

A flaw was found in the Linux kernel's Kernel-based Virtual Machine KVM x86 shadow paging mechanism. This vulnerability occurs when a host page directory entry PDE mapping is changed from within the guest, leading to an unexpected role mismatch in shadow paging. This mismatch can cause a...

7.4AI score0.00176EPSS
Exploits2References6
EUVD
EUVD
added 6 hours ago6 views

EUVD-2026-42479

Use after free in InterestGroups in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

6.3AI score
Exploits0References3
EUVD
EUVD
added 6 hours ago4 views

EUVD-2026-42477

Use after free in Views in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

6AI score
Exploits0References3
EUVD
EUVD
added 6 hours ago4 views

EUVD-2026-42455

Use after free in Forms in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

6.3AI score
Exploits0References3
EUVD
EUVD
added 6 hours ago6 views

EUVD-2026-42483

Use after free in Views in Google Chrome prior to 150.0.7871.115 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

6AI score
Exploits0References3
EUVD
EUVD
added 6 hours ago4 views

EUVD-2026-42489

Use after free in Input in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

6.3AI score
Exploits0References3
EUVD
EUVD
added 6 hours ago4 views

EUVD-2026-42449

Use after free in Core in Google Chrome on Windows prior to 150.0.7871.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

6AI score
Exploits0References3
EUVD
EUVD
added 6 hours ago4 views

EUVD-2026-42450

Use after free in WebRTC in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

6.3AI score
Exploits0References3
EUVD
EUVD
added 6 hours ago2 views

EUVD-2026-42459

Use after free in IndexedDB in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

6.3AI score
Exploits0References3
EUVD
EUVD
added 6 hours ago6 views

EUVD-2026-42476

Use after free in Ozone in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

6AI score
Exploits0References3
EUVD
EUVD
added 6 hours ago6 views

EUVD-2026-42482

Use after free in Extensions in Google Chrome prior to 150.0.7871.115 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. Chromium security severity: High...

6AI score
Exploits0References3
EUVD
EUVD
added 6 hours ago5 views

EUVD-2026-42484

Use after free in Autofill in Google Chrome on Android prior to 150.0.7871.115 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

6AI score
Exploits0References3
EUVD
EUVD
added 6 hours ago4 views

EUVD-2026-42488

Use after free in Payments in Google Chrome prior to 150.0.7871.115 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

6AI score
Exploits0References3
EUVD
EUVD
added 6 hours ago4 views

EUVD-2026-42487

Use after free in Actor in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

6.3AI score
Exploits0References3
BDU FSTEC
BDU FSTEC
added 6 hours ago13 views

The vulnerability of Microsoft Office packages and 365 Apps for Enterprise lies in the use of memory after it is freed, allowing an attacker to execute arbitrary code.

The vulnerability of Microsoft Office packages and 365 Apps for Enterprise lies in the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

8.4CVSS6AI score0.00425EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added yesterday2 views

CVE-2026-15126

Use after free in Forms in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

6.3AI score
Exploits0References3Affected Software1
CVE
CVE
added yesterday5 views

CVE-2026-15126

The CVE describes a use-after-free in Chrome’s Forms component, exploitable via a crafted HTML page to execute arbitrary code in the sandbox. Affected product: Google Chrome, version prior to 150.0.7871.115. Root cause: memory handling flaw in the Forms path leading to use-after-free. Impact: rem...

6.3AI score
Exploits0References2
Rows per page
Query Builder