Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

360 matches found

RedhatCVE
RedhatCVEadded 2 days ago7 views

CVE-2026-44573

A flaw was found in Next.js. Applications utilizing the Pages Router with internationalization i18n configured and middleware or proxy-based authorization are susceptible to unauthorized access. A remote attacker can exploit this by making locale-less /next/data//.json requests, which bypass the...

7.5CVSS5.7AI score0.00052EPSS
Exploits1References4
OSV
OSVadded 2026/05/27 12:0 a.m.1 views

UBUNTU-CVE-2026-46644

insecure equivalence in symfony/polyfill-intl-idn for ASCII-only xn-- labels...

5.8AI score
Exploits0References4
SUSE CVE
SUSE CVEadded 2026/05/16 1:14 a.m.3 views

SUSE CVE-2026-8559

Integer overflow in Internationalization in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. Chromium security severity: High...

4.3CVSS5.9AI score0.00035EPSS
Exploits0References3
Microsoft CVE
Microsoft CVEadded 2026/05/16 12:21 a.m.4 views

Chromium: CVE-2026-8559 Integer overflow in Internationalization

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS5.8AI score0.00035EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2026/05/15 7:48 a.m.1 views

CVE-2026-8559

An integer overflow flaw was found in the Internationalization component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=504629701...

8.8CVSS5.8AI score0.00035EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2026/05/15 12:0 a.m.2 views

Next.js Framework 12.2.x < 15.5.16 / 16.x < 16.2.5 Information Disclosure

The Next.js Framework on the remote host is affected by an information disclosure vulnerability: - Applications using the Pages Router with i18n configured and middleware/proxy-based authorization can allow unauthorized access to protected page data through locale-less /next/data//.json requests...

7.5CVSS5.8AI score0.00052EPSS
Exploits1References2
NVD
NVDadded 2026/05/14 8:17 p.m.4 views

CVE-2026-8559

Integer overflow in Internationalization in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. Chromium security severity: High...

4.3CVSS0.00035EPSS
Exploits0References2
UbuntuCve
UbuntuCveadded 2026/05/14 8:17 p.m.1 views

CVE-2026-8559

Integer overflow in Internationalization in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. Chromium security severity: High...

4.3CVSS5.9AI score0.00035EPSS
Exploits0References3
CVE
CVEadded 2026/05/14 7:52 p.m.6 views

CVE-2026-8559

Technical details (affected product/component, root cause, impact, or fixes) are not provided in the supplied documents. Monitor for updates from official advisories.

4.3CVSS5.9AI score0.00035EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/05/14 7:52 p.m.2 views

CVE-2026-8559

Integer overflow in Internationalization in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. Chromium security severity: High...

5.9AI score0.00035EPSS
Exploits0References2
EUVD
EUVDadded 2026/05/14 7:52 p.m.4 views

EUVD-2026-30473

Integer overflow in Internationalization in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. Chromium security severity: High...

4.3CVSS5.9AI score0.00035EPSS
Exploits0References2
AlpineLinux
AlpineLinuxadded 2026/05/14 7:52 p.m.5 views

CVE-2026-8559

Integer overflow in Internationalization in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. Chromium security severity: High...

4.3CVSS5.9AI score0.00035EPSS
Exploits0
ATTACKERKB
ATTACKERKBadded 2026/05/14 7:52 p.m.3 views

CVE-2026-8559

Integer overflow in Internationalization in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. Chromium security severity: High...

4.3CVSS5.9AI score0.00035EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2026/05/14 7:52 p.m.23 views

CVE-2026-8559

Integer overflow in Internationalization in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. Chromium security severity: High...

0.00035EPSS
Exploits0References2
Debian CVE
Debian CVEadded 2026/05/14 7:52 p.m.4 views

CVE-2026-8559

Integer overflow in Internationalization in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. Chromium security severity: High...

4.3CVSS5.9AI score0.00035EPSS
Exploits0
Positive Technologies
Positive Technologiesadded 2026/05/14 12:0 a.m.5 views

PT-2026-41088

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.168 Description An integer overflow in the Internationalization component allows a remote attacker to perform an out-of-bounds memory write by inducing the user to visit a crafted HTML page. An...

8.8CVSS6.2AI score0.00148EPSS
Exploits0References83
NVD
NVDadded 2026/05/13 5:16 p.m.4 views

CVE-2026-44573

Next.js is a React framework for building full-stack web applications. From 12.2.0 to before 15.5.16 and 16.2.5, Applications using the Pages Router with i18n configured and middleware/proxy-based authorization can allow unauthorized access to protected page data through locale-less...

7.5CVSS0.00052EPSS
Exploits1References1
ATTACKERKB
ATTACKERKBadded 2026/05/13 4:48 p.m.5 views

CVE-2026-44573

Next.js is a React framework for building full-stack web applications. From 12.2.0 to before 15.5.16 and 16.2.5, Applications using the Pages Router with i18n configured and middleware/proxy-based authorization can allow unauthorized access to protected page data through locale-less...

7.5CVSS5.8AI score0.00052EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/05/13 4:48 p.m.3 views

CVE-2026-44573 Next.js: Middleware / Proxy bypass in Pages Router applications using i18n

Next.js is a React framework for building full-stack web applications. From 12.2.0 to before 15.5.16 and 16.2.5, Applications using the Pages Router with i18n configured and middleware/proxy-based authorization can allow unauthorized access to protected page data through locale-less...

7.5CVSS5.8AI score0.00052EPSS
Exploits1References1
CVE
CVEadded 2026/05/13 4:48 p.m.12 views

CVE-2026-44573

CVE-2026-44573 affects Next.js (Pages Router with i18n). From 12.2.0 up to but not including 15.5.16 and 16.2.5, middleware/proxy-based authorization can be bypassed for locale-less /_next/data//.json requests, allowing retrieval of SSR JSON for protected pages without authorization checks. The u...

7.5CVSS5.8AI score0.00052EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder