CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

Redos•added 2026/01/22 12:0 a.m.•4 views

ROS-20260122-73-0021

A vulnerability in the Loader component of Google Chrome browser is related to incorrect data type conversion. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service using a specially crafted HTML page...

8.8CVSS5.6AI score0.00079EPSS

Exploits0

Positive Technologies•added 2026/01/01 12:0 a.m.•1 views

PT-2026-21332

Name of the Vulnerable Software and Affected Versions GIMP versions 3.0.8 through 3.0.8-5 Fedora 43 Description A heap-buffer-overflow exists in the PSD loader component of the software, specifically within the fread pascal string function due to a missing null terminator. This issue can be...

4.3CVSS7AI score0.00059EPSS

Exploits3References20

The Hacker News•added 2025/11/26 6:8 p.m.•11 views

Shai-Hulud v2 Spreads From npm to Maven, as Campaign Exposes Thousands of Secrets

The second wave of the Shai-Hulud supply chain attack has spilled over to the Maven ecosystem after compromising more than 830 packages in the npm registry. The Socket Research Team said it identified a Maven Central package named org.mvnpm:posthog-node:4.18.1 that embeds the same two components...

7.3AI score

Exploits0

Redos•added 2025/10/08 12:0 a.m.•2 views

ROS-20251008-03

A vulnerability in the Loader component of Google Chrome browsers is related to bypassing the authentication procedure by using an alternate path or channel. Exploitation of the vulnerability could allow an attacker acting remotely to bypass security restrictions...

5.4CVSS7AI score0.00072EPSS

Exploits0

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2017-15334

Malware in sbrugna...

7.8CVSS7.7AI score0.00054EPSS

Exploits0References2

CNVD•added 2025/07/04 12:0 a.m.•1 views

Google Chrome Security Bypass Vulnerability (CNVD-2025-15175)

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a security bypass vulnerability that stems from insufficient policy enforcement in the Loader component, which can be exploited by an attacker to bypass content security policies...

5.4CVSS6.8AI score0.00072EPSS

Exploits0References1

CNNVD•added 2025/06/24 12:0 a.m.•1 views

Google Chrome 安全漏洞

5.4CVSS6.6AI score0.00072EPSS

Exploits0References5

Snyk•added 2025/05/14 6:43 p.m.•6 views

Information Exposure

Overview org.webjars.npm:electron is a framework which lets you write cross-platform desktop applications using JavaScript, HTML and CSS. Affected versions of this package are vulnerable to Information Exposure via the Loader component. An attacker can leak sensitive cross-origin data by crafting...

5.1CVSS6.7AI score0.00118EPSS

Exploits2References2

Positive Technologies•added 2025/03/31 12:0 a.m.•2 views

PT-2025-13833

Name of the Vulnerable Software and Affected Versions Open Asset Import Library Assimp version 5.4.3 Description A critical issue has been found in the ASE File Handler component of the Open Asset Import Library Assimp. This issue affects the Assimp::ASEImporter::BuildUniqueRepresentation functio...

10CVSS5.7AI score0.00206EPSS

Exploits11References55

CNNVD•added 2024/10/25 12:0 a.m.•2 views

Google Pixel 安全漏洞

Google Pixel is a smartphone from the American company Google Google. Google Pixel has a security vulnerability that stems from allowing elevation of privilege in the ABL component...

8.8CVSS7AI score0.00185EPSS

Exploits0References2

Positive Technologies•added 2023/08/22 12:0 a.m.•4 views

PT-2023-4502 · Google +2 · Google Chrome +2

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 116.0.5845.110 Description: The issue is related to a use after free in the Loader component, which could allow a remote attacker to exploit heap corruption via a crafted HTML page. This could potentially impac...

10CVSS7.1AI score0.93301EPSS

Exploits130References1105

CNVD•added 2021/12/19 12:0 a.m.•20 views

Google Chrome Loader data validation error vulnerability

Google Chrome is a web browser from Google, Inc. A data validation error vulnerability exists in the loader component of Google Chrome prior to version 96.0.4664.93. It allows remote attackers to compromise cross-domain data via crafted HTML pages...

6.5CVSS4.7AI score0.01564EPSS

Exploits0References1

ArchLinux•added 2021/07/01 12:0 a.m.•204 views

[ASA-202107-2] electron11: multiple issues

Arch Linux Security Advisory ASA-202107-2 ========================================= Severity: Critical Date : 2021-07-01 CVE-ID : CVE-2021-30544 CVE-2021-30548 CVE-2021-30551 Package : electron11 Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-2099 Summary ======= Th...

8.8CVSS1.7AI score0.8222EPSS

Exploits1References9

Veracode•added 2021/06/13 8:0 p.m.•45 views

Remote Code Execution (RCE)

chromium is vulnerable to remote code execution. The vulnerability exists due to a use after free security issue has been found in the Loader component...

8.8CVSS2.6AI score0.00736EPSS

Exploits0References8Affected Software3

CNVD•added 2017/11/13 12:0 a.m.•1 views

NVIDIA ADSP Firmware ADSP Loader Component Buffer Overflow Vulnerability

The NVIDIA ADSP Firmware is a set of firmware used in advanced digital signal processing units from NVIDIA, U.S.A. The ADSP Loader is one of the boot loader components. A buffer overflow vulnerability exists in the ADSP Loader component of the NVIDIA ADSP Firmware. A local attacker could exploit...

7.8CVSS7.2AI score0.00054EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by