19545 matches found
CVE-2026-11691
Insufficient validation of untrusted input in New Tab Page in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: High...
CVE-2026-11678
Integer overflow in libyuv in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...
CVE-2026-11636
Use after free in Autofill in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...
CVE-2026-11695
Inappropriate implementation in Passwords in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...
CVE-2026-11677
Race in Network in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker who had compromised the network process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...
CVE-2026-11668
Uninitialized Use in Codecs in Google Chrome on Linux, ChromeOS prior to 149.0.7827.103 allowed a remote attacker to leak cross-origin data via a crafted video file. Chromium security severity: High...
CVE-2026-11665
Out of bounds read in Dawn in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...
CVE-2026-11656
Use after free in ServiceWorker in Google Chrome prior to 149.0.7827.103 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted Chrome Extension. Chromium security severity: High...
CVE-2026-11647
Use after free in Printing in Google Chrome on Android prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...
CVE-2026-44631
creationtimestamp| type| source ---|---|--- 2026-06-08 23:00:40+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mnsrxdvbsz27...
PHPSpreadsheet has a patch bypass for CVE-2026-34084
Summary CVE-2026-34084 was patched by the helper File::prohibitWrappers. The helper calls parseurl$filename, PHPURLSCHEME and then checks isstring$scheme && strlen$scheme 1 to reject stream wrappers such as phar://, php://, data:// or expect://. The check is not equivalent to "does the path conta...
CVE-2026-44185
creationtimestamp| type| source ---|---|--- 2026-06-08 21:47:11+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mnsntyk2bp2g...
CVE-2026-11582
creationtimestamp| type| source ---|---|--- 2026-06-08 21:43:01+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnsnmjzlmj2q 2026-06-08 22:28:23+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mnsq2m4kgj2f...
CVE-2026-46484
creationtimestamp| type| source ---|---|--- 2026-06-08 21:24:13+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnsmi5uyf52i 2026-06-08 22:00:27+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mnsoloid3q27...
CVE-2026-47344
creationtimestamp| type| source ---|---|--- 2026-06-08 21:13:20+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnslwat77o2j...
CVE-2026-49141
creationtimestamp| type| source ---|---|--- 2026-06-08 21:04:32+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnsledm6gl2f...
DEBIAN-CVE-2026-48913
Bulletin has no description...
DEBIAN-CVE-2026-43951
Bulletin has no description...
DEBIAN-CVE-2026-44186
Bulletin has no description...
DEBIAN-CVE-2026-44631
Bulletin has no description...