Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8023 matches found

UbuntuCve
UbuntuCveadded 2026/05/14 8:17 p.m.8 views

CVE-2026-8575

Use after free in UI in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

8.3CVSS5.8AI score0.00176EPSS
Exploits0References3
UbuntuCve
UbuntuCveadded 2026/05/14 8:17 p.m.7 views

CVE-2026-8511

Use after free in UI in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

9.6CVSS5.8AI score0.00234EPSS
Exploits0References3
UbuntuCve
UbuntuCveadded 2026/05/14 8:17 p.m.8 views

CVE-2026-8541

Out of bounds read in UI in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

5.3CVSS5.8AI score0.00205EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2026/05/14 7:52 p.m.8 views

CVE-2026-8565

Inappropriate implementation in Downloads in Google Chrome on Mac prior to 148.0.7778.168 allowed an attacker who convinced a user to install a malicious extension to perform UI spoofing via a crafted Chrome Extension. Chromium security severity: Medium...

4.7CVSS5.8AI score0.00134EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2026/05/14 7:52 p.m.18 views

CVE-2026-8564

CVE-2026-8564 describes an issue in Google Chrome’s Downloads UI on Android and macOS, where an incorrect security UI could allow a remote attacker to perform UI spoofing via a crafted HTML page. Affected versions are prior to 148.0.7778.168; remediation is to update to 148.0.7778.168 or later. T...

4.2CVSS5.8AI score0.00163EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/05/14 7:52 p.m.8 views

CVE-2026-8564

Incorrect security UI in Downloads in Google Chrome on Android and Mac prior to 148.0.7778.168 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.2CVSS5.8AI score0.00163EPSS
Exploits0References3Affected Software1
EUVD
EUVDadded 2026/05/14 7:52 p.m.13 views

EUVD-2026-30378

Incorrect security UI in Fullscreen in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

5.4CVSS5.8AI score0.00184EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/05/14 7:52 p.m.28 views

CVE-2026-8541

Out of bounds read in UI in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

0.00205EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/05/14 7:52 p.m.11 views

CVE-2026-8541

Out of bounds read in UI in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00205EPSS
Exploits0References2
Debian CVE
Debian CVEadded 2026/05/14 7:52 p.m.12 views

CVE-2026-8516

Insufficient validation of untrusted input in DataTransfer in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity:...

5.3CVSS5.8AI score0.00219EPSS
Exploits0
EUVD
EUVDadded 2026/05/14 7:52 p.m.8 views

EUVD-2026-30427

Insufficient validation of untrusted input in DataTransfer in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity:...

5.3CVSS5.8AI score0.00219EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/05/14 7:52 p.m.33 views

CVE-2026-8517

Object lifecycle issue in WebShare in Google Chrome on Mac prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. Chromium security severity: Critical...

0.00498EPSS
Exploits0References2
EUVD
EUVDadded 2026/05/14 7:52 p.m.8 views

EUVD-2026-30428

Use after free in HID in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

8.3CVSS5.8AI score0.00207EPSS
Exploits0References2
EUVD
EUVDadded 2026/05/14 7:52 p.m.8 views

EUVD-2026-30425

Use after free in FileSystem in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

8.3CVSS5.8AI score0.00207EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/05/14 7:52 p.m.38 views

CVE-2026-8511

Use after free in UI in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

0.00234EPSS
Exploits0References2
NVD
NVDadded 2026/05/14 5:16 p.m.25 views

CVE-2026-20224

A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an unauthenticated, remote attacker to read arbitrary files that are stored in an affected system. The attacker does not need to have valid user credentials. This vulnerability is due to improper...

8.6CVSS0.00686EPSS
Exploits0References2
NVD
NVDadded 2026/05/14 5:16 p.m.14 views

CVE-2026-20209

A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an authenticated, remote attacker with read-only permissions to elevate their privileges from low to high and perform actions as a high-privileged user. This vulnerability exists because sensitive...

5.4CVSS0.0019EPSS
Exploits0References2
NVD
NVDadded 2026/05/14 4:16 p.m.35 views

CVE-2026-42283

DevSpace is a client-only developer tool for cloud-native development with Kubernetes. Prior to 6.3.21, DevSpace's UI server WebSocket accepts connections from all origins by default, and therefore several endpoints are exposed via this WebSocket. When a developer runs the DevSpace UI and at the...

7.8CVSS0.00152EPSS
Exploits0References1
EUVD
EUVDadded 2026/05/14 4:8 p.m.19 views

EUVD-2026-30325

A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an unauthenticated, remote attacker to read arbitrary files that are stored in an affected system. The attacker does not need to have valid user credentials. This vulnerability is due to improper...

8.6CVSS6AI score0.00686EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/05/14 4:8 p.m.9 views

CVE-2026-20224

A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an unauthenticated, remote attacker to read arbitrary files that are stored in an affected system. The attacker does not need to have valid user credentials. This vulnerability is due to improper...

8.6CVSS6AI score0.00686EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder