Lucene search
K

253623 matches found

CNNVD
CNNVD
added 2026/05/12 12:0 a.m.7 views

Google Chrome 缓冲区错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.168 contained a buffer overflow vulnerability. This vulnerability stemmed from an out-of-bound read operation in the FileSystem component, which could allow remote attackers who had been convince...

5.3CVSS6.1AI score0.00255EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.8 views

Intel QAT software drivers for Windows 安全漏洞

Intel QAT software drivers for Windows are a set of encryption and compression hardware acceleration drivers for the Windows platform developed by Intel Corporation. Versions prior to Intel QAT software drivers for Windows 1.13 contain security vulnerabilities. These vulnerabilities stem from...

6.9CVSS6AI score0.001EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.8 views

Google Chrome 缓冲区错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.168 contained a buffer overflow vulnerability, which was caused by GPU out-of-bound reads. This vulnerability could allow remote attackers to exploit the system by using specially crafted HTML...

3.1CVSS6.1AI score0.00156EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/05/12 12:0 a.m.9 views

PT-2026-41038

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.168 Description A heap buffer overflow in WebML allows a remote attacker to execute arbitrary code inside a sandbox by using a crafted HTML page. A heap buffer overflow occurs when a program writes mo...

9.6CVSS6.5AI score0.00498EPSS
Exploits0References89
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.7 views

Google Chrome 缓冲区错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.168 contained a buffer overflow vulnerability. This vulnerability stemmed from an out-of-bounds write issue in the WebRTC component, which could allow remote attackers to execute arbitrary code...

8.8CVSS6.5AI score0.00383EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.9 views

Zyxel NWA1100-N 安全漏洞

The Zyxel NWA1100-N is a wireless access point produced by the Chinese company Zyxel. The version 1.00AACE.1C0 of the Zyxel NWA1100-N contains a security vulnerability. This vulnerability stems from buffer overflows in the formWep, formWlAc, formPasswordSetup, formUpgradeCert, and formDelcert...

7.5CVSS5.9AI score0.00309EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.9 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.168 contained a security vulnerability, which was caused by a heap buffer overflow issue in the SwiftShader component. This vulnerability could allow remote attackers to execute out-of-bound memo...

4.3CVSS6.1AI score0.00251EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.8 views

Google Chrome 缓冲区错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.168 contained a buffer overflow vulnerability. This vulnerability stemmed from UI component out-of-bounds reads, which could allow a remote attacker with access to the renderer process to obtain...

5.3CVSS6.1AI score0.00205EPSS
Exploits0References3
Amd
Amd
added 2026/05/12 12:0 a.m.16 views

AMD Server Software and Embedded Chipset Driver Vulnerabilities Identified in Windows® Environments

CVE Details Refer to Glossary for explanation of terms CVE| CVE Description| CVSS Score ---|---|--- CVE-2026-0432| Incorrect default permissions in the installation directory for the AMD chipset driver could allow an attacker to achieve privilege escalation resulting in arbitrary code execution.|...

8.5CVSS6.3AI score0.00122EPSS
Exploits0
AlmaLinux
AlmaLinux
added 2026/05/12 12:0 a.m.10 views

Moderate: freerdp security update

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox. Security Fixes: freerdp: FreeRDP: Denial of service due to use-after-free vulnerability...

9.8CVSS5.8AI score0.00599EPSS
Exploits7References18
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.9 views

Google Chrome 缓冲区错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.168 contained a buffer overflow vulnerability. This vulnerability stemmed from an out-of-bound read operation by the GPU component, which could allow remote attackers with compromised rendering...

5.3CVSS6.1AI score0.00205EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/05/12 12:0 a.m.10 views

PT-2026-40234

Name of the Vulnerable Software and Affected Versions Windows Server versions prior to May 12, 2026 Description A stack-based buffer overflow exists in the Windows Netlogon service, specifically within the MS-NRPC handler. An unauthenticated remote attacker can exploit this by sending a specially...

10CVSS6.9AI score0.72253EPSS
Exploits31References126
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.9 views

Adobe Substance3D Painter 缓冲区错误漏洞

Adobe Substance3D Painter is a 3D scene building software developed by Adobe, a company based in America. Versions of Adobe Substance3D Painter 12.0.2 and earlier contain a buffer overflow vulnerability, which stems from out-of-bound writes, potentially allowing arbitrary code to execute in the...

7.8CVSS6.4AI score0.00138EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/05/12 12:0 a.m.35 views

Security Updates for Microsoft Office Products (May 2026) (macOS)

The version of Microsoft Office for Mac installed on the remote host is affected by multiple vulnerabilities as referenced in the may-12-2026 advisory. - Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally. CVE-2026-40367 - Use after free...

8.4CVSS6.3AI score0.04421EPSS
Exploits0References10
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.8 views

Google Chrome 缓冲区错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.168 contained a buffer overflow vulnerability. This vulnerability stemmed from out-of-bounds write operations in the Media component, which could allow remote attackers with compromised rendering...

8.3CVSS6.2AI score0.00207EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.12 views

Microsoft DWM Core Library 缓冲区错误漏洞

The Microsoft DWM Core Library is a core library of Microsoft Windows from the company Microsoft. The Microsoft DWM Core Library has a buffer overflow vulnerability. Attackers can exploit this vulnerability to obtain sensitive information. The following products and versions are affected: Windows...

5.5CVSS6AI score0.00374EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.13 views

HPE Aruba Networking Wireless Operating System 安全漏洞

HPE Aruba Networking Wireless Operating System is a wireless network operating system developed by the American company HPE. There are security vulnerabilities in the HPE Aruba Networking Wireless Operating System. These vulnerabilities stem from buffer overflows in network management services,...

7.5CVSS6.3AI score0.00535EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/12 12:0 a.m.8 views

PT-2026-40369

Stack-based buffer overflow vulnerabilities exist in several underlying management service components accessed through the command-line interface of the AOS-8 and AOS-10 Operating Systems. An authenticated attacker with administrative privileges could exploit these vulnerabilities by sending...

7.2CVSS6.4AI score0.0036EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.10 views

Google Chrome 缓冲区错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.168 contained a buffer overflow vulnerability, which was caused by an out-of-bounds write issue in the Fonts component. This vulnerability could allow remote attackers to execute arbitrary code...

8.8CVSS6.5AI score0.0028EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/05/12 12:0 a.m.18 views

PT-2026-39935

UNSUPPORTED WHEN ASSIGNED A buffer overflow vulnerability in the formWep, formWlAc, formPasswordSetup, formUpgradeCert, and formDelcert functions of the “webs” binary in Zyxel NWA1100-N customized firmware version 1.00AACE.1C0 could allow an attacker to trigger a denial-of-service DoS condition b...

7.5CVSS6AI score0.00309EPSS
Exploits0References2
Rows per page
Query Builder