Lucene search
K

115 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2012-1975

Malware in sbrugna...

4.3CVSS9.3AI score0.02199EPSS
Exploits1References23
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-18087

Malware in sbrugna...

7.5CVSS7.5AI score0.01796EPSS
Exploits0References5
Snyk
Snyk
added 2025/09/15 7:39 a.m.7 views

Embedded Malicious Code

Overview @ctrl/ngx-rightclick is a Context Menu Service for Angular Affected versions of this package are vulnerable to Embedded Malicious Code. Compromised versions of this package contain a file called bundle.js that exfiltrates secrets from the user's accounts, including credentials and API...

9.8CVSS7AI score
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/09/06 6:33 p.m.19 views

CVE-2025-48533

In multiple locations, there is a possible way to use apps linked from a context menu of a lockscreen app due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7CVSS6.8AI score0.00083EPSS
Exploits0References1
OSV
OSV
added 2025/09/04 7:15 p.m.4 views

CVE-2025-48533

In multiple locations, there is a possible way to use apps linked from a context menu of a lockscreen app due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7CVSS5.9AI score0.00083EPSS
Exploits0References1
NVD
NVD
added 2025/09/04 7:15 p.m.8 views

CVE-2025-48533

In multiple locations, there is a possible way to use apps linked from a context menu of a lockscreen app due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7CVSS0.00083EPSS
Exploits0References1
CVE
CVE
added 2025/09/04 6:17 p.m.54 views

CVE-2025-48533

CVE-2025-48533 affects the Android Framework. A race condition in the lockscreen context menu can be exploited to perform local escalation of privilege by using apps linked from the context menu, without additional execution privileges or user interaction. The vulnerability is characterized as Eo...

7CVSS6.2AI score0.00083EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/09/04 6:17 p.m.7 views

CVE-2025-48533

In multiple locations, there is a possible way to use apps linked from a context menu of a lockscreen app due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

0.00083EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/04 6:17 p.m.2 views

CVE-2025-48533

In multiple locations, there is a possible way to use apps linked from a context menu of a lockscreen app due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

6.4AI score0.00083EPSS
Exploits0References1
Vivaldi Security Advisories
Vivaldi Security Advisories
added 2025/07/03 6:55 a.m.14 views

Vivaldi 7.5: color, clarity, and control

Read this article in español, Deutsch, Français, русский, 日本語, język polski. This update brings both refinement and power. It’s a release shaped by your feedback and driven by our commitment to putting you in full control of your browser. With long-requested colored Tab Stacks, enhanced privacy...

8.1CVSS5.9AI score0.06564EPSS
Exploits5References1
Positive Technologies
Positive Technologies
added 2024/11/28 12:0 a.m.8 views

PT-2024-40550 · Mozilla · Seamonkey

Name of the Vulnerable Software and Affected Versions: SeaMonkey versions prior to 2.53.19 Description: The issue is related to a security vulnerability in SeaMonkey. The estimated number of potentially affected devices is not provided. There is no information about real-world incidents where thi...

7AI score
Exploits0References3
CVE
CVE
added 2024/06/14 5:17 p.m.65 views

CVE-2024-37888

The CVE-2024-37888 issue affects the Open Link CKEditor plugin, impacting users of versions prior to 1.0.5. The vulnerability is a cross-site scripting (XSS) flaw that enables JavaScript execution via abuse of the link href attribute in the plugin’s open link functionality. Remediation per source...

6.1CVSS6.3AI score0.00856EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/04/29 12:0 a.m.20 views

Fedora 40 : thunderbird (2024-d8a0e599e2)

The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-d8a0e599e2 advisory. Update to 115.8.1 https://www.mozilla.org/en-US/security/advisories/mfsa2024-11/ read that if you have mails with encrypted email subjects...

7.5CVSS8.1AI score0.00682EPSS
Exploits1References2
OSV
OSV
added 2024/03/06 10:55 a.m.20 views

BIT-JENKINS-2023-35141

In Jenkins LTS 2.387.3 and earlier, POST requests are sent in order to load the list of context actions. If part of the URL includes insufficiently escaped user-provided values, a victim may be tricked into sending a POST request to an unexpected endpoint by opening a context menu...

8CVSS7.6AI score0.0086EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/03/04 9:31 p.m.27 views

CVE-2024-1936

The encrypted subject of an email message could be incorrectly and permanently assigned to an arbitrary other email message in Thunderbird's local cache. Consequently, when replying to the contaminated email message, the user might accidentally leak the confidential subject to a third-party. Whil...

7.3AI score0.00682EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2023/12/21 2:42 p.m.11 views

CVE-2023-7047

Inadequate validation of permissions when employing remote tools and macros via the context menu within Devolutions Remote Desktop Manager versions 2023.3.31 and earlier permits a user to initiate a connection without proper execution rights via the remote tools feature. This affects only SQL dat...

7.6AI score0.00165EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/12/21 12:0 a.m.6 views

PT-2023-32850 · Devolutions · Devolutions Remote Desktop Manager

Name of the Vulnerable Software and Affected Versions: Devolutions Remote Desktop Manager versions 2023.3.31 and earlier Description: The issue is related to inadequate validation of permissions when using remote tools and macros via the context menu. This allows a user to initiate a connection...

4.4CVSS7.8AI score0.00165EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2023/12/11 12:0 a.m.35 views

FreeBSD : chromium -- multiple security fixes (4405e9ad-97fe-11ee-86bb-a8a1599412c6)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 4405e9ad-97fe-11ee-86bb-a8a1599412c6 advisory. - Use after free in Media Stream in Google Chrome prior to 120.0.6099.62 allowed a remote...

8.8CVSS7.2AI score0.01286EPSS
Exploits0References7
OSV
OSV
added 2023/12/06 2:15 a.m.7 views

DEBIAN-CVE-2023-6512

Inappropriate implementation in Web Browser UI in Google Chrome prior to 120.0.6099.62 allowed a remote attacker to potentially spoof the contents of an iframe dialog context menu via a crafted HTML page. Chromium security severity: Low...

6.5CVSS6.9AI score0.01286EPSS
Exploits0References1
Prion
Prion
added 2023/12/06 2:15 a.m.26 views

Design/Logic Flaw

Inappropriate implementation in Web Browser UI in Google Chrome prior to 120.0.6099.62 allowed a remote attacker to potentially spoof the contents of an iframe dialog context menu via a crafted HTML page. Chromium security severity: Low...

4.3CVSS6AI score0.01286EPSS
Exploits0References6Affected Software3
Rows per page
Query Builder