Lucene search
K

153 matches found

RedhatCVE
RedhatCVE
added 2026/04/01 6:21 a.m.4 views

CVE-2026-5291

An inappropriate implementation flaw was found in the WebGL component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=490118036...

6.5CVSS5.8AI score0.00193EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/04/01 6:21 a.m.4 views

CVE-2026-5283

An inappropriate implementation flaw was found in the ANGLE component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=492131521...

7.4CVSS5.8AI score0.002EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/04/01 4:41 a.m.30 views

CVE-2026-5283

Inappropriate implementation in ANGLE in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

0.002EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/03/20 8:35 a.m.5 views

CVE-2026-4461

An inappropriate implementation flaw was found in the V8 component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=490558172...

8.8CVSS5.7AI score0.00281EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/03/04 7:24 p.m.31 views

CVE-2026-3541

Inappropriate implementation in CSS in Google Chrome prior to 145.0.7632.159 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. Chromium security severity: High...

0.00258EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/07 9:53 a.m.11 views

CVE-2013-7310

The OSPF implementation on Yamaha routers does not consider the possibility of duplicate Link State ID values in Link State Advertisement LSA packets before performing operations on the LSA database, which allows remote attackers to cause a denial of service routing disruption or obtain sensitive...

5.8CVSS6.4AI score0.02476EPSS
Exploits0References1
OSV
OSV
added 2025/11/06 10:15 p.m.5 views

CVE-2025-11212

Inappropriate implementation in Media in Google Chrome on Windows prior to 141.0.7390.54 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform domain spoofing via a crafted HTML page. Chromium security severity: Medium...

6.3CVSS5.8AI score
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2014-4120

Malware in sbrugna...

5CVSS6.4AI score0.0173EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-1248

Malware in sbrugna...

5CVSS6.1AI score0.09112EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2001-1128

Malware in sbrugna...

7.2CVSS6.4AI score0.00434EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2001-0588

Malware in sbrugna...

7.2CVSS6.4AI score0.01073EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2015-4170

Malware in sbrugna...

5CVSS5.9AI score0.0348EPSS
Exploits0References12
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-54573

Malicious code in bioql PyPI...

5.8CVSS6.4AI score0.00273EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/09/04 5:11 p.m.5 views

CVE-2025-26438

In smpprocesssecureconnectionoobdata of smpact.cc, there is a possible way to bypass SMP authentication due to Incorrect implementation of a protocol. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.8CVSS5.7AI score0.00315EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2025/07/28 3:31 a.m.9 views

Duplicate Advisory: `ed25519-dalek` Double Public Key Signing Function Oracle Attack

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-w5vr-6qhr-36cc. This link is maintained to preserve external references. Original Description The ed25519-dalek crate before 2 for Rust allows a double public key signing function oracle attack. The Keypair...

5.9CVSS7.1AI score0.00183EPSS
Exploits0References5Affected Software1
RedhatCVE
RedhatCVE
added 2025/06/27 10:27 a.m.6 views

CVE-2025-41647

A local, low-privileged attacker can learn the password of the connected controller in PLC Designer V4 due to an incorrect implementation that results in the password being displayed in plain text under special conditions...

5.5CVSS7.3AI score0.0009EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/24 7:12 p.m.11 views

CVE-2024-7487

An improper authentication vulnerability exists in WSO2 Identity Server 7.0.0 due to an implementation flaw that allows app-native authentication to be bypassed when an invalid object is passed. Exploitation of this vulnerability could enable malicious actors to circumvent the client verification...

5.8CVSS6.9AI score0.00273EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 12:13 p.m.9 views

CVE-2012-6371

The WPA2 implementation on the Belkin N900 F9K1104v1 router establishes a WPS PIN based on 6 digits of the LAN/WLAN MAC address, which makes it easier for remote attackers to obtain access to a Wi-Fi network by reading broadcast packets, a different vulnerability than CVE-2012-4366...

3.3CVSS6.8AI score0.04576EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/05/22 12:0 a.m.5 views

WSO2 Identity Server(IS) 安全漏洞

WSO2 Identity Server IS is an identity server from WSO2, Inc. A security vulnerability exists in WSO2 Identity Server IS version 7.0.0, which stems from an implementation flaw that could lead to bypassing authentication...

5.8CVSS6.4AI score0.00273EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/03 1:16 a.m.22 views

CVE-2025-4143

The OAuth implementation in workers-oauth-provider that is part of MCP framework https://github.com/cloudflare/workers-mcp , did not correctly validate that redirecturi was on the allowed list of redirect URIs for the given client registration. Fixed in:...

6.1CVSS6.9AI score0.00282EPSS
Exploits0References3
Rows per page
Query Builder