Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

16784 matches found

EUVD
EUVDadded 2026/04/16 3:31 a.m.5 views

EUVD-2026-23147

MuPDF mutool does not sanitize PDF metadata fields before writing them to terminal output, allowing attackers to inject arbitrary ANSI escape sequences through crafted PDF metadata. Attackers can embed malicious ANSI escape codes in PDF metadata that are passed unsanitized to the terminal when...

4.8CVSS5.9AI score0.00166EPSS
Exploits0References3
NVD
NVDadded 2026/04/16 2:16 a.m.1 views

CVE-2026-40505

MuPDF before 1.27 contains an ANSI injection vulnerability in mutool that allows attackers to inject arbitrary ANSI escape sequences through crafted PDF metadata fields. Attackers can embed malicious ANSI escape codes in PDF metadata that are passed unsanitized to terminal output when running...

4.8CVSS0.00166EPSS
Exploits0References4
OSV
OSVadded 2026/04/16 2:16 a.m.1 views

DEBIAN-CVE-2026-40505

MuPDF before 1.27 contains an ANSI injection vulnerability in mutool that allows attackers to inject arbitrary ANSI escape sequences through crafted PDF metadata fields. Attackers can embed malicious ANSI escape codes in PDF metadata that are passed unsanitized to terminal output when running...

4.8CVSS5.5AI score0.00166EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/04/16 2:14 a.m.5 views

CVE-2026-6314

An out of bounds write flaw was found in the GPU component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=498782145...

8.3CVSS5.7AI score0.00269EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2026/04/16 2:14 a.m.2 views

CVE-2026-6311

An uninitialized use flaw was found in the Accessibility component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=498201025...

9CVSS5.7AI score0.00273EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2026/04/16 2:14 a.m.1 views

CVE-2026-6310

An use after free flaw was found in the Dawn component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=497969820...

9CVSS5.7AI score0.00251EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2026/04/16 2:14 a.m.2 views

CVE-2026-6309

An use after free flaw was found in the Viz component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=497846428...

9CVSS5.7AI score0.00251EPSS
Exploits0References5
AlpineLinux
AlpineLinuxadded 2026/04/16 1:20 a.m.11 views

CVE-2026-40505

MuPDF before 1.27 contains an ANSI injection vulnerability in mutool that allows attackers to inject arbitrary ANSI escape sequences through crafted PDF metadata fields. Attackers can embed malicious ANSI escape codes in PDF metadata that are passed unsanitized to terminal output when running...

4.8CVSS5.9AI score0.00166EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/04/16 1:20 a.m.5 views

CVE-2026-40505

MuPDF before 1.27 contains an ANSI injection vulnerability in mutool that allows attackers to inject arbitrary ANSI escape sequences through crafted PDF metadata fields. Attackers can embed malicious ANSI escape codes in PDF metadata that are passed unsanitized to terminal output when running...

4.8CVSS5.9AI score0.00166EPSS
Exploits0References5
CVE
CVEadded 2026/04/16 1:20 a.m.17 views

CVE-2026-40505

Technical details (affected product versions, root-cause specifics, and remediation steps) are not publicly provided in the supplied documents. The sources reiterate a MuPDF mutool PDF-metadata sanitization issue but do not include concrete technical specifics.

4.8CVSS5.9AI score0.00166EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2026/04/16 1:20 a.m.33 views

CVE-2026-40505 MuPDF < 1.27 mutool ANSI Injection via Metadata

MuPDF before 1.27 contains an ANSI injection vulnerability in mutool that allows attackers to inject arbitrary ANSI escape sequences through crafted PDF metadata fields. Attackers can embed malicious ANSI escape codes in PDF metadata that are passed unsanitized to terminal output when running...

4.8CVSS0.00166EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2026/04/16 1:20 a.m.2 views

CVE-2026-40505 MuPDF mutool ANSI Injection via Metadata

MuPDF mutool does not sanitize PDF metadata fields before writing them to terminal output, allowing attackers to inject arbitrary ANSI escape sequences through crafted PDF metadata. Attackers can embed malicious ANSI escape codes in PDF metadata that are passed unsanitized to the terminal when...

4.8CVSS5.9AI score0.00166EPSS
Exploits0References2
Debian CVE
Debian CVEadded 2026/04/16 1:20 a.m.1 views

CVE-2026-40505

MuPDF before 1.27 contains an ANSI injection vulnerability in mutool that allows attackers to inject arbitrary ANSI escape sequences through crafted PDF metadata fields. Attackers can embed malicious ANSI escape codes in PDF metadata that are passed unsanitized to terminal output when running...

4.8CVSS5.5AI score0.00166EPSS
Exploits0
NVD
NVDadded 2026/04/16 1:16 a.m.5 views

CVE-2026-40959

Luanti 5 before 5.15.2, when LuaJIT is used, allows a Lua sandbox escape via a crafted mod...

9.3CVSS0.00182EPSS
Exploits0References3
OSV
OSVadded 2026/04/16 1:16 a.m.1 views

DEBIAN-CVE-2026-40959

Luanti 5 before 5.15.2, when LuaJIT is used, allows a Lua sandbox escape via a crafted mod...

9.3CVSS5.2AI score0.00182EPSS
Exploits0References1
OSV
OSVadded 2026/04/16 1:16 a.m.2 views

UBUNTU-CVE-2026-40959

Luanti 5 before 5.15.2, when LuaJIT is used, allows a Lua sandbox escape via a crafted mod...

9.3CVSS5.8AI score0.00182EPSS
Exploits0References6
Vulnrichment
Vulnrichmentadded 2026/04/16 12:51 a.m.0 views

CVE-2026-40959

Luanti 5 before 5.15.2, when LuaJIT is used, allows a Lua sandbox escape via a crafted mod...

9.3CVSS5.8AI score0.00182EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2026/04/16 12:51 a.m.3 views

CVE-2026-40959

Luanti 5 before 5.15.2, when LuaJIT is used, allows a Lua sandbox escape via a crafted mod...

9.3CVSS5.8AI score0.00182EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2026/04/16 12:51 a.m.20 views

CVE-2026-40959

Luanti 5 before 5.15.2, when LuaJIT is used, allows a Lua sandbox escape via a crafted mod...

9.3CVSS0.00182EPSS
Exploits0References3
CVE
CVEadded 2026/04/16 12:51 a.m.17 views

CVE-2026-40959

CVE-2026-40959 affects Luanti 5.x prior to 5.15.2. When using LuaJIT, a crafted mod can cause a Lua sandbox escape. The issue is described in multiple sources as Luanti 5 before 5.15.2, with the sandbox escape vulnerability carrying a high impact in CVSS (high confidentiality, integrity, and avai...

9.3CVSS5.8AI score0.00182EPSS
Exploits0References3
Rows per page
Query Builder