CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

ATTACKERKB•added 2026/05/06 6:13 p.m.•7 views

CVE-2026-8001

Use After Free in Printing in Google Chrome on Linux, Mac, ChromeOS prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Low...

8.3CVSS5.8AI score0.00118EPSS

Exploits0References3Affected Software1

AstraLinux•added 2026/05/03 11:59 p.m.•1 views

Astra Linux - уязвимость в chromium

The use of “after free” in “Printing in Google Chrome” before version 92.0.4515.159 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption through a crafted HTML page...

8.8CVSS6.8AI score0.00765EPSS

Exploits1References1

Positive Technologies•added 2026/04/30 12:0 a.m.•2 views

PT-2026-36195

Name of the Vulnerable Software and Affected Versions Exim versions prior to 4.99.2 Description On systems using musl libc instead of glibc, an attacker can crash the connection instance by providing malformed DNS data in PTR records. This issue stems from an oddity in octal printing within the d...

7.5CVSS5.8AI score0.0019EPSS

Exploits0References15

Tenable Nessus•added 2026/01/20 12:0 a.m.•2 views

MiracleLinux 8 : firefox-115.11.0-1.el8_10.ML.1 (AXSA:2024-8466:22)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2024-8466:22 advisory. firefox: Arbitrary JavaScript execution in PDF.js CVE-2024-4367 firefox: IndexedDB files retained in private browsing mode CVE-2024-4767 firefox:...

8.8CVSS8AI score0.40321EPSS

Exploits17References7

EUVD•added 2025/10/16 6:30 p.m.•1 views

EUVD-2025-34784

In quickjs, in jsprintobject, when printing an array, the function first fetches the array length and then loops over it. The issue is, printing a value is not side-effect free. An attacker-defined callback could run during jsprintvalue, during which the array could get resized and len1 become ou...

8.8CVSS6.5AI score0.00028EPSS

Exploits1References3

SUSE CVE•added 2023/02/15 3:41 a.m.•2 views

SUSE CVE-2021-30600

Use after free in Printing in Google Chrome prior to 92.0.4515.159 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS6.7AI score0.00765EPSS

Exploits1References7

OSV•added 2017/01/28 1:59 a.m.•0 views

ALPINE-CVE-2016-7931

The MPLS parser in tcpdump before 4.9.0 has a buffer overflow in print-mpls.c:mplsprint...

9.8CVSS7.7AI score0.00877EPSS

Exploits0References1

OSV•added 2014/08/13 11:55 p.m.•1 views

DEBIAN-CVE-2014-3508

The OBJobj2txt function in crypto/objects/objdat.c in OpenSSL 0.9.8 before 0.9.8zb, 1.0.0 before 1.0.0n, and 1.0.1 before 1.0.1i, when pretty printing is used, does not ensure the presence of '\0' characters, which allows context-dependent attackers to obtain sensitive information from process...

4.3CVSS6.2AI score0.03123EPSS

Exploits0References1

Tenable Nessus•added 2013/03/05 12:0 a.m.•26 views

Scientific Linux Security Update : evolution on SL6.x i386/x86_64 (20130221)

The way Evolution handled mailto URLs allowed any file to be attached to the new message. This could lead to information disclosure if the user did not notice the attached file before sending the message. With this update, mailto URLs cannot be used to attach certain files, such as hidden files o...

4.3CVSS7AI score0.00816EPSS

Exploits0References2