Lucene search
K

4328 matches found

EUVD
EUVD
added 5 days ago5 views

EUVD-2026-40464

Use after free in WebUSB in Google Chrome on Mac prior to 150.0.7871.47 allowed a local attacker to execute arbitrary code via a malicious peripheral. Chromium security severity: Critical...

6.1AI score0.0014EPSS
Exploits0References3
NVD
NVD
added 6 days ago5 views

CVE-2026-13884

Integer overflow in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a local attacker to execute arbitrary code via malicious network traffic. Chromium security severity: Medium...

8.8CVSS0.00204EPSS
Exploits0References2
NVD
NVD
added 6 days ago5 views

CVE-2026-13850

Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a local attacker to execute arbitrary code inside a sandbox via a malicious file. Chromium security severity: High...

8.8CVSS0.00239EPSS
Exploits0References2
NVD
NVD
added 6 days ago5 views

CVE-2026-13778

Use after free in WebUSB in Google Chrome on Mac prior to 150.0.7871.47 allowed a local attacker to execute arbitrary code via a malicious peripheral. Chromium security severity: Critical...

7.8CVSS0.0014EPSS
Exploits0References2
OSV
OSV
added 6 days ago4 views

DEBIAN-CVE-2026-13778

Use after free in WebUSB in Google Chrome on Mac prior to 150.0.7871.47 allowed a local attacker to execute arbitrary code via a malicious peripheral. Chromium security severity: Critical...

7.8CVSS6.1AI score0.0014EPSS
Exploits0References1
Debian CVE
Debian CVE
added 6 days ago5 views

CVE-2026-13884

Integer overflow in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a local attacker to execute arbitrary code via malicious network traffic. Chromium security severity: Medium...

8.8CVSS6.2AI score0.00204EPSS
Exploits0
Cvelist
Cvelist
added 6 days ago22 views

CVE-2026-13850

Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a local attacker to execute arbitrary code inside a sandbox via a malicious file. Chromium security severity: High...

0.00239EPSS
Exploits0References2
CVE
CVE
added 6 days ago12 views

CVE-2026-13778

CVE-2026-13778 is a use-after-free vulnerability in WebUSB in Google Chrome on macOS, allowing a local attacker to execute arbitrary code via a malicious peripheral. Affected product: Google Chrome (Mac) prior to version 150.0.7871.47. The issue stems from a WebUSB use-after-free condition; explo...

7.8CVSS6.1AI score0.0014EPSS
Exploits0References2Affected Software1
RedHat Linux
RedHat Linux
added 6 days ago4 views

rrdtool: rrdtool: Stack buffer overflow allows local code execution or denial of service

A flaw was found in rrdcached, a component of rrdtool. A local attacker with access to a rrdcached socket can exploit a stack-based buffer overflow by sending an oversized CREATE request. This vulnerability can lead to a denial of service by crashing the daemon or potentially allow for arbitrary...

7.8CVSS6.4AI score0.00132EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/06/28 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-13037

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in WebView in Google Chrome on Android prior to 149.0.7827.197 allowed a local attacker to execute arbitrary code inside a sandbox via a crafted...

7.8CVSS6.2AI score0.00105EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/26 12:32 a.m.6 views

CVE-2026-53192

A flaw was found in the Linux kernel's Advanced Linux Sound Architecture ALSA timer component. A race condition can occur during the release of a timer object, specifically when the SNDRVTIMERIOCTLPARAMS ioctl is called concurrently. This can lead to a use-after-free vulnerability, potentially...

7.8CVSS6.4AI score0.00134EPSS
Exploits0References4
OSV
OSV
added 2026/06/24 7:17 p.m.3 views

DEBIAN-CVE-2026-13037

Use after free in WebView in Google Chrome on Android prior to 149.0.7827.197 allowed a local attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

7.8CVSS6.2AI score0.00105EPSS
Exploits0References1
CVE
CVE
added 2026/06/24 6:43 p.m.18 views

CVE-2026-13037

CVE-2026-13037 is a use-after-free vulnerability in WebView for Android within Google Chrome, before version 149.0.7827.197. The flaw allows a local attacker to run arbitrary code inside the sandbox via a crafted HTML page. Affected component: WebView in Chrome on Android; root cause: use-after-f...

7.8CVSS6.2AI score0.00105EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/06/24 6:43 p.m.40 views

CVE-2026-13037

Use after free in WebView in Google Chrome on Android prior to 149.0.7827.197 allowed a local attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

0.00105EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/06/24 6:43 p.m.4 views

CVE-2026-13037

Use after free in WebView in Google Chrome on Android prior to 149.0.7827.197 allowed a local attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

7.8CVSS6.2AI score0.00105EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/06/23 7:25 p.m.28 views

CVE-2026-54328

Pi is a minimal terminal coding harness. From 0.74.0 until 0.78.1, Pi versions with temporary npm or git extension package installs used predictable paths under the operating system temporary directory. On Linux-based multi-user systems, a local attacker who can write to the shared temporary...

7.3CVSS5.9AI score0.00115EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2026/06/19 3:16 p.m.11 views

CVE-2023-54353

Chromacam 4.0.3.0 contains an unquoted service path vulnerability in the PsyFrameGrabberService that allows local attackers to execute arbitrary code by placing malicious executables in unquoted path directories. Attackers with write access to C:\ or subdirectories like C:\Program Files...

8.5CVSS0.0012EPSS
Exploits0References4
NVD
NVD
added 2026/06/19 3:16 p.m.11 views

CVE-2016-20095

Matrix42 Remote Control Host 3.20.0031 contains an unquoted service path vulnerability in the FastViewerRemoteService and FastViewerRemoteProxy services that allows local users to execute arbitrary code with SYSTEM privileges. Attackers can place a malicious executable in the Program Files...

8.5CVSS0.00119EPSS
Exploits0References3
NVD
NVD
added 2026/06/19 3:16 p.m.9 views

CVE-2020-37250

TFTP Broadband 4.3.0.1465 contains an unquoted service path vulnerability in the tftpt.exe service binary that allows local attackers to execute arbitrary code with system privileges. Attackers can place a malicious executable in the Program Files directory path that will be executed during servi...

8.5CVSS0.00119EPSS
Exploits0References3
NVD
NVD
added 2026/06/19 3:16 p.m.10 views

CVE-2016-20088

Comodo Chromodo Browser 52.15.25.664 contains an unquoted service path vulnerability in the ChromodoUpdater service that runs with SYSTEM privileges. A local attacker can insert a malicious executable in the service path and execute arbitrary code with elevated privileges upon service restart or...

8.5CVSS0.0012EPSS
Exploits0References5
Rows per page
Query Builder