Lucene search
K

7166 matches found

EUVD
EUVD
•added 2 hours ago•4 views

EUVD-2026-42188

Local attackers with a X connection able to provide PCX fonts to the X server xorg-server before 21.2.24 and xwayland before 24.1.13 could cause a heap buffer overflow via SetFont due to missing glyph boundary checks...

8.5CVSS6.2AI score
Exploits0References2
EUVD
EUVD
•added yesterday•7 views

EUVD-2026-42032

The encryption algorithm used to protect the configuration of user accounts, stored in the built-in user directory of PcVue projects, all versions prior to 17.0.0, is not strong enough for the level of protection required. A local attacker could alter the existing configuration and ultimately gai...

8.4CVSS5.9AI score0.00063EPSS
Exploits0References1
EUVD
EUVD
•added yesterday•5 views

EUVD-2026-42031

Credentials of built-in users are insecurely stored in the User directory of PcVue projects, all versions prior to 17.0.0. A local attacker could retrieve users’ credentials. Active Directory accounts are not affected by this vulnerability...

6.8CVSS5.9AI score0.0013EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
•added 2 days ago•4 views

CVE-2026-44934

A information disclosure when DEBUG loglevel is set in SUSE Rancher AI Agent 1.0 before 1.0.2 could leak API keys or LLM response text with potential sensitive data into logfiles, allowing local attackers to misuse respective gained data or credentials...

7CVSS6AI score0.00119EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
•added 5 days ago•33 views

CVE-2026-46467

Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an insertion of sensitive information into log file vulnerability. A low...

5.8CVSS0.00085EPSS
Exploits0References1
EUVD
EUVD
•added 2026/07/01 12:34 a.m.•5 views

EUVD-2026-40628

Uninitialized Use in Cast in Google Chrome prior to 150.0.7871.47 allowed an attacker on the local network segment to obtain potentially sensitive information from process memory via malicious network traffic. Chromium security severity: Medium...

6.5CVSS5.8AI score0.00147EPSS
Exploits0References3
EUVD
EUVD
•added 2026/07/01 12:34 a.m.•6 views

EUVD-2026-40565

Use after free in Bluetooth in Google Chrome prior to 150.0.7871.47 allowed an attacker on the local network segment to obtain potentially sensitive information from process memory via a malicious peripheral. Chromium security severity: Medium...

6.5CVSS5.8AI score0.00156EPSS
Exploits0References3
OSV
OSV
•added 2026/06/30 11:17 p.m.•3 views

DEBIAN-CVE-2026-14119

Type Confusion in Bluetooth in Google Chrome on Windows prior to 150.0.7871.47 allowed an attacker on the local network segment to obtain potentially sensitive information from process memory via a malicious peripheral. Chromium security severity: Low...

6.5CVSS5.8AI score0.00116EPSS
Exploits0References1
OSV
OSV
•added 2026/06/30 11:17 p.m.•3 views

DEBIAN-CVE-2026-14048

Use after free in Chromecast in Google Chrome prior to 150.0.7871.47 allowed an attacker on the local network segment to obtain potentially sensitive information from process memory via a malicious peripheral. Chromium security severity: Low...

6.5CVSS5.8AI score0.00116EPSS
Exploits0References1
NVD
NVD
•added 2026/06/30 11:17 p.m.•3 views

CVE-2026-13940

Uninitialized Use in Cast in Google Chrome prior to 150.0.7871.47 allowed an attacker on the local network segment to obtain potentially sensitive information from process memory via malicious network traffic. Chromium security severity: Medium...

6.5CVSS0.00147EPSS
Exploits0References2
OSV
OSV
•added 2026/06/30 11:17 p.m.•2 views

DEBIAN-CVE-2026-13940

Uninitialized Use in Cast in Google Chrome prior to 150.0.7871.47 allowed an attacker on the local network segment to obtain potentially sensitive information from process memory via malicious network traffic. Chromium security severity: Medium...

6.5CVSS5.8AI score0.00147EPSS
Exploits0References1
Debian CVE
Debian CVE
•added 2026/06/30 10:39 p.m.•5 views

CVE-2026-14048

Use after free in Chromecast in Google Chrome prior to 150.0.7871.47 allowed an attacker on the local network segment to obtain potentially sensitive information from process memory via a malicious peripheral. Chromium security severity: Low...

6.5CVSS5.8AI score0.00116EPSS
Exploits0
Positive Technologies
Positive Technologies
•added 2026/06/30 12:0 a.m.•4 views

PT-2026-54217

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description An uninitialized use in the Cast component allows an attacker on the local network segment to obtain potentially sensitive information from process memory by sending malicious network...

9.6CVSS5.9AI score0.00413EPSS
Exploits0References439
Vulnrichment
Vulnrichment
•added 2026/06/29 12:37 p.m.•10 views

CVE-2026-54369 acl < 2.4.0 Symlink Traversal Privilege Escalation via libacl Functions

acl before version 2.4.0 contains a symlink traversal vulnerability in the libacl pathname-based functions aclgetfile, aclsetfile, aclextendedfile, and acldeletedeffile that allows local attackers to escalate privileges by replacing any pathname component with a symbolic link. Attackers who contr...

8.4CVSS5.9AI score0.00142EPSS
Exploits0References3
NVD
NVD
•added 2026/06/26 11:16 a.m.•9 views

CVE-2026-57473

A vulnerability exists in the netclient and factory services of Reolink Home Hub versions prior to v3.3.0.45626031911 due to the possibility of brute-force cracking the credentials. This issue could allow attackers on the same local network to intercept traffic between the Hub and associated...

5.8CVSS0.00145EPSS
Exploits0References1
NVD
NVD
•added 2026/06/25 2:16 p.m.•5 views

CVE-2026-46733

Dell Display and Peripheral Manager DDPM Windows, versions prior to 2.3, contain an Improper Access Control vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution...

7.8CVSS0.00101EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/22 6:47 p.m.•7 views

EUVD-2026-38341

Dell Wyse Management Suite WMS, versions prior to WMS 2605, contain an Improper Link Resolution Before File Access vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Unauthorized access...

7.8CVSS5.9AI score0.00127EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
•added 2026/06/22 6:47 p.m.•4 views

CVE-2026-44274

Dell Wyse Management Suite WMS, versions prior to WMS 2605, contain an Improper Link Resolution Before File Access vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Unauthorized access...

7.8CVSS5.9AI score0.00127EPSS
Exploits0References2
EUVD
EUVD
•added 2026/06/22 3:32 p.m.•6 views

EUVD-2026-38275

Incorrect caching of authentication between different users of the qSnapper dbus service before version 1.3.3 allowed any local attacker to use dbus functions after a privileged users has authenticated for them...

8.4CVSS5.9AI score0.00134EPSS
Exploits0References3
EUVD
EUVD
•added 2026/06/19 2:16 p.m.•7 views

EUVD-2023-60591

Chromacam 4.0.3.0 contains an unquoted service path vulnerability in the PsyFrameGrabberService that allows local attackers to execute arbitrary code by placing malicious executables in unquoted path directories. Attackers with write access to C:\ or subdirectories like C:\Program Files...

8.5CVSS6.2AI score0.0012EPSS
Exploits0References4
Rows per page
Query Builder