Lucene search
K

7418 matches found

CVE
CVE
added 4 days ago8 views

CVE-2026-41482

Technical details of CVE-2026-41482 are not publicly available in the provided connected documents. Monitor for updates and refer to the initial description for basic vulnerability context (Frappe Chrome PDF Generator path traversal/LFI fixed in 16.18.3).

7.1CVSS6.1AI score0.00338EPSS
Exploits0References6
OSV
OSV
added 2026/07/06 3:23 p.m.7 views

BIT-LIBPYTHON-2026-4786 Incomplete mitigation of CVE-2026-4519, %action expansion for command injection to webbrowser.open()

Mitgation of CVE-2026-4519 was incomplete. If the URL contained "%action" the mitigation could be bypassed for certain browser types the "webbrowser.open" API could have commands injected into the underlying shell. See CVE-2026-4519 for details...

7.1CVSS7.1AI score0.0029EPSS
Exploits0References58
EUVD
EUVD
added 2026/07/03 8:35 p.m.8 views

EUVD-2026-41597

Insufficient ui warning of dangerous operations in Microsoft Edge Chromium-based allows an unauthorized attacker to perform spoofing over a network...

4.3CVSS6AI score0.00398EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/07/01 10:21 p.m.7 views

CVE-2026-14404

Inappropriate implementation in PDFium in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to perform UI spoofing via a crafted PDF file. Chromium security severity: Medium...

5.8AI score0.00202EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2026/07/01 12:34 a.m.9 views

EUVD-2026-40523

Inappropriate implementation in CSS in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00245EPSS
Exploits0References3
CVE
CVE
added 2026/06/30 10:38 p.m.75 views

CVE-2026-13907

CVE-2026-13907 describes an inappropriate implementation in iOSWeb in Google Chrome on iOS (versions prior to 150.0.7871.47) that could allow UI spoofing when a user is guided to perform specific UI gestures on a crafted HTML page. Impact is described as Medium (CVSS 4.2); remediation or patch de...

4.2CVSS5.8AI score0.00212EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/06/30 10:38 p.m.25 views

CVE-2026-13867

Inappropriate implementation in Geolocation in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

0.0023EPSS
Exploits0References2
Rockylinux
Rockylinux
added 2026/06/28 12:1 a.m.23 views

lynx security update

An update is available for lynx. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Lynx is a text-based Web browser. Lynx does not display any images, but it does...

5.3CVSS6.3AI score0.04455EPSS
Exploits0
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.8 views

Astra Linux – Vulnerability in Python 3.11

The webbrowser.open API accepts URLs with leading hyphens, which can be treated as command-line options for certain web browsers. However, the new behavior disallows the use of leading hyphens. It is recommended that users sanitize URLs before passing them to webbrowser.open...

7.1CVSS6.5AI score0.00308EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/24 12:0 a.m.8 views

AlmaLinux 10 : python3.14 (ALSA-2026:28581)

The remote AlmaLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:28581 advisory. python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open API CVE-2026-4786 python: Python: Cross-Site Scripting XSS...

7.1CVSS6.4AI score0.0029EPSS
Exploits1References4
Redos
Redos
added 2026/06/22 12:0 a.m.4 views

ROS-20260622-73-0002

The vulnerability in Firefox is related to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

7.5CVSS6.2AI score0.00586EPSS
Exploits0
Fedora
Fedora
added 2026/06/19 1:10 a.m.23 views

[SECURITY] Fedora 43 Update: firefox-152.0-1.fc43

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability...

5.3AI score
Exploits0
Fedora
Fedora
added 2026/06/10 1:9 a.m.17 views

[SECURITY] Fedora 43 Update: firefox-151.0.3-1.fc43

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability...

5.5AI score
Exploits0
CNNVD
CNNVD
added 2026/06/08 12:0 a.m.15 views

Google Chrome 输入验证错误漏洞

Google Chrome is a web browser developed by Google Inc. of the United States. Google Chrome has a vulnerability related to input validation, which stems from insufficient validation of untrusted inputs...

8.3CVSS5.3AI score0.00258EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/06/08 12:0 a.m.12 views

Google Chrome 访问控制错误漏洞

Google Chrome is a web browser developed by the American company Google. Google Chrome has a access control vulnerability, which stems from improper implementation of plugins...

8.1CVSS5.2AI score0.00184EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/07 5:12 a.m.12 views

CVE-2026-11208

An use after free flaw was found in the Codecs component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=506387278...

6.5CVSS5.4AI score0.00229EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/06/07 5:8 a.m.14 views

CVE-2026-11184

An insufficient policy enforcement flaw was found in the Actor component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=502777516...

6.3CVSS5.4AI score0.00158EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/06/07 5:8 a.m.10 views

CVE-2026-11173

An out of bounds write flaw was found in the V8 component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=502337304...

9CVSS5.4AI score0.0028EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/06/07 4:42 a.m.10 views

CVE-2026-10972

An use after free flaw was found in the Ozone component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=513006660...

9.6CVSS5.4AI score0.00325EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/06/06 12:0 a.m.11 views

RHEL 9 : firefox (RHSA-2026:22324)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:22324 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox:...

9.6CVSS5.7AI score0.00375EPSS
Exploits0References10
Rows per page
Query Builder