CVE-2026-12450

Inappropriate implementation in Media in Google Chrome prior to 149.0.7827.155 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

CVE-2026-11196

Type Confusion in XML in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted XML file. Chromium security severity: Medium...

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a security vulnerability, which was caused by improper implementation of extensions. This vulnerability could allow remote attackers to obtain sensitive information from the process...

PT-2026-43026

This vulnerability exists in CP Plus Wi-Fi Camera due to improper protection of sensitive information in runtime memory. An attacker with physical access could exploit this vulnerability by accessing the UART interface and performing memory extraction to obtain sensitive information, including...

CVE-2025-64646

IBM Concert 1.0.0 through 2.2.0 could allow an attacker to access sensitive information in memory due to the buffer not properly clearing resources...

CVE-2025-65832

The CVE describes a memory-handling flaw in the Meatmeet mobile application (notably Meatmeet Pro App version v1.1.2.0 per CNNVD) where sensitive data stored in memory—Wi-Fi credentials transmitted during pairing, JWTs, and other details—can be exposed by a memory dump after logout. An attacker w...

systemd-coredump: race condition that allows a local attacker to crash a SUID program and gain read access to the resulting core dump

A vulnerability was found in systemd-coredump. This flaw allows an attacker to force a SUID process to crash and replace it with a non-SUID binary to access the original's privileged process coredump, allowing the attacker to read sensitive data, such as /etc/shadow content, loaded by the origina...

EUVD-2025-60990

SAP GUI for Windows may allow a highly privileged user on the affected client PC to locally access sensitive information stored in process memory during runtime.This vulnerability has a high impact on confidentiality, with no impact on integrity and availability...

CVE-2025-12436

CVE-2025-12436 describes a policy bypass in Google Chrome extensions prior to 142.0.7444.59. The issue allows an attacker, by getting a user to install a malicious extension, to potentially access sensitive data from process memory via the extension mechanism. Documents consistently reference a C...

ABB LVS MConfig

SUMMARY ABB became aware of an internally discovered vulnerability in the MConfig product versions listed as affected in the advisory. An attacker with access to local networks who successfully exploits vulnerability could have access to application’s sensitive information. ABB strongly advises...

EUVD-2020-23962

Malware in sbrugna...

EUVD-2020-27940

Malware in sbrugna...

CVE-2025-42976 Multiple vulnerabilities in SAP NetWeaver Application Server ABAP (BIC Document)

SAP NetWeaver Application Server ABAP BIC Document allows an authenticated attacker to craft a request that, when submitted to a BIC Document application, could cause a memory corruption error. On successful exploitation, this results in the crash of the target component. Multiple submissions can...

PT-2024-24606 · Tillitis · Tillitis Tkey Signer Device Application

Name of the Vulnerable Software and Affected Versions: Tillitis TKey signer device application versions prior to 1.0.0 Description: A vulnerability has been found in the Tillitis TKey signer device application, an ed25519 signing tool, which makes it possible to disclose portions of the TKey’s da...

SUSE CVE-2004-0181

The JFS file system code in Linux 2.4.x has an information leak in which in-memory data is written to the device for the JFS file system, which allows local users to obtain sensitive information by reading the raw device...

PT-2021-15406 · Gallagher · Gallagher Command Centre

Name of the Vulnerable Software and Affected Versions: Gallagher Command Centre 8.40 versions prior to 8.40.1888 MR3 Description: The issue concerns a Cleartext Storage of Sensitive Information in Memory vulnerability in the Gallagher Command Centre Server. This vulnerability allows the Cloud...

Google Chrome 安全漏洞

Chrome is a simple and efficiently designed web browsing tool developed by Google that is characterized by its simplicity and speed. An insufficient policy enforcement vulnerability exists in appcache in Google Chrome versions prior to 89.0.4389.72. A remote attacker can exploit this vulnerabilit...

CVE-2020-6793

When processing an email message with an ill-formed envelope, Thunderbird could read data from a random memory location. This vulnerability affects Thunderbird 68.5...

Microsoft Edge Scripting Engine Information Disclosure Vulnerability (CNVD-2018-00530)

Microsoft Windows 10 and Windows Server 2016 are both products of Microsoft Corporation USA. The former is an operating system for personal computers and the latter is a server operating system.Edge is one of the default browsers that comes with the system.scripting engine is one of the JavaScrip...

The vulnerability of Microsoft Excel spreadsheet editors, the Microsoft SharePoint Server corporate application suite, and the Microsoft Office Compatibility Pack compatibility suite allows a perpetrator to obtain confidential information from the process memory.

The vulnerability of Microsoft Excel spreadsheet editors, the Microsoft SharePoint Server corporate application suite, and the Microsoft Office Compatibility Pack relates to the lack of protection for operational data. Exploitation of this vulnerability can allow a malicious actor, operating...