CVE-2026-9938

CVE-2026-9938 concerns an inappropriate implementation in the V8 component of Google Chrome, affecting Chrome versions prior to 148.0.7778.216. The vulnerability allows a remote attacker to execute arbitrary code inside the browser sandbox via a crafted HTML page. The cited sources consistently d...

AlmaLinux 8 : thunderbird (ALSA-2026:6917)

The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2026:6917 advisory. firefox: thunderbird: Use-after-free in the JavaScript Engine component CVE-2026-4701 firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 115.34...

Linux Distros Unpatched Vulnerability : CVE-2026-5863

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in V8 in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HT...

Google Chrome V8 Memory Out-of-Bounds Access Vulnerability (CNVD-2026-13792)

Google Chrome is a free web browser developed by Google Inc. Google Chrome V8 suffers from a memory out-of-bounds access vulnerability that stems from improper memory buffer access control and can be exploited by remote attackers to execute arbitrary code...

RHEL 9 : thunderbird (RHSA-2026:3978)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2026:3978 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: libvpx: Heap buffer overflow in libvpx CVE-2026-2447 firefox:...

EUVD-2009-1303

Malware in sbrugna...

Google Chrome < 141.0.7390.54 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 141.0.7390.54. It is, therefore, affected by multiple vulnerabilities as referenced in the 202509stable-channel-update-for-desktop30 advisory. - Use after free in V8 in Google Chrome prior to 141.0.7390.54 allowed a...

Linux Distros Unpatched Vulnerability : CVE-2011-0054

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer overflow in the JavaScript engine in Mozilla Firefox before 3.5.17 and 3.6.x before 3.6.14, and SeaMonkey before 2.0.12, might allow remote attackers to...

Astra Linux – Vulnerability in Chromium

Inappropriate implementation in V8 in Google Chrome prior to 129.0.6668.70 allowed a remote attacker to potentially perform out-of-bounds memory access via a crafted HTML page. Chromium security severity: High...

SUSE CVE-2024-7974

Insufficient data validation in V8 API in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to potentially exploit heap corruption via a crafted Chrome Extension. Chromium security severity: Medium...

SUSE CVE-2005-0989

The findreplen function in jsstr.c in the Javascript engine for Mozilla Suite 1.7.6, Firefox 1.0.1 and 1.0.2, and Netscape 7.2 allows remote attackers to read portions of heap memory in a Javascript string via the lambda replace method...

SUSE CVE-2021-21118

Insufficient data validation in V8 in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page...

The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine allows attackers to execute arbitrary code.

The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine exists due to a mix of data types. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

Two New Chrome 0-Days Under Active Attacks – Update Your Browser

Google has patched two more zero-day flaws in the Chrome web browser for desktop, making it the fourth and fifth actively exploited vulnerabilities addressed by the search giant in recent weeks. The company released 86.0.4240.198 for Windows, Mac, and Linux, which it said will be rolling out over...

CVE-2017-5121

Inappropriate use of JIT optimisation in V8 in Google Chrome prior to 61.0.3163.100 for Linux, Windows, and Mac allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page, related to the escape analysis phase...

UBUNTU-CVE-2017-5122

Inappropriate use of table size handling in V8 in Google Chrome prior to 61.0.3163.100 for Windows allowed a remote attacker to trigger out-of-bounds access via a crafted HTML page...

The vulnerability of Google Chrome browser allows a perpetrator to trigger a service failure.

The vulnerability of the V8 component in Google Chrome browsers arises from an operation that occurs outside the buffer in memory. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause a service failure through a specially created HTML page...

The vulnerability of Google Chrome browser allows a perpetrator to gain access to protected information.

The vulnerability of the V8 component in Google Chrome browser relates to the use of memory after it is freed. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain access to protected information through a specially created HTML page...

The vulnerability of Google Chrome browser allows a violator to circumvent existing access restrictions.

The vulnerability of the Google V8 browser component in Google Chrome is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to circumvent existing access restrictions remotely...

MGASA-2013-0326 Updated thunderbird package fixes security vulnerabilities

Several flaws were found in the processing of malformed content. Malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running Thunderbird CVE-2013-5590, CVE-2013-5597, CVE-2013-5599, CVE-2013-5600, CVE-2013-5601, CVE-2013-5602...