Lucene search
K

31 matches found

EUVD
EUVD
added 6 days ago7 views

EUVD-2026-40709

Insufficient policy enforcement in StorageAccessAPI in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00247EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/06/05 10:15 a.m.44 views

CVE-2026-21026

Improper export of android application components in SpriteWallpaper prior to SMR Jun-2026 Release 1 allows local attackers to access to sensitive information...

6.4CVSS0.00093EPSS
Exploits0References1
CVE
CVE
added 2026/05/13 4:56 a.m.20 views

CVE-2026-21022

Technical details about CVE-2026-21022 are not publicly available in the provided documents. Monitor for updates from Samsung security advisories and CVE listings.

6.9CVSS5.8AI score0.00093EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/05/06 6:12 p.m.28 views

CVE-2026-7954

Race in Shared Storage in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

0.00155EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/04/13 5:9 a.m.2 views

CVE-2026-21008

Exposure of sensitive information in S Share prior to SMR Apr-2026 Release 1 allows adjacent attacker to access sensitive information...

5.1CVSS5.8AI score0.00163EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/08 12:0 a.m.7 views

CVE-2026-31040

A vulnerability was identified in stata-mcp prior to v1.13.0 where insufficient validation of user-supplied Stata do-file content can lead to command execution...

5.9AI score0.00557EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/03/24 12:0 a.m.7 views

PT-2026-27333

Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in linkingvision rapidvms.This issue affects rapidvms: before PR96...

7.8CVSS5.8AI score0.00111EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/02/04 6:14 a.m.6 views

CVE-2026-20983

Improper export of android application components in Samsung Dialer prior to SMR Feb-2026 Release 1 allows local attackers to launch arbitrary activity with Samsung Dialer privilege...

8.4CVSS5.5AI score0.00129EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/01/27 10:14 p.m.21 views

CVE-2026-24909

vlt before 1.0.0-rc.10 mishandles path sanitization for tar, leading to path traversal during extraction...

5.9CVSS0.0018EPSS
Exploits0References4
OSV
OSV
added 2025/10/14 3:16 p.m.4 views

CVE-2025-10986

Path traversal in the admin panel of Ivanti EPMM before version 12.6.0.2, 12.5.0.4, and 12.4.0.4 allows a remote authenticated attacker with admin privileges to write data in unintended locations on disk...

5.5CVSS5.8AI score0.00563EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/10 4:20 p.m.7 views

CVE-2025-59994

An Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Juniper Networks Junos Space allows an attacker to inject script tags in the Quick Template page that, when visited by another user, enables the attacker to execute commands with the target's...

6.1CVSS6.9AI score0.00207EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-20561

Malware in sbrugna...

9.8CVSS9.5AI score0.07314EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/08/23 12:23 a.m.5 views

CVE-2025-55383

Moss before v0.15 has a file upload vulnerability. The "upload" function configuration allows attackers to upload files of any extension to any location on the target server...

8.6CVSS7.2AI score0.00265EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:30 p.m.4 views

CVE-2020-6016

Valve's Game Networking Sockets prior to version v1.2.0 improperly handles unreliable segments with negative offsets in function SNPReceiveUnreliableSegment, leading to a Heap-Based Buffer Underflow and a free of memory not from the heap, resulting in a memory corruption and probably even a remot...

10CVSS7.7AI score0.05753EPSS
Exploits1References1
OSV
OSV
added 2025/03/06 5:15 a.m.7 views

CVE-2025-20911

Improper access control in semwifi service prior to SMR Mar-2025 Release 1 allows privileged local attackers to update MAC address of Galaxy Watch...

4.4CVSS5.8AI score0.00127EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/01/04 12:0 a.m.6 views

SAMSUNG mobile devices security vulnerability

SAMSUNG mobile devices are a range of Samsung mobile devices, including cell phones, tablets, and more, from the South Korean company Samsung SAMSUNG. A security vulnerability exists in SAMSUNG mobile devices SMR Jan-2024 Release 1 version and prior versions, which stems from an improper access...

5.5CVSS6.5AI score0.00155EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/01/04 12:0 a.m.4 views

PT-2024-18712 · Samsung · Samsung Mobile Devices

Name of the Vulnerable Software and Affected Versions: Samsung Mobile Devices versions prior to SMR Jan-2024 Release 1 Description: The issue is related to improper access control in the Notification service, allowing a local attacker to access notification data. Recommendations: For versions pri...

6.2CVSS5.2AI score0.00147EPSS
Exploits0References4
OSV
OSV
added 2023/08/12 11:5 a.m.3 views

OESA-2023-1504 bouncycastle security update

The package is organised so that it contains a light-weight API suitable for use in any environment including the newly released J2ME with the additional infrastructure to conform the algorithms to the JCE framework. Security Fixes: Bouncy Castle For Java before 1.74 is affected by an LDAP...

5.3CVSS7.1AI score0.00772EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/08/10 12:0 a.m.4 views

PT-2023-22881 · Telecom · Telecom

Name of the Vulnerable Software and Affected Versions: Telecom versions prior to SMR Aug-2023 Release 1 Description: The issue is related to improper access control, allowing local attackers to call the "endCall API" without permission. This can be exploited by attackers to potentially disrupt or...

4.3CVSS3.8AI score0.00137EPSS
Exploits0References4
OSV
OSV
added 2023/06/16 1:15 p.m.8 views

CVE-2023-20885

Vulnerability in Cloud Foundry Notifications, Cloud Foundry SMB-volume release, Cloud FOundry cf-nfs-volume release.This issue affects Notifications: All versions prior to 63; SMB-volume release: All versions prior to 3.1.19; cf-nfs-volume release: 5.0.X versions prior to 5.0.27, 7.1.X versions...

6.5CVSS5.8AI score0.00541EPSS
Exploits0References1
Rows per page
Query Builder