CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

ATTACKERKB•added 2026/04/08 9:20 p.m.•1 views

CVE-2026-5901

5.9AI score0.00022EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2026/04/08 9:20 p.m.•0 views

CVE-2026-5901

5.8AI score0.00022EPSS

AlpineLinux•added 2026/04/08 9:20 p.m.•1 views

CVE-2026-5901

6.5CVSS8.3AI score0.00022EPSS

Debian CVE•added 2026/04/08 9:20 p.m.•2 views

CVE-2026-5901

6.5CVSS8.3AI score0.00022EPSS

CVE•added 2026/04/08 9:20 p.m.•4 views

CVE-2026-5901

CVE-2026-5901 describes insufficient policy enforcement in Chrome’s DevTools prior to 147.0.7727.55, enabling a user-assisted attack where persuading a user to install a malicious extension could bypass enterprise host restrictions for cookie modification via the extension. The affected component...

6.5CVSS5.9AI score0.00022EPSS

Exploits0References2Affected Software1

Cvelist•added 2026/04/08 9:20 p.m.•14 views

CVE-2026-5901

0.00022EPSS

Kaspersky•added 2026/04/07 12:0 a.m.•5 views

KLA90973 Multiple vulnerabilities in Google Chrome

Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, obtain sensitive information, execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. Policy bypa...

9.6CVSS7.7AI score0.00161EPSS

CNNVD•added 2026/04/07 12:0 a.m.•3 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by the American company Google. Versions of Google Chrome prior to 147.0.7727.55 contained a security vulnerability. This vulnerability stemmed from insufficient execution of DevTools policies, which could allow attackers to bypass corporate host...

6.5CVSS7.4AI score0.00022EPSS

OpenVAS•added 2026/04/06 12:0 a.m.•4 views

Fedora: Security Advisory (FEDORA-2026-5e16254ca6)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9AI score

Tenable Nessus•added 2026/04/05 12:0 a.m.•2 views

Fedora 42 : gst-devtools / gst-editing-services / gstreamer1 / gstreamer1-doc / etc (2026-5e16254ca6)

The remote Fedora 42 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2026-5e16254ca6 advisory. 1.26.11 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this issue but...

6AI score

Exploits0References1

vulnersOsv•added 2026/04/03 9:45 p.m.•1 views

@afidos/nestjs-event-notifications (>=2.2.1 <=2.2.2), @mieweb/wikigdrive (>=2.15.0 <=2.17.1) +3 more potentially affected by CVE-2026-34217 via @nyariv/sandboxjs (>=0.5.3 <=0.8.25)

@nyariv/sandboxjs NPM version =0.5.3, =2.2.1, =2.15.0, =0.2.0, =11.0.0, =12.0.1 Source cves: CVE-2026-34217 Source advisory: SNYK:JS-NYARIVSANDBOXJS-15909756...

7.2CVSS5.8AI score0.00101EPSS

Exploits1

vulnersOsv•added 2026/04/03 9:44 p.m.•3 views

@afidos/nestjs-event-notifications (>=2.2.1 <=2.2.2), @mieweb/wikigdrive (>=2.15.0 <=2.17.1) +3 more potentially affected by CVE-2026-34208 via @nyariv/sandboxjs (>=0.5.3 <=0.8.25)

@nyariv/sandboxjs NPM version =0.5.3, =2.2.1, =2.15.0, =0.2.0, =11.0.0, =12.0.1 Source cves: CVE-2026-34208 Source advisory: SNYK:JS-NYARIVSANDBOXJS-15909755...

10CVSS5.8AI score0.00268EPSS

Exploits1

OpenVAS•added 2026/04/01 12:0 a.m.•1 views

Fedora: Security Advisory (FEDORA-2026-e77ad9d792)

5.9AI score

Tenable Nessus•added 2026/03/31 12:0 a.m.•3 views

Fedora 43 : gst-devtools / gst-editing-services / gstreamer1 / gstreamer1-doc / etc (2026-e77ad9d792)

The remote Fedora 43 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2026-e77ad9d792 advisory. 1.26.11 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this issue but...

6AI score

Exploits0References1

NVD•added 2026/03/29 1:17 p.m.•1 views

CVE-2026-32972

OpenClaw before 2026.3.11 contains an authorization bypass vulnerability allowing authenticated operators with only operator.write permission to access admin-only browser profile management routes through browser.request. Attackers can create or modify browser profiles and persist...

7.1CVSS0.00016EPSS

RedhatCVE•added 2026/03/26 3:6 p.m.•1 views

CVE-2026-22174

OpenClaw versions prior to 2026.2.22 inject the x-OpenClaw-relay-token header into Chrome CDP probe traffic on loopback interfaces, allowing local processes to capture the Gateway authentication token. An attacker controlling a loopback port can intercept CDP reachability probes to the...

6.8CVSS5.8AI score0.00028EPSS

Exploits0References1

CNVD•added 2026/03/25 12:0 a.m.•2 views

Google Chrome Security Bypass Vulnerability (CNVD-2026-15408)

Google Chrome is a web browser from Google, an American company. A security bypass vulnerability exists in Google Chrome due to insufficient policy enforcement in DevTools, which can be exploited by attackers to bypass security restrictions...

4.3CVSS5.9AI score0.00042EPSS

CNVD•added 2026/03/25 12:0 a.m.•1 views

Google Chrome Security Bypass Vulnerability (CNVD-2026-15398)

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a security bypass vulnerability caused by insufficient policy enforcement in DevTools, which can be exploited by an attacker to bypass navigation restrictions via specially crafted HTML pages...

5.3CVSS5.9AI score0.00032EPSS

OSV•added 2026/03/18 2:16 a.m.•0 views

CVE-2026-22174

6.1CVSS5.9AI score