Lucene search
+L

164 matches found

NVD
NVD
added 2026/04/08 10:16 p.m.6 views

CVE-2026-5912

Integer overflow in WebRTC in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. Chromium security severity: Low...

8.8CVSS0.00215EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2026/04/03 12:0 a.m.6 views

The vulnerability in the implementation of WebRTC technology in Google Chrome and Microsoft Edge browsers allows a perpetrator to induce a service failure.

The vulnerability of WebRTC implementations in Google Chrome and Microsoft Edge is related to buffer overflow in the stack. Exploiting this vulnerability can allow a malicious actor to cause service interruptions through a specially created HTML page...

10CVSS7.2AI score0.00301EPSS
Exploits0References8Affected Software4
OSV
OSV
added 2026/04/02 4:48 p.m.28 views

MGASA-2026-0081 Updated thunderbird packages fix security vulnerabilities

Denial-of-service in the XML component. CVE-2025-59375 Spoofing issue in Thunderbird. CVE-2026-3889 Race condition, use-after-free in the Graphics: WebRender component. CVE-2026-4684 Incorrect boundary conditions in the Graphics: Canvas2D component. CVE-2026-4685 Incorrect boundary conditions in...

10CVSS6.5AI score0.01279EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/03/30 12:0 a.m.14 views

Amazon Linux 2023 : firefox (ALAS2023-2026-1470)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1470 advisory. Incorrect boundary conditions in the WebRTC: Audio/Video component. This vulnerability affects Firefox 148, Firefox ESR 115.33, and Firefox ESR 140.8. CVE-2026-2757 Use-after-free in the...

10CVSS6.1AI score0.00604EPSS
Exploits0References76
BDU FSTEC
BDU FSTEC
added 2026/03/25 12:0 a.m.3 views

The vulnerability of the WebRTC component in Google Chrome and Microsoft Edge browsers allows a hacker to induce a service failure.

The vulnerability of the WebRTC component in Google Chrome and Microsoft Edge is related to buffer overflows in dynamic memory. Exploiting this vulnerability can allow a malicious actor to cause a service failure through a specially crafted HTML page...

10CVSS7.1AI score0.00301EPSS
Exploits0References9Affected Software4
BDU FSTEC
BDU FSTEC
added 2026/03/25 12:0 a.m.4 views

The vulnerability of the WebRTC component in Google Chrome and Microsoft Edge browsers allows a hacker to induce a service failure.

The vulnerability of the WebRTC component in Google Chrome and Microsoft Edge relates to the possibility of using memory after it is freed. Exploiting this vulnerability could allow a remote attacker to cause a service failure through a specially created HTML page...

10CVSS5.8AI score0.00281EPSS
Exploits0References8Affected Software4
Tenable Nessus
Tenable Nessus
added 2026/03/24 12:0 a.m.9 views

Fedora 44 : chromium (2026-920df14fb5)

The remote Fedora 44 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-920df14fb5 advisory. Update to 146.0.7680.153 CVE-2026-4439: Out of bounds memory access in WebGL CVE-2026-4440: Out of bounds read and write in WebGL CVE-2026-4441: Use...

8.8CVSS6.2AI score0.00415EPSS
Exploits1References27
Microsoft CVE
Microsoft CVE
added 2026/03/23 7:45 a.m.6 views

Chromium: CVE-2026-4444 Stack buffer overflow in WebRTC

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS5.8AI score0.00301EPSS
Exploits0
OPENSUSE Linux
OPENSUSE Linux
added 2026/03/23 12:0 a.m.17 views

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2026:0093-1 Rating: important References: 1259964 Cross-References: CVE-2026-4439 CVE-2026-4440 CVE-2026-4441 CVE-2026-4442 CVE-2026-4443 CVE-2026-4444 CVE-2026-4445 CVE-2026-4446 CVE-2026-4447 CVE-2026-4448...

8.8CVSS7.2AI score0.00415EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2026/03/22 12:25 a.m.9 views

SUSE CVE-2026-4445

Use after free in WebRTC in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.9AI score0.00253EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/02/24 12:0 a.m.6 views

Mozilla Thunderbird < 148.0

The version of Thunderbird installed on the remote Windows host is prior to 148.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2026-16 advisory. - Memory safety bugs present in Firefox 147 and Thunderbird 147. Some of these bugs showed evidence of memory...

10CVSS7.7AI score0.00625EPSS
Exploits2References51
OSV
OSV
added 2026/01/16 11:58 a.m.6 views

OESA-2026-1089 firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. %if 0 %global mozdebugprefix /lib/debug %global mozdebugdir /lib/debug/ %global unamem %uname -m %global symbolsfilename -.en-US.-%uname.crashreporter-symbols.zip %global symbolsfilepath...

9.8CVSS7.5AI score0.0057EPSS
Exploits2References24
Tenable Nessus
Tenable Nessus
added 2025/12/08 12:0 a.m.5 views

RHEL 8 : thunderbird (RHSA-2025:22791)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:22791 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: Mitigation bypass in the DOM: Security component...

8.8CVSS6.2AI score0.00449EPSS
Exploits0References20
Microsoft CVE
Microsoft CVE
added 2025/12/04 5:14 p.m.4 views

Chromium: CVE-2025-13639 Inappropriate implementation in WebRTC

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.1CVSS6.4AI score0.00225EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/12/03 12:25 a.m.6 views

SUSE CVE-2025-13639

Inappropriate implementation in WebRTC in Google Chrome prior to 143.0.7499.41 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. Chromium security severity: Low...

8.1CVSS6.7AI score0.00225EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/12/03 12:0 a.m.3 views

RHEL 7 : firefox (RHSA-2025:22371)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:22371 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox:...

8.8CVSS6.2AI score0.00449EPSS
Exploits0References20
OSV
OSV
added 2025/12/02 7:15 p.m.3 views

CVE-2025-13639

Inappropriate implementation in WebRTC in Google Chrome prior to 143.0.7499.41 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. Chromium security severity: Low...

8.1CVSS5.9AI score
Exploits0References2
AlpineLinux
AlpineLinux
added 2025/12/02 7:0 p.m.4 views

CVE-2025-13639

Inappropriate implementation in WebRTC in Google Chrome prior to 143.0.7499.41 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. Chromium security severity: Low...

8.1CVSS6.7AI score0.00225EPSS
Exploits0
Kaspersky
Kaspersky
added 2025/12/02 12:0 a.m.10 views

KLA90657 Multiple vulnerabilities in Google Chrome

Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. Implementation vulnerability in Google Updater can be exploited to caus...

8.8CVSS8.2AI score0.00393EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/12/02 12:0 a.m.5 views

PT-2025-48764

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 143.0.7499.41 Description An improper implementation in WebRTC within Google Chrome could allow a remote attacker to perform arbitrary read/write operations through a specially crafted HTML page. The security...

8.1CVSS6.5AI score0.00225EPSS
Exploits0References13
Rows per page
Query Builder