Lucene search
K

43 matches found

Malwarebytes
Malwarebytes
added 2026/06/09 10:50 a.m.13 views

Update Chrome: Google patches actively exploited vulnerability and 73 others

Google has issued updates for the Chrome browser, patching a number of high‑severity vulnerabilities. The update includes fixes for 74 vulnerabilities, including one that is being actively exploited in the wild. The stable channel has been updated to 149.0.7827.102/.103 for Windows/Mac, and...

8.8CVSS6.4AI score0.01654EPSS
Exploits4
Positive Technologies
Positive Technologies
added 2026/03/16 12:0 a.m.6 views

PT-2026-25743

microsoftupdate securityupdate Edge Microsoft Edge Stable Channel Version 146.0.3856.59 ・CVE-2025-0385 ・CVE-2026-3910 「The Chromium team reported that CVE-2026-3910 has an exploit in the wild, and this update contains a fix for it.」...

8.8CVSS5.8AI score0.02EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2026/03/14 5:11 a.m.17 views

Chromium: CVE-2026-3910 Inappropriate implementation in V8

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. Google is aware that an exploit for CVE-2026-3910 exists in the wild...

8.8CVSS6.1AI score0.02EPSS
Exploits0
Information Security Automation
Information Security Automation
added 2026/03/12 9:6 a.m.13 views

About Elevation of Privilege - Windows RDS (CVE-2026-21533) vulnerability

About Elevation of Privilege - Windows RDS CVE-2026-21533 vulnerability. The vulnerability is from the February Microsoft Patch Tuesday. Remote Desktop Services RDS is a component of Microsoft Windows that allows a user to initiate and control an interactive session on a remote computer or virtua...

7.8CVSS6AI score0.03846EPSS
Exploits5
Information Security Automation
Information Security Automation
added 2026/03/09 10:59 p.m.48 views

About Remote Code Execution – Windows Shell (CVE-2026-21510) vulnerability

About Remote Code Execution - Windows Shell CVE-2026-21510 vulnerability. A vulnerability from the February Microsoft Patch Tuesday. The Windows Shell is the primary interface through which users interact with the Windows operating system. It includes visible elements such as the Desktop, Taskbar...

8.8CVSS6.6AI score0.25835EPSS
Exploits3
Rapid7 Blog
Rapid7 Blog
added 2026/01/14 5:13 a.m.18 views

Patch Tuesday - January 2026

Microsoft is publishing 114 vulnerabilities this January 2026 Patch Tuesday. Today’s menu includes just one vulnerability marked as exploited in the wild, as well as two vulnerabilities where Microsoft is aware of public disclosure. There are no critical remote code execution or elevation of...

7.8CVSS8.7AI score0.17312EPSS
Exploits6
OPENSUSE Linux
OPENSUSE Linux
added 2025/12/14 12:0 a.m.9 views

Security update for chromium (important)

openSUSE security update: security update for chromium ------------------------------------------------------------- Announcement ID: openSUSE-SU-2025-20161-1 Rating: important References: bsc1254776 Cross-References: CVE-2025-14372 CVE-2025-14373 Affected Products: openSUSE Leap 16.0...

6.1CVSS7.2AI score0.00277EPSS
Exploits0References1
Malwarebytes
Malwarebytes
added 2025/12/11 11:58 a.m.9 views

[Updated] Another Chrome zero-day under attack: update now

Google issued an extra patch for a security vulnerability in Chrome that is being actively exploited, and it's urging users to update. The patch fixes three flaws in Chrome, and for one of them Google says an exploit already exists in the wild. Chrome is by far the world’s most popular browser,...

9.8CVSS7.9AI score0.22721EPSS
Exploits22
Wiz blog
Wiz blog
added 2025/12/10 3:0 p.m.8 views

Gogs 0-Day Exploited in the Wild

Wiz Threat Research has observed exploitation in-the-wild of CVE-2025-8110...

8.8CVSS7AI score0.7654EPSS
Exploits16
The Hacker News
The Hacker News
added 2025/11/18 4:44 a.m.26 views

Google Issues Security Fix for Actively Exploited Chrome V8 Zero-Day Vulnerability

Google on Monday released security updates for its Chrome browser to address two security flaws, including one that has come under active exploitation in the wild. The vulnerability in question is CVE-2025-13223 CVSS score: 8.8, a type confusion vulnerability in the V8 JavaScript and WebAssembly...

9.8CVSS7.5AI score0.09185EPSS
Exploits16
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-3029

Malware in sbrugna...

7.5CVSS6.4AI score0.01749EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/08/26 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-30355

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Synapse is an open source Matrix homeserver implementation. A malicious server can craft events which, when received, prevent Synapse version up to 1.127.0 from...

7.5CVSS5.4AI score0.01157EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2025/07/16 11:31 p.m.11 views

Chromium: CVE-2025-6558 Incorrect validation of untrusted input in ANGLE and GPU

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. Google is aware that an exploit for CVE-2025-6558 exists in the wild...

8.8CVSS6.9AI score0.09185EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/07/02 12:0 a.m.10 views

Chromium: CVE-2025-6554 Type Confusion in V8

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. Google is aware that an exploit for CVE-2025-6554 exists in the wild...

8.1CVSS6.9AI score0.06564EPSS
Exploits5
NVD
NVD
added 2025/05/28 5:15 p.m.17 views

CVE-2025-48929

The TeleMessage service through 2025-05-05 implements authentication through a long-lived credential e.g., not a token with a short expiration time that can be reused at a later date if discovered by an adversary...

9.8CVSS0.00282EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2025/03/26 12:0 a.m.2 views

VulnCheck KEV: CVE-2025-30355

Synapse is an open source Matrix homeserver implementation. A malicious server can craft events which, when received, prevent Synapse version up to 1.127.0 from federating with other servers. The vulnerability has been exploited in the wild and has been fixed in Synapse v1.127.1. No known...

7.5CVSS5.7AI score0.01157EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/08/13 12:0 a.m.4 views

PT-2024-5630 · Microsoft · Windows Power Dependency Coordinator +1

Name of the Vulnerable Software and Affected Versions: Windows Power Dependency Coordinator affected versions not specified Description: The issue is related to the use of memory after it has been freed, which can allow an attacker to elevate their privileges. A successful exploit may allow for...

7.8CVSS8.5AI score0.01635EPSS
Exploits0References20
ATTACKERKB
ATTACKERKB
added 2024/07/01 12:0 a.m.105 views

CVE-2024-38475

Improper escaping of output in modrewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to map URLs to filesystem locations that are permitted to be served by the server but are not intentionally/directly reachable by any URL, resulting in code execution or source code disclosure...

9.1CVSS7.8AI score0.99957EPSS
In wildExploits1References3
Microsoft CVE
Microsoft CVE
added 2024/05/25 3:41 p.m.70 views

Chromium: CVE-2024-5274 Type Confusion in V8

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. Google is aware that an exploit for CVE-2024-5274 exists in the wild...

9.6CVSS8.7AI score0.1002EPSS
Exploits3
OSV
OSV
added 2023/12/26 10:29 a.m.17 views

MGASA-2023-0355 New chromium-browser-stable 120.0.6099.129 fixes bugs and vulnerabilities

The chromium-browser-stable package has been updated to the 120.0.6099.129 release, fixing bugs and 20 vulnerabilities, together with 120.0.6099.109, 120.0.6099.71 and 120.0.6099.62; some of them are listed below. High CVE-2023-6508: Use after free in Media Stream. Reported by Cassidy...

8.8CVSS8.3AI score0.4351EPSS
Exploits3References7
Rows per page
Query Builder