Lucene search
K

184 matches found

Cvelist
Cvelist
added 2026/07/07 6:45 a.m.30 views

CVE-2026-5730 IDOR in Idvlabs' Ontime

Authorization bypass through User-Controlled key vulnerability in Idvlabs Software and Consulting Services Inc. Ontime allows Exploitation of Trusted Identifiers. This issue affects Ontime: through 04052026...

7.5CVSS0.00246EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/07/01 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2026-13811

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in IME in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page...

8.8CVSS6.3AI score0.00351EPSS
Exploits0References2
OSV
OSV
added 2026/06/30 11:16 p.m.4 views

DEBIAN-CVE-2026-13811

Use after free in IME in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.2AI score0.00351EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/06/30 10:37 p.m.7 views

CVE-2026-13811

Use after free in IME in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.2AI score0.00351EPSS
Exploits0
CVE
CVE
added 2026/06/30 10:37 p.m.19 views

CVE-2026-13811

CVE-2026-13811 describes a use-after-free in the IME component of Google Chrome prior to 150.0.7871.47, allowing a remote attacker to execute arbitrary code inside the sandbox via a crafted HTML page. The vulnerability affects Chrome’s input-method editor (IME) and is labeled with High severity. ...

8.8CVSS6.2AI score0.00351EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/06/30 10:37 p.m.25 views

CVE-2026-13811

Use after free in IME in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

0.00351EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/30 12:0 a.m.7 views

PT-2026-54088

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description A use after free issue exists in the Input Method Editor IME, a system that allows users to enter complex characters using a keyboard. This flaw allows a remote attacker to execute...

9.8CVSS6.3AI score0.00413EPSS
Exploits0References449
Microsoft KB
Microsoft KB
added 2025/12/09 8:0 a.m.26 views

October 14, 2025—KB5066780 (OS Build 25398.1913)

None None...

9.9CVSS7.4AI score0.06003EPSS
Exploits7
Fedora
Fedora
added 2025/11/07 1:30 a.m.10 views

[SECURITY] Fedora 42 Update: fcitx5-chewing-5.1.9-1.fc42

fcitx5-chewing is a Chewing Wrapper for Fcitx. Chewing is a set of free intelligent Chinese Phonetic IME...

7AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-11404

Malware in sbrugna...

9.3CVSS7.7AI score0.0108EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-2200

Malware in sbrugna...

7.8CVSS7.4AI score0.00951EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-17516

Malware in sbrugna...

7CVSS8AI score0.01002EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2013-3791

Malware in sbrugna...

6.9CVSS6.3AI score0.01651EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-17540

Malware in sbrugna...

7.8CVSS8.1AI score0.0397EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2011-2004

Malware in sbrugna...

7.2CVSS6.1AI score0.01801EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-8080

Malware in sbrugna...

7.8CVSS7.9AI score0.02181EPSS
Exploits0References4
NVD
NVD
added 2025/09/04 6:15 p.m.9 views

CVE-2025-26450

In onInputEvent of IInputMethodSessionWrapper.java, there is a possible way for an untrusted app to inject key and motion events to the default IME due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction ...

7.8CVSS0.00076EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/09/04 5:14 p.m.4 views

CVE-2025-26450

In onInputEvent of IInputMethodSessionWrapper.java, there is a possible way for an untrusted app to inject key and motion events to the default IME due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction ...

6.1AI score0.00076EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/09/04 5:14 p.m.8 views

CVE-2025-26450

In onInputEvent of IInputMethodSessionWrapper.java, there is a possible way for an untrusted app to inject key and motion events to the default IME due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction ...

0.00076EPSS
Exploits0References2
CVE
CVE
added 2025/09/04 5:14 p.m.433 views

CVE-2025-26450

CVE-2025-26450 affects Android-related code in onInputEvent of IInputMethodSessionWrapper.java. The issue allows an untrusted app to inject key and motion events to the default IME due to a missing permission check, enabling local privilege escalation with no additional privileges required. User ...

7.8CVSS6.2AI score0.00076EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder