Lucene search
K

5310 matches found

CNNVD
CNNVD
added 2026/06/02 12:0 a.m.7 views

Google Chrome 输入验证错误漏洞

Google Chrome is a web browser developed by Google Inc. of the United States. Google Chrome has a vulnerability related to input validation, which stems from insufficient validation for unreliable inputs...

4.3CVSS5.3AI score0.00176EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.10 views

Google Chrome 输入验证错误漏洞

Google Chrome is a web browser developed by Google Inc. of the United States. Google Chrome has a vulnerability related to input validation, which stems from insufficient validation for unreliable inputs...

6.5CVSS5.3AI score0.00233EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.7 views

Google Chrome 输入验证错误漏洞

Google Chrome is a web browser developed by Google Inc. of the United States. Google Chrome has a vulnerability related to input validation, which stems from insufficient trust in input validation provided by the IndexedDB component...

5.3CVSS5.3AI score0.00202EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.7 views

Google Chrome 输入验证错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 had a vulnerability related to input validation errors. This vulnerability stemmed from insufficient validation of untrusted inputs by network functions, which could allow remote attackers to...

6.5CVSS5.3AI score0.00176EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.7 views

Google Chrome 输入验证错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 had a vulnerability related to input validation. This vulnerability stemmed from insufficient execution of the Compositing component’s policies, which could allow remote attackers who have...

8.8CVSS6.3AI score0.00242EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.8 views

Google Chrome 输入验证错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 had a vulnerability related to input validation errors. This vulnerability stemmed from insufficient validation of non-trusted inputs in Cast. A remote attacker could exploit this vulnerabilit...

6.5CVSS5.4AI score0.00209EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.7 views

Google Chrome 输入验证错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 had a vulnerability related to input validation errors. This vulnerability stemmed from insufficient validation of untrusted inputs during the tag group synchronization process. It could allow...

6.1CVSS6AI score0.00182EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/06/01 10:5 p.m.10 views

CVE-2026-25276 Improper Validation of Array Index in Secure Processor

Memory corruption while using Strongbox due to missing bounds check...

8.8CVSS5.8AI score0.00075EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/01 12:0 a.m.11 views

Nextcloud user_oidc 输入验证错误漏洞

Nextcloud useroidc is an application developed by the German company Nextcloud. In versions 6.1.0 to 8.2.2, there was a vulnerability related to input validation errors. This vulnerability stemmed from improper redirection handling, which could allow attackers to create links that redirect users ...

6.1CVSS5.3AI score0.00232EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/01 12:0 a.m.11 views

Qualcomm Chipsets 输入验证错误漏洞

Qualcomm Chipsets are a series of chipset developed by Qualcomm Incorporation. Qualcomm Chipsets have a vulnerability related to input validation, which arises from the lack of boundary checks when using Strongbox...

8.8CVSS5.3AI score0.00075EPSS
Exploits0References1
Snyk
Snyk
added 2026/05/28 10:45 p.m.8 views

Operation on a Resource after Expiration or Release

Overview kibana is an open source Apache Licensed, browser-based analytics and search dashboard for Elasticsearch. Affected versions of this package are vulnerable to Operation on a Resource after Expiration or Release due to a logic error in the validation of expiration timestamps for access...

6.9CVSS5.3AI score0.00238EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/28 7:37 p.m.31 views

CVE-2026-33463 Operation on a Resource after Expiration or Termination in Kibana Leading to Unauthorized File Access

Operation on a Resource after Expiration or Termination CWE-672 in Kibana can lead to unauthorized information disclosure. A logic error in how expiration timestamps were validated allowed a time-bounded access token to remain usable beyond its intended validity window, enabling an unauthenticate...

5.3CVSS0.00238EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/28 6:28 p.m.8 views

CVE-2026-47332 Out-of-bounds read in Ubuntu Linux AppArmor notification handling

Ubuntu Linux 6.8, 6.17 and 7.0 contain AppArmor SAUCE patches which incorrectly validate the size of an internal structure, leading to an out-of-bounds read in notification handling code. The bug can be triggered by an unprivileged local user and can result in information disclosure from adjacent...

5.5CVSS5.8AI score0.00106EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2026/05/28 12:0 a.m.16 views

TrendAI Vision One Security Agent Origin Validation Error Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of TrendAI Vision One Security Agent. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within th...

7.8CVSS7AI score0.00246EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/27 12:26 p.m.14 views

Security Bulletin: IBM Engineering Lifecycle Management - Engineering Test management is impacted by vulnerabilities in Eclipse Paho Java client library

Summary A vulnerability has been identified in Eclipse Paho Java client library, which is used in IBM Engineering Lifecycle Management - Engineering Test management Vulnerability Details CVEID:CVE-2019-11777 DESCRIPTION: In the Eclipse Paho Java client library version 1.2.0, when connecting to an...

7.5CVSS6.6AI score0.00827EPSS
Exploits0Affected Software1
CVE
CVE
added 2026/05/27 8:43 a.m.15 views

CVE-2025-66593

CVE-2025-66593 affects Synology Assistant prior to 7.0.6-50085. The issue is an origin validation error during installation that lets local users write arbitrary files with restricted content. Impact per available data: integrity is Low, availability is High, confidentiality is None; CVSS 3.1 bas...

6.1CVSS5.9AI score0.00086EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/27 8:43 a.m.14 views

CVE-2025-66593

An origin validation error vulnerability in Synology Assistant before 7.0.6-50085 allows local users to write arbitrary files with restricted content and conduct denial-of-service during installation...

6.1CVSS5.9AI score0.00086EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/27 8:43 a.m.13 views

CVE-2025-66593

An origin validation error vulnerability in Synology Assistant before 7.0.6-50085 allows local users to write arbitrary files with restricted content and conduct denial-of-service during installation...

6.1CVSS5.9AI score0.00086EPSS
Exploits0References1
CVE
CVE
added 2026/05/27 8:43 a.m.13 views

CVE-2025-66592

CVE-2025-66592 : An origin validation error affects Synology Active Backup for Business Agent prior to version 3.1.0-4967. The flaw allows local users to write arbitrary files with restricted content during installation, indicating a path traversal/origin-check weakness in the installer process. ...

6.1CVSS5.9AI score0.00086EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/05/27 8:43 a.m.32 views

CVE-2025-66592

An origin validation error vulnerability in Synology Active Backup for Business Agent before 3.1.0-4967 allows local users to write arbitrary files with restricted content and conduct denial-of-service during installation...

6.1CVSS0.00086EPSS
Exploits0References1
Rows per page
Query Builder