Lucene search
+L

2763 matches found

NVD
NVD
added 2026/07/07 9:17 p.m.9 views

CVE-2026-55592

Dashy is a self-hostable personal dashboard. Prior to 4.3.7, Dashy's workspace view trusts the url query parameter and assigns it directly to an iframe source without scheme validation. If a logged-in user opens a crafted workspace link containing a javascript: URL, JavaScript runs on the Dashy...

3.9CVSS0.00255EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/07/07 8:48 p.m.6 views

CVE-2026-55592

Dashy is a self-hostable personal dashboard. Prior to 4.3.7, Dashy's workspace view trusts the url query parameter and assigns it directly to an iframe source without scheme validation. If a logged-in user opens a crafted workspace link containing a javascript: URL, JavaScript runs on the Dashy...

3.9CVSS6AI score0.00255EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/07/07 12:0 a.m.8 views

PT-2026-56249

Name of the Vulnerable Software and Affected Versions Dashy versions prior to 4.3.7 Description The workspace view fails to validate the scheme of the URL query parameter before assigning it to an iframe source. This allows an attacker to execute JavaScript on the Dashy origin by tricking a...

3.9CVSS6.3AI score0.00255EPSS
Exploits0References7
EUVD
EUVD
added 2026/07/02 12:31 a.m.9 views

EUVD-2026-41190

Uninitialized Use in ANGLE in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00185EPSS
Exploits0References3
EUVD
EUVD
added 2026/07/02 12:31 a.m.7 views

EUVD-2026-41178

Out of bounds read in ANGLE in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00247EPSS
Exploits0References3
EUVD
EUVD
added 2026/07/02 12:31 a.m.9 views

EUVD-2026-41177

Out of bounds read in ANGLE in Google Chrome on Windows prior to 150.0.7871.46 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00263EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/07/02 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-14418

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Uninitialized Use in ANGLE in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium securit...

4.3CVSS6.2AI score0.00185EPSS
Exploits0References2
NVD
NVD
added 2026/07/01 11:16 p.m.15 views

CVE-2026-14418

Uninitialized Use in ANGLE in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

4.3CVSS0.00185EPSS
Exploits0References2
OSV
OSV
added 2026/07/01 11:16 p.m.5 views

DEBIAN-CVE-2026-14418

Uninitialized Use in ANGLE in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

4.3CVSS5.8AI score0.00185EPSS
Exploits0References1
NVD
NVD
added 2026/07/01 11:16 p.m.7 views

CVE-2026-14396

Out of bounds read in ANGLE in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

6.5CVSS0.00247EPSS
Exploits0References2
OSV
OSV
added 2026/07/01 11:16 p.m.4 views

DEBIAN-CVE-2026-14396

Out of bounds read in ANGLE in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

6.5CVSS5.8AI score0.00247EPSS
Exploits0References1
NVD
NVD
added 2026/07/01 11:16 p.m.6 views

CVE-2026-14384

Out of bounds read in ANGLE in Google Chrome on Windows prior to 150.0.7871.46 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.00263EPSS
Exploits0References2
OSV
OSV
added 2026/07/01 11:16 p.m.5 views

DEBIAN-CVE-2026-14384

Out of bounds read in ANGLE in Google Chrome on Windows prior to 150.0.7871.46 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.8AI score0.00263EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/07/01 10:21 p.m.6 views

CVE-2026-14418

Uninitialized Use in ANGLE in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

4.3CVSS5.8AI score0.00185EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/07/01 10:21 p.m.54 views

CVE-2026-14418

Technical details about CVE-2026-14418 are not publicly available in the provided documents. Monitor for updates from official advisories for affected products, impact, and fixes.

4.3CVSS5.8AI score0.00185EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/07/01 10:21 p.m.26 views

CVE-2026-14396

Out of bounds read in ANGLE in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

0.00247EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/07/01 10:21 p.m.7 views

CVE-2026-14396

Out of bounds read in ANGLE in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

6.5CVSS5.8AI score0.00247EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/07/01 10:21 p.m.6 views

CVE-2026-14396

Out of bounds read in ANGLE in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00247EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/07/01 10:21 p.m.26 views

CVE-2026-14396

CVE-2026-14396 describes an out-of-bounds read in ANGLE used by Google Chrome, allowing a remote attacker to leak cross-origin data via a crafted HTML page. Affected component: ANGLE within Chrome, with the flaw exploitable through networked HTML content. The issue is tied to Chrome versions prio...

6.5CVSS5.8AI score0.00247EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/07/01 10:21 p.m.27 views

CVE-2026-14384

CVE-2026-14384 describes an out-of-bounds read in ANGLE used by Google Chrome on Windows , affecting versions prior to 150.0.7871.46 . The underlying issue in ANGLE allows a remote attacker to leak cross-origin data via a crafted HTML page . Affected component: ANGLE within Chromium-based Chrome;...

6.5CVSS5.8AI score0.00263EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder