Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:47 p.m.8 views

CVE-2026-45244

Summarize prior to 0.15.1 contains a missing authorization vulnerability that allows attackers to execute browser automation actions without per-call user approval when the extension automation feature is enabled. Attackers can influence the agent through malicious page or summary content to invo...

5.4CVSS5.5AI score0.00227EPSS
Exploits1References1
Github Security Blog
Github Security Blog
added 2026/05/18 9:31 p.m.10 views

Summarize contains a missing authorization vulnerability

Summarize prior to 0.15.0 contains a missing authorization vulnerability that allows attackers to execute browser automation actions without per-call user approval when the extension automation feature is enabled. Attackers can influence the agent through malicious page or summary content to invo...

5.4CVSS5.9AI score0.00227EPSS
Exploits1References7Affected Software1
NVD
NVD
added 2026/05/18 8:16 p.m.18 views

CVE-2026-45244

Summarize prior to 0.15.1 contains a missing authorization vulnerability that allows attackers to execute browser automation actions without per-call user approval when the extension automation feature is enabled. Attackers can influence the agent through malicious page or summary content to invo...

5.4CVSS0.00227EPSS
Exploits1References4
EUVD
EUVD
added 2026/05/18 6:57 p.m.28 views

EUVD-2026-30796

Summarize prior to 0.15.1 contains a missing authorization vulnerability that allows attackers to execute browser automation actions without per-call user approval when the extension automation feature is enabled. Attackers can influence the agent through malicious page or summary content to invo...

5.4CVSS5.9AI score0.00227EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/05/18 6:57 p.m.13 views

CVE-2026-45244 Summarize < 0.15.1 Unapproved Browser Automation Execution

Summarize prior to 0.15.1 contains a missing authorization vulnerability that allows attackers to execute browser automation actions without per-call user approval when the extension automation feature is enabled. Attackers can influence the agent through malicious page or summary content to invo...

5.4CVSS5.9AI score0.00227EPSS
Exploits1References4
CVE
CVE
added 2026/05/18 6:57 p.m.18 views

CVE-2026-45244

CVE-2026-45244 affects the Summarize extension prior to version 0.15.1 . The vulnerability is a missing authorization flaw that lets attackers execute browser automation actions without per-call user approval when the extension automation feature is enabled. Attackers can influence the agent via ...

5.4CVSS5.9AI score0.00227EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2026/05/18 6:57 p.m.33 views

CVE-2026-45244 Summarize < 0.15.1 Unapproved Browser Automation Execution

Summarize prior to 0.15.1 contains a missing authorization vulnerability that allows attackers to execute browser automation actions without per-call user approval when the extension automation feature is enabled. Attackers can influence the agent through malicious page or summary content to invo...

5.4CVSS0.00227EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2026/05/18 6:57 p.m.9 views

CVE-2026-45244

Summarize prior to 0.15.1 contains a missing authorization vulnerability that allows attackers to execute browser automation actions without per-call user approval when the extension automation feature is enabled. Attackers can influence the agent through malicious page or summary content to invo...

5.4CVSS5.9AI score0.00227EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/05/18 12:0 a.m.19 views

PT-2026-41723

Name of the Vulnerable Software and Affected Versions Summarize versions prior to 0.15.1 Description A missing authorization issue allows attackers to execute browser automation actions without per-call user approval when the extension automation feature is enabled. By using malicious page or...

5.4CVSS5.9AI score0.00227EPSS
Exploits1References7
Rows per page
Query Builder