Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3072 matches found

AstraLinux
AstraLinuxadded 5 days ago4 views

Astra Linux – Vulnerability in poppler-22

A vulnerability in Outline.cc for Poppler prior to version 23.06.0 allows a remote attacker to cause a Denial of Service DoS attack through a crafted PDF file using the OutlineItem::open method...

5.5CVSS6.7AI score0.0087EPSS
Exploits1References2
Debian CVE
Debian CVEadded last week6 views

CVE-2026-12460

Insufficient policy enforcement in File System Access in Google Chrome prior to 149.0.7827.155 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted PDF file. Chromium security severity: High...

4.2CVSS5.3AI score0.00153EPSS
Exploits0
Positive Technologies
Positive Technologiesadded 2026/06/17 12:0 a.m.13 views

PT-2026-50210

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.155 Description Insufficient policy enforcement in File System Access allows a remote attacker who has compromised the renderer process to bypass site isolation by using a crafted PDF file. Site...

9.6CVSS5.9AI score0.00537EPSS
Exploits0References40
Tenable Nessus
Tenable Nessusadded 2026/06/16 12:0 a.m.8 views

Alibaba Cloud Linux 3 : 0159: poppler (ALINUX3-SA-2026:0159)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2026:0159 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2026-10118: A flaw was found in Poppler's Splas...

7.8CVSS6.1AI score0.00252EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2026/06/12 2:32 a.m.11 views

SUSE CVE-2026-10118

A flaw was found in Poppler's Splash backend. A remote attacker could exploit this vulnerability by crafting a malicious PDF file that, when rendered, triggers an integer overflow in the tilingPatternFill function. This overflow leads to an undersized heap memory allocation, allowing a subsequent...

7.8CVSS5.7AI score0.00252EPSS
Exploits0References5
NVD
NVDadded 2026/06/09 12:16 a.m.8 views

CVE-2026-11670

Use after free in PDF in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. Chromium security severity: High...

8.8CVSS0.00224EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2026/06/09 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-11670

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in PDF in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file...

8.8CVSS5.8AI score0.00224EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/06/08 11:27 p.m.32 views

CVE-2026-11670

Use after free in PDF in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. Chromium security severity: High...

0.00224EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/06/08 11:27 p.m.5 views

CVE-2026-11670

Use after free in PDF in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. Chromium security severity: High...

8.8CVSS6AI score0.00224EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVEadded 2026/06/08 11:27 p.m.8 views

CVE-2026-11670

Use after free in PDF in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. Chromium security severity: High...

8.8CVSS6AI score0.00224EPSS
Exploits0
SUSE CVE
SUSE CVEadded 2026/06/07 4:50 a.m.6 views

SUSE CVE-2026-10945

Use after free in PDF in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code inside a sandbox via a crafted PDF file. Chromium security severity: High...

8.8CVSS6AI score0.0036EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2026/06/07 4:39 a.m.7 views

SUSE CVE-2026-11303

Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. Chromium security severity: Low...

8.8CVSS6AI score0.00236EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2026/06/07 4:39 a.m.7 views

SUSE CVE-2026-11304

Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. Chromium security severity: Low...

8.8CVSS5.5AI score0.00187EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2026/06/07 4:38 a.m.6 views

SUSE CVE-2026-11305

Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. Chromium security severity: Low...

8.8CVSS6AI score0.00228EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2026/06/07 4:38 a.m.6 views

SUSE CVE-2026-11306

Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. Chromium security severity: Low...

8.8CVSS6AI score0.00224EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2026/06/07 4:38 a.m.10 views

SUSE CVE-2026-11307

Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. Chromium security severity: Low...

8.8CVSS6AI score0.00228EPSS
Exploits0References2
EUVD
EUVDadded 2026/06/05 12:31 a.m.7 views

EUVD-2026-34394

Use after free in PDF in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code inside a sandbox via a crafted PDF file. Chromium security severity: High...

8.8CVSS6.2AI score0.0036EPSS
Exploits0References3
OSV
OSVadded 2026/06/05 12:17 a.m.2 views

DEBIAN-CVE-2026-11304

Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. Chromium security severity: Low...

8.8CVSS5.5AI score0.00187EPSS
Exploits0References1
NVD
NVDadded 2026/06/05 12:17 a.m.12 views

CVE-2026-11303

Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. Chromium security severity: Low...

8.8CVSS0.00236EPSS
Exploits0References2
NVD
NVDadded 2026/06/05 12:17 a.m.10 views

CVE-2026-11305

Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. Chromium security severity: Low...

8.8CVSS0.00228EPSS
Exploits0References2
Rows per page
Query Builder