CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

8.1CVSS7.4AI score0.00611EPSS

Astra Linux – Vulnerability in openjdk-11

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, and Oracle GraalVM Enterprise Edition products of Oracle Java SE component: 2D. The supported versions affected by this vulnerability are Oracle Java SE: 8u451, 8u451-perf, 11.0.27, 17.0.15, 21.0.7, 24.0.1; Oracle GraalVM for JDK:...

8.8CVSS8AI score0.02517EPSS

Astra Linux – Vulnerability in Chromium

Type confusion in V8 in Google Chrome prior to 90.0.4430.212 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

6.5CVSS6.4AI score0.01081EPSS

Astra Linux – Vulnerability in ffmpeg

Buffer overflow vulnerability in FFmpeg 4.2, located in the convolutiony10bit section of libavfilter/vfvmafmotion.c, which could allow a remote malicious user to cause a Denial of Service attack...

8.8CVSS5.5AI score0.00226EPSS

Astra Linux – Vulnerability in Chromium

The use of “after free” in Media Stream in Google Chrome before version 143.0.7499.41 allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: Low...

8.8CVSS6.8AI score0.01992EPSS

Astra Linux – Vulnerability in Chromium

Type confusion in V8 in Google Chrome prior to 92.0.4515.107 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

Exploits1References1

6.3CVSS6.2AI score0.00193EPSS

Astra Linux – Vulnerability in edk2

EDK2 contains a vulnerability in the BIOS, where a user can cause an Integer Overflow or Wrap-around error through network means. Successful exploitation of this vulnerability may lead to a denial of service...

8.1CVSS8.1AI score0.01185EPSS

Astra Linux – Vulnerability in Chromium

In V8, the "out of bounds" reading in Google Chrome before version 91.0.4472.77 allowed a remote attacker to potentially exploit stack corruption through a crafted HTML page...

Exploits1References1

AstraLinux•added 2026/06/19 11:10 a.m.•3 views

Astra Linux – Vulnerability in Chromium

Before version 95.0.4638.69, using free after signing in in Google Chrome allowed a remote attacker who convinced a user to sign in to Chrome to potentially exploit heap corruption through a crafted HTML page...

8.8CVSS8.1AI score0.00942EPSS

AstraLinux•added 2026/06/19 11:10 a.m.•9 views

Astra Linux – Vulnerability in binutils

A flaw has been discovered in GNU Binutils 2.45. The affected function is bfdelfparseehframe in the file bfd/elf-eh-frame.c of the Linker component. Executing certain manipulations can lead to a heap-based buffer overflow. This attack is limited to local executions. The exploit has been published...

7.8CVSS6.2AI score0.00234EPSS

9.8CVSS8.3AI score0.02037EPSS

Astra Linux – Vulnerability in unbound

Unbound before version 1.9.5 allows for an integer overflow in the size calculation in dnscrypt/dnscrypt.c. NOTE: The vendor denies that this is a vulnerability. Although the code may be vulnerable, an active Unbound installation cannot be exploited remotely or locally...

5.5CVSS5.2AI score0.00194EPSS

Astra Linux – Vulnerability in binutils

A vulnerability was discovered in GNU Binutils 2.45. The affected function is bfdx86elflatesizesections in the file bfd/elfxx-x86.c of the Linker component. This vulnerability leads to out-of-bounds read attacks. The attack must be approached locally. The exploit has been made public and can be...

AstraLinux•added 2026/06/19 11:10 a.m.•3 views

Astra Linux – Vulnerability in Chromium

The use of “after free” in Compositing in Google Chrome before version 131.0.6778.204 allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: High...

8.8CVSS7.3AI score0.00303EPSS

6.5CVSS7AI score0.00792EPSS

Astra Linux – Vulnerability in Chromium

Inappropriate implementation in the iFrame Sandbox in Google Chrome prior to 95.0.4638.54 allowed a remote attacker to bypass navigation restrictions through a crafted HTML page...

8.8CVSS8.1AI score0.01101EPSS

Astra Linux – Vulnerability in Chromium

Before version 91.0.4472.101, using Autofill in Google Chrome allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page...

AstraLinux•added 2026/06/19 11:10 a.m.•13 views

Astra Linux – Vulnerability in SOX

There is a heap-based buffer overflow vulnerability in the sphere.c startread function of the Sound Exchange libsox 14.4.2 version and the main commit 42b3557e. A specially crafted file can lead to a heap buffer overflow. An attacker can provide a malicious file to exploit this vulnerability...

10CVSS8.7AI score0.02148EPSS

8.8CVSS8.4AI score0.00876EPSS

Astra Linux – Vulnerability in Chromium

Type confusion in Blink layout in Google Chrome prior to 93.0.4577.82 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

4.3CVSS6.8AI score0.00845EPSS

Astra Linux – Vulnerability in Chromium

Inappropriate implementations of Skia in Google Chrome prior to version 88.0.4324.146 allowed a local attacker to spoof the contents of the Omnibox URL bar through a crafted HTML page...

Exploits0References1

AstraLinux•added 2026/06/19 11:10 a.m.•23 views

Astra Linux – Vulnerability in Chromium

The use of Translate in Google Chrome before version 131.0.6778.139 allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: High...

8.8CVSS7.7AI score0.04071EPSS

AstraLinux•added 2026/06/19 11:10 a.m.•20 views

Astra Linux – Vulnerability in Chromium

The use of after-free in the Serial mechanism in Google Chrome before version 130.0.6723.116 allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: High...

8.8CVSS7.3AI score0.00637EPSS