CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added yesterday•6 views

CVE-2026-43707

CVE-2026-43707 describes a memory corruption issue that was mitigated by improved memory handling and fixed in Safari 26.5.2, iOS 26.5.2, iPadOS 26.5.2, and macOS Tahoe 26.5.2. The vulnerability involves processing maliciously crafted web content, which could trigger an unexpected process crash. ...

5.8AI score

AstraLinux•added 2026/06/19 11:10 a.m.•6 views

Astra Linux – Vulnerability in Chromium

Incorrect security user interfaces in Page Info in Google Chrome on iOS prior to version 88.0.4324.96 allowed a remote attacker to spoof the security user interface through a crafted HTML page...

6.5CVSS7.1AI score0.05036EPSS

AstraLinux•added 2026/06/19 11:10 a.m.•10 views

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerability has been resolved: Wifi: rt2x00 – The beacon queue is restarted when a hardware reset occurs. When a hardware reset is triggered, all registers are reset, causing all queues to be stopped in the hardware interface. However, mac80211 does not...

5.5CVSS5.5AI score0.00175EPSS

Cvelist•added 2026/06/11 6:47 p.m.•28 views

CVE-2025-46308

An authorization issue was addressed with improved state management. This issue is fixed in iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4. An app may be able to leak sensitive user information...

0.0023EPSS

GithubExploit•added 2026/06/08 11:8 p.m.•76 views

coruna-postexploit

Coruna Post-Exploitation Framework Overview This is a com...

7.8CVSS7.5AI score0.0141EPSS

Exploits3

SUSE CVE•added 2026/06/07 4:39 a.m.•7 views

SUSE CVE-2026-11277

Insufficient policy enforcement in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to bypass discretionary access control via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.5AI score0.00213EPSS

SUSE CVE•added 2026/06/07 4:39 a.m.•9 views

SUSE CVE-2026-11302

4.3CVSS5.5AI score0.00179EPSS

RedhatCVE•added 2026/06/05 7:51 p.m.•6 views

CVE-2026-43661

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, watchOS 26.5. Processing a maliciously crafted image may corrupt process memory...

7.5CVSS5.8AI score0.00417EPSS

RedhatCVE•added 2026/06/05 7:12 p.m.•14 views

CVE-2026-44698

Home Assistant is open source home automation software that puts local control and privacy first. Prior to 2026.4.1 for iOS and 2026.4.4 for Android, he Home Assistant Companion apps for Android and iOS expose a JavaScript bridge to the in-app WebView window.externalApp on Android and...

8.3CVSS5.8AI score0.00136EPSS

EUVD•added 2026/06/05 12:31 a.m.•10 views

EUVD-2026-34759

Inappropriate implementation in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00159EPSS

EUVD•added 2026/06/05 12:31 a.m.•9 views

EUVD-2026-34410

Use after free in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS5.8AI score0.00267EPSS

NVD•added 2026/06/05 12:17 a.m.•8 views

CVE-2026-11302

4.3CVSS0.00179EPSS

OSV•added 2026/06/04 11:17 p.m.•6 views

DEBIAN-CVE-2026-11205

Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scripts or HTML UXSS via a crafted QR code. Chromium security severity: Medium...

6.1CVSS5.6AI score0.00147EPSS

OSV•added 2026/06/04 11:16 p.m.•6 views

DEBIAN-CVE-2026-10952

Use after free in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.6AI score0.00312EPSS

CVE•added 2026/06/04 11:6 p.m.•18 views

CVE-2026-11272

CVE-2026-11272 affects Google Chrome on iOS, specifically the Reading List feature. The root cause is insufficient validation of untrusted input, enabling a remote attacker to escalate privileges via a crafted HTML page when a user is guided to perform certain UI gestures. Impact is described as ...

8.8CVSS5.8AI score0.00234EPSS

Exploits0References2Affected Software1

CVE•added 2026/06/04 11:3 p.m.•24 views

CVE-2026-10961

The CVE-2026-10961 issue affects Chrome for iOS (Google Chrome on iOS), where a use-after-free in the renderer allows a remote attacker who has compromised the renderer process to potentially escape the sandbox via a crafted HTML page. Impact is a sandbox escape with high severity; exploitation s...

8.3CVSS5.8AI score0.00267EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2026/06/04 11:3 p.m.•6 views

CVE-2026-10952

5.8AI score0.00312EPSS

Debian CVE•added 2026/06/04 11:3 p.m.•7 views

CVE-2026-10896

Use after free in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Critical...

8.8CVSS6AI score0.00374EPSS

Exploits0

Vulnrichment•added 2026/06/04 11:3 p.m.•9 views

CVE-2026-10885

Use after free in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Critical...

6.2AI score0.00374EPSS