Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

Microsoft CVE
Microsoft CVEadded 2026/06/05 2:0 p.m.13 views

Chromium: CVE-2026-11062 Insufficient policy enforcement in Extensions

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS5.4AI score0.00135EPSS
Exploits0
Microsoft CVE
Microsoft CVEadded 2026/05/27 8:17 a.m.7 views

Invoking key constraints not enforced in golang.org/x/crypto/ssh/agent

...

9.1CVSS5.4AI score0.0036EPSS
Exploits0
EUVD
EUVDadded 2026/05/14 7:52 p.m.11 views

EUVD-2026-30390

Insufficient policy enforcement in Network in Google Chrome on Android prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.0016EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/05/14 12:0 a.m.8 views

PT-2026-41112

Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 148.0.7778.168 Description Insufficient policy enforcement in WebXR allows a remote attacker who has compromised the renderer process to obtain potentially sensitive information from process memory vi...

8.8CVSS5.8AI score0.00498EPSS
Exploits0References85
Cvelist
Cvelistadded 2025/11/18 12:5 p.m.9 views

CVE-2025-9312 Improper Certificate-Based Authentication Enforcement in Multiple WSO2 Products

A missing authentication enforcement vulnerability exists in the mutual TLS mTLS implementation used by System REST APIs and SOAP services in multiple WSO2 products. Due to improper validation of client certificate–based authentication in certain default configurations, the affected components ma...

9.8CVSS0.00222EPSS
Exploits0References1
CVE
CVEadded 2025/11/14 1:58 p.m.11 views

CVE-2025-12149

In CVE-2025-12149, Search Guard FLX ≤3.1.2 fails to enforce Document-Level Security when a Signals-watch triggers a search, potentially allowing access to all documents in the queried indices. Affected component: Search Guard FLX; root cause: DLS enforcement gap specific to Signals-triggered sear...

6CVSS6.4AI score0.00247EPSS
Exploits0References3
SUSE CVE
SUSE CVEadded 2023/02/15 3:56 a.m.2 views

SUSE CVE-2020-15984

Insufficient policy enforcement in Omnibox in Google Chrome on iOS prior to 86.0.4240.75 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted URL...

6.5CVSS6.8AI score0.01281EPSS
Exploits0References6
OSV
OSVadded 2022/11/30 12:15 a.m.1 views

UBUNTU-CVE-2022-4189

Insufficient policy enforcement in DevTools in Google Chrome prior to 108.0.5359.71 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension. Chromium security severity: Medium...

4.3CVSS7.3AI score0.00393EPSS
Exploits0References4
OSV
OSVadded 2021/02/09 2:15 p.m.3 views

DEBIAN-CVE-2021-21126

Insufficient policy enforcement in extensions in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to bypass site isolation via a crafted Chrome Extension...

6.5CVSS7.1AI score0.08726EPSS
Exploits0References1
OSV
OSVadded 2019/11/25 3:15 p.m.3 views

UBUNTU-CVE-2019-13697

Insufficient policy enforcement in performance APIs in Google Chrome prior to 77.0.3865.120 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

6.5CVSS7.2AI score0.00766EPSS
Exploits0References2
Rows per page
Query Builder