Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

29 matches found

OSV
OSVadded 2026/04/29 8:50 a.m.1 views

BIT-THRIFT-2026-41636 Apache Thrift: Node.js skip() recursion

Uncontrolled Recursion vulnerability in Apache Thrift Node.js bindings This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixes the issue...

8.7CVSS5.3AI score0.00255EPSS
Exploits0References3
NVD
NVDadded 2026/04/28 10:16 a.m.0 views

CVE-2026-41636

Uncontrolled Recursion vulnerability in Apache Thrift Node.js bindings This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixes the issue...

8.7CVSS0.00255EPSS
Exploits0References2
Debian CVE
Debian CVEadded 2026/04/28 9:22 a.m.1 views

CVE-2026-41636

Uncontrolled Recursion vulnerability in Apache Thrift Node.js bindings This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixes the issue...

8.7CVSS5.3AI score0.00255EPSS
Exploits0
ATTACKERKB
ATTACKERKBadded 2026/04/28 9:22 a.m.2 views

CVE-2026-41636

Uncontrolled Recursion vulnerability in Apache Thrift Node.js bindings This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixes the issue...

8.7CVSS5.2AI score0.00255EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2011-3075

Malware in sbrugna...

7.5CVSS6.1AI score0.0188EPSS
Exploits1References10
Tenable Nessus
Tenable Nessusadded 2025/09/10 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2016-4651

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site scripting XSS vulnerability in the WebKit JavaScript bindings in Apple iOS before 9.3.3 and Safari before 9.1.2 allows remote attackers to inject...

6.1CVSS7AI score0.00175EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2023/02/15 5:29 a.m.1 views

SUSE CVE-2014-3171

Use-after-free vulnerability in the V8 bindings in Blink, as used in Google Chrome before 37.0.2062.94, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging improper use of HashMap add operations instead of HashMap set operations, related to...

7.5CVSS9.6AI score0.02346EPSS
Exploits0References4
SUSE CVE
SUSE CVEadded 2023/02/15 4:51 a.m.1 views

SUSE CVE-2017-5094

Type confusion in extensions JavaScript bindings in Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux, and Android allowed a remote attacker to potentially maliciously modify objects via a crafted HTML page...

6.5CVSS8.7AI score0.00985EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2019/10/10 3:21 p.m.26 views

CVE-2017-5094

Type confusion in extensions JavaScript bindings in Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux, and Android allowed a remote attacker to potentially maliciously modify objects via a crafted HTML page...

8.8CVSS2.8AI score0.00985EPSS
Exploits0References2
0day.today
0day.todayadded 2019/03/19 12:0 a.m.35 views

Google Chrome < M73 - MidiManagerWin Use-After-Free Exploit

Google Chrome M73 - MidiManagerWin Use-After-Free Exploit MidiManagerWin uses a similar instanceid mechanism to the TaskService implementation to ensure that delayed tasks are only executed if the MidiManager instance that they were scheduled on is still alive. However, this instanceid is an int,...

8.8CVSS0.6AI score0.19638EPSS
Exploits1
OSV
OSVadded 2017/10/27 5:29 a.m.1 views

CVE-2017-5094

Type confusion in extensions JavaScript bindings in Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux, and Android allowed a remote attacker to potentially maliciously modify objects via a crafted HTML page...

6.5CVSS7AI score
Exploits0References6
OSV
OSVadded 2017/10/27 5:29 a.m.1 views

UBUNTU-CVE-2017-5094

Type confusion in extensions JavaScript bindings in Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux, and Android allowed a remote attacker to potentially maliciously modify objects via a crafted HTML page...

6.5CVSS7AI score0.00985EPSS
Exploits0References3
Prion
Prionadded 2017/10/27 5:29 a.m.24 views

Type confusion

Type confusion in extensions JavaScript bindings in Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux, and Android allowed a remote attacker to potentially maliciously modify objects via a crafted HTML page...

4.3CVSS6.4AI score0.00985EPSS
Exploits0References6Affected Software5
CVE
CVEadded 2017/10/27 5:0 a.m.132 views

CVE-2017-5094

CVE-2017-5094: Type confusion in the extensions JavaScript bindings of Chromium/Google Chrome before 60.0.3112.78. Affected component is the extensions subsystem; root cause described as a type confusion. Impact stated across connected advisories: remote attacker could potentially maliciously mod...

6.5CVSS6.4AI score0.00985EPSS
Exploits0References6Affected Software1
RedHat Linux
RedHat Linuxadded 2017/07/31 2:32 p.m.3 views

chromium-browser: type confusion in extensions

Type confusion in extensions JavaScript bindings in Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux, and Android allowed a remote attacker to potentially maliciously modify objects via a crafted HTML page...

6.5CVSS7.4AI score0.00985EPSS
Exploits0References5
NVD
NVDadded 2017/04/02 1:59 a.m.14 views

CVE-2017-2442

An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. The issue involves the "WebKit JavaScript Bindings" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site...

6.5CVSS5.4AI score0.12422EPSS
Exploits3References6
OSV
OSVadded 2017/04/02 1:59 a.m.4 views

CVE-2017-2442

An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. The issue involves the "WebKit JavaScript Bindings" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site...

6.5CVSS5.8AI score
Exploits0References6
Debian CVE
Debian CVEadded 2017/04/02 1:36 a.m.17 views

CVE-2017-2442

An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. The issue involves the "WebKit JavaScript Bindings" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site...

6.5CVSS6.6AI score0.12422EPSS
Exploits3
OSV
OSVadded 2017/04/01 12:0 a.m.0 views

UBUNTU-CVE-2017-2442

An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. The issue involves the "WebKit JavaScript Bindings" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site...

6.5CVSS7AI score0.12422EPSS
Exploits3References6
OSV
OSVadded 2016/07/22 3:0 a.m.1 views

CVE-2016-4651

Cross-site scripting XSS vulnerability in the WebKit JavaScript bindings in Apple iOS before 9.3.3 and Safari before 9.1.2 allows remote attackers to inject arbitrary web script or HTML via a crafted HTTP/0.9 response, related to a "cross-protocol cross-site scripting XPXSS" vulnerability...

6.1CVSS7.4AI score
Exploits0References8
Rows per page
Query Builder