Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

OSV
OSVadded 2026/06/11 12:55 p.m.3 views

USN-8422-1 mistral vulnerability

Eduardo Gonzalez Gutierrez and Arnaud Morin discovered that Mistral did not properly enforce access policies on some API endpoints. An attacker could possibly execute arbitrary code on a Mistral worker and possibly extract sensitive data including service credentials from it...

9.9CVSS5.9AI score0.00628EPSS
Exploits0References2
Debian
Debianadded 2026/06/09 8:47 p.m.7 views

[SECURITY] [DSA 6333-1] mistral security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6333-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff June 09, 2026 https://www.debian.org/security/faq -...

9.9CVSS5.3AI score0.00628EPSS
Exploits0
ATTACKERKB
ATTACKERKBadded 2026/06/04 11:5 p.m.5 views

CVE-2026-11184

Insufficient policy enforcement in Actor in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00157EPSS
Exploits0References3Affected Software1
OSV
OSVadded 2026/05/07 10:16 p.m.1 views

DEBIAN-CVE-2026-40214

In OpenStack Cyborg before 16.0.1, the Accelerator Request ARQ API does not enforce project ownership at any layer. The projectid column in the database is never populated NULL for every ARQ, database queries have no project filtering, and policy checks are self-referential the authorizewsgi...

6.3CVSS5.8AI score0.00206EPSS
Exploits0References1
CNNVD
CNNVDadded 2023/12/20 12:0 a.m.3 views

Google Chrome Security Vulnerability

Google Chrome is a web browser from Google, Inc. in the United States. A security vulnerability exists in Google Chrome prior to version 114.0.5735.90, which stems from insufficient policy enforcement and allows a local attacker to bypass device policy restrictions by physically accessing the...

6.8CVSS6.2AI score0.00214EPSS
Exploits1References2
SUSE CVE
SUSE CVEadded 2023/02/15 5:55 a.m.3 views

SUSE CVE-2010-4582

Opera before 11.00 does not properly handle security policies during updates to extensions, which might allow remote attackers to bypass intended access restrictions via unspecified vectors...

5CVSS6.9AI score0.02294EPSS
Exploits0References4
BDU FSTEC
BDU FSTECadded 2021/07/20 12:0 a.m.2 views

The vulnerability of Google Chrome’s full-screen mode, related to insufficient validation of input data, allows a hacker to compromise data integrity.

The vulnerability of the full-screen mode of the Google Chrome browser is related to the insufficient implementation of security policies. Exploiting this vulnerability can allow a malicious actor to compromise data integrity remotely...

6.5CVSS7AI score0.01705EPSS
Exploits1References12Affected Software5
OSV
OSVadded 2019/11/25 3:15 p.m.0 views

UBUNTU-CVE-2019-5856

Insufficient policy enforcement in storage in Google Chrome prior to 76.0.3809.87 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page...

8.8CVSS7.2AI score0.00796EPSS
Exploits0References2
Rows per page
Query Builder