CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 2026/05/05 11:24 a.m.•3 views

CVE-2026-42434 OpenClaw 2026.4.5 < 2026.4.10 - Sandbox Escape via host Parameter Override in Exec Routing

8.8CVSS6AI score0.00347EPSS

EUVD•added 2026/05/05 11:24 a.m.•6 views

EUVD-2026-27251

8.8CVSS6AI score0.00347EPSS

ATTACKERKB•added 2026/05/05 11:24 a.m.•2 views

CVE-2026-42434

8.8CVSS6AI score0.00347EPSS

Exploits0References4Affected Software1

Vulnrichment•added 2026/05/05 11:24 a.m.•1 views

CVE-2023-54345 Frappe Framework ERPNext 13.4.0 Remote Code Execution

Frappe Framework ERPNext 13.4.0 contains a sandbox escape vulnerability in RestrictedPython that allows authenticated users with System Manager role to execute arbitrary code by exploiting frame introspection. Attackers can create a server script via the /app/server-script endpoint and access the...

CVE•added 2026/05/05 11:24 a.m.•21 views

Exploits1References8

CVE-2023-54345

The CVE-2023-54345 entry concerns Frappe Framework ERPNext 13.4.0. A sandbox-escape flaw in RestrictedPython allows authenticated users with the System Manager role to execute arbitrary code by exploiting frame introspection. Attackers can create a server script via /app/server-script and access ...

Exploits1References8Affected Software1

ATTACKERKB•added 2026/05/05 11:24 a.m.•2 views

CVE-2023-54345

Exploits1References8Affected Software1

Cvelist•added 2026/05/05 11:24 a.m.•37 views

CVE-2023-54345 Frappe Framework ERPNext 13.4.0 Remote Code Execution

8.8CVSS0.00609EPSS

Exploits1References8

GithubExploit•added 2026/05/05 12:44 a.m.•106 views

Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel

CVE-2026-31431 — "Copy Fail": Linux Kernel algifaead Local...

7.8CVSS6.4AI score0.94016EPSS

Exploits227

CNNVD•added 2026/05/05 12:0 a.m.•8 views

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.96 contained a resource management vulnerability. This vulnerability stemmed from the reusing of resources after they were released in Aura, which could allow remote attackers who have compromise...

8.3CVSS6AI score0.00206EPSS

Positive Technologies•added 2026/05/05 12:0 a.m.•7 views

PT-2026-37000

Name of the Vulnerable Software and Affected Versions Frappe Framework ERPNext version 13.4.0 Description A sandbox escape in RestrictedPython allows authenticated users with the System Manager role to execute arbitrary code through frame introspection. An attacker can create a server script usin...

CNNVD•added 2026/05/05 12:0 a.m.•11 views

Exploits1References11

Google Chrome 输入验证错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.96 contained a vulnerability related to input validation errors. This vulnerability stemmed from insufficient input validation in Media components, which could allow a remote attacker with access...

8.3CVSS5.9AI score0.0022EPSS

Positive Technologies•added 2026/05/05 12:0 a.m.•6 views

PT-2026-38093

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.96 Description A heap buffer overflow exists in ANGLE, which is a compatibility layer that translates OpenGL ES calls to other graphics APIs. This issue allows a remote attacker who has already...

9.6CVSS6AI score0.00344EPSS

Exploits0References137

CNNVD•added 2026/05/05 12:0 a.m.•5 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.96 contained a security vulnerability. This vulnerability stemmed from insufficient execution of DevTools policies, which could allow remote attackers to execute sandbox escape through malicious...

8.1CVSS6AI score0.00256EPSS

8.3CVSS6AI score0.00206EPSS

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.96 contained a resource management vulnerability. This vulnerability stemmed from the reuse of resources after they were released by the GPU, which could allow remote attackers to execute a sandb...

CNNVD•added 2026/05/05 12:0 a.m.•5 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.96 contained a security vulnerability. This vulnerability stemmed from a heap buffer overflow in ANGLE, which could allow a remote attacker with access to the renderer process to execute a sandbo...

8.3CVSS6.1AI score0.00227EPSS

9.6CVSS6AI score0.00224EPSS

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.96 contained a resource management vulnerability. This vulnerability stemmed from the reusing of resources after they were released in Fullscreen mode, which could allow remote attackers to execu...

8.3CVSS5.8AI score0.00225EPSS

Google Chrome 安全漏洞

Google Chrome is a web browser developed by the American company Google. Versions of Google Chrome prior to 148.0.7778.96 contained a security vulnerability caused by an accessibility type confusion. This vulnerability could allow remote attackers to achieve sandbox escape through specially craft...

CNNVD•added 2026/05/05 12:0 a.m.•8 views

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.96 contained a resource management vulnerability. This vulnerability stemmed from the reuse of resources after they were released by ServiceWorkers, which could allow remote attackers to exploit...

8.3CVSS5.8AI score0.00206EPSS

8.3CVSS5.9AI score0.00222EPSS

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.96 contained a security vulnerability, which was caused by improper implementation of ServiceWorker. This vulnerability could allow remote attackers to execute a sandbox escape through a speciall...