Lucene search
K

1259 matches found

euvd
euvd
added 4 days ago8 views

EUVD-2026-42456

Inappropriate implementation in WebGL in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: High...

6.1AI score0.00139EPSS
Exploits0References3
euvd
euvd
added 5 days ago6 views

EUVD-2026-42202

Local attackers with a X connection able to provide GLX commit to the X server xorg-server before 21.2.24 and xwayland before 24.1.13 could cause a Heap Use After Free, due to CommonMakeCurrent pointing into potentially reallocated memory...

9CVSS6AI score0.00192EPSS
Exploits0References2
euvd
euvd
added 2026/07/06 6:0 a.m.5 views

EUVD-2026-41812

The FileOrganizer WordPress plugin before 1.1.9, Advanced File Manager WordPress plugin before 5.4.12, File Manager Pro WordPress plugin before 2.1.1, File Manager WordPress plugin before 8.0.4 do not properly escape a parameter before passing it to a shell command when processing image operation...

9.1CVSS6AI score0.00902EPSS
Exploits0References1
cve
cve
added 2026/07/01 10:21 p.m.14 views

CVE-2026-14388

The CVE-2026-14388 describes an out-of-bounds read in ANGLE used by Google Chrome, allowing a remote attacker to leak potentially sensitive data from process memory via a crafted HTML page. Affected software: Google Chrome/ANGLE; vulnerable component is ANGLE in the browser. The issue is triggere...

6.5CVSS5.8AI score0.00263EPSS
Exploits0References2Affected Software1
cve
cve
added 2026/06/30 10:37 p.m.17 views

CVE-2026-13834

The CVE-2026-13834 entry documents an issue in ANGLE used by Google Chrome before version 150.0.7871.47, where insufficient validation of untrusted input allowed a renderer-compromised attacker to potentially escape the sandbox via a crafted HTML page. The vulnerability is tied to the ANGLE compo...

8.3CVSS5.8AI score0.00297EPSS
Exploits0References2Affected Software1
debiancve
debiancve
added 2026/06/30 10:37 p.m.5 views

CVE-2026-13781

Insufficient validation of untrusted input in Skia in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

9.6CVSS5.8AI score0.00314EPSS
Exploits0
nvd
nvd
added 2026/06/24 7:17 p.m.8 views

CVE-2026-13028

Use after free in WebGL in Google Chrome on Android prior to 149.0.7827.197 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

9.6CVSS0.00217EPSS
Exploits0References2
debiancve
debiancve
added 2026/06/24 6:43 p.m.5 views

CVE-2026-13032

Use after free in WebGL in Google Chrome on Android prior to 149.0.7827.197 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

9.6CVSS5.9AI score0.00217EPSS
Exploits0
cvelist
cvelist
added 2026/06/24 6:43 p.m.35 views

CVE-2026-13028

Use after free in WebGL in Google Chrome on Android prior to 149.0.7827.197 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

0.00217EPSS
Exploits0References2
fedora
fedora
added 2026/06/23 1:9 a.m.7 views

[SECURITY] Fedora 44 Update: thorvg-1.0.6-1.fc44

ThorVG is an open-source graphics library designed for creating vector-based scenes and animations. It combines immense power with remarkable lightweight efficiency, as Thor embodies a dual meaning=E2=80=94symbolizing both thundero us strength and lightning-fast agility. Embracing the philosophy ...

4.3CVSS5.8AI score0.00235EPSS
Exploits0
fedora
fedora
added 2026/06/19 1:1 a.m.9 views

[SECURITY] Fedora 44 Update: perl-GD-2.86-1.fc44

This is a auto-loadable interface module for GD, a popular library for creating and manipulating PNG files. With this library you can create PNG images on the fly or modify existing files...

9.8CVSS5.1AI score0.01353EPSS
Exploits1
susecve
susecve
added 2026/06/15 1:28 a.m.11 views

SUSE CVE-2026-11526

GD versions before 2.86 for Perl allow OS command injection and file overwrite via a 2-arg open of filename arguments in makefilehandle. GD::Image::makefilehandle opens a filename argument with Perl's 2-arg open, so a filename that begins or ends with a pipe "| cmd", "cmd |" or begins with a...

8.4CVSS5.5AI score0.01353EPSS
Exploits0References3
nvd
nvd
added 2026/06/14 12:16 p.m.10 views

CVE-2026-11526

GD versions before 2.86 for Perl allow OS command injection and file overwrite via a 2-arg open of filename arguments in makefilehandle. GD::Image::makefilehandle opens a filename argument with Perl's 2-arg open, so a filename that begins or ends with a pipe "| cmd", "cmd |" or begins with a...

9.8CVSS0.01353EPSS
Exploits0References4
susecve
susecve
added 2026/06/06 2:53 a.m.11 views

SUSE CVE-2026-11051

Out of bounds read in ANGLE in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.5AI score0.00229EPSS
Exploits0References3
euvd
euvd
added 2026/06/05 12:31 a.m.10 views

EUVD-2026-34652

Out of bounds memory access in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00272EPSS
Exploits0References3
euvd
euvd
added 2026/06/05 12:31 a.m.10 views

EUVD-2026-34538

Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.0025EPSS
Exploits0References3
euvd
euvd
added 2026/06/05 12:31 a.m.10 views

EUVD-2026-34521

Use after free in WebGL in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00229EPSS
Exploits0References3
nessus
nessus
added 2026/06/05 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2026-11043

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Out of bounds write in ANGLE in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially...

9.6CVSS5.5AI score0.00301EPSS
Exploits0References2
osv
osv
added 2026/06/04 11:17 p.m.5 views

DEBIAN-CVE-2026-11066

Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

9.6CVSS5.5AI score0.00253EPSS
Exploits0References1
nvd
nvd
added 2026/06/04 11:17 p.m.9 views

CVE-2026-10979

Out of bounds read in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

6.5CVSS0.00308EPSS
Exploits0References2
Rows per page
Query Builder