Lucene search
K

1684 matches found

The Hacker News
The Hacker News
added 2026/06/09 9:50 a.m.16 views

New FROST Attack Lets Websites Track What Sites and Apps You Open via SSD Timing

A malicious website can work out which sites you visit and which apps you open, using nothing but JavaScript and the timing of your SSD. The attack, called FROST , needs no native code, no extension, and no permission prompt. You open the page, leave the tab sitting there, and it watches the driv...

5.6AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/06/09 12:0 a.m.37 views

FROST: Fingerprinting Remotely Using OPFS-based SSD Timing

Prior work showed that variations in SSD access time can be used to leak information about user activity, e.g., the websites a user accesses, and for covert data transmission. To achieve this, SSD contention side channels require accurate high-resolution timing measurements of I/O operations, e.g...

6.2AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/06/05 7:40 p.m.9 views

CVE-2025-40745

A vulnerability has been identified in Siemens Software Center All versions V3.5.8.2, Simcenter 3D All versions V2506.6000, Simcenter Femap All versions V2506.0002, Simcenter STAR-CCM+ All versions V2602, Solid Edge SE2025 All versions V225.0 Update 13, Solid Edge SE2026 All versions V226.0 Updat...

6.3CVSS5.4AI score0.00137EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:12 p.m.6 views

CVE-2026-44412

A vulnerability has been identified in Solid Edge SE2026 All versions V226.0 Update 5. The affected applications contain a stack based overflow vulnerability while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process...

7.8CVSS7.9AI score0.00106EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:11 p.m.8 views

CVE-2026-44411

A vulnerability has been identified in Solid Edge SE2026 All versions V226.0 Update 5. The affected application is vulnerable to uninitialized pointer access while parsing specially crafted PAR files. An attacker could leverage this vulnerability to execute code in the context of the current...

7.8CVSS7.8AI score0.00105EPSS
Exploits0References1
Wired Threat Level
Wired Threat Level
added 2026/06/01 9:30 a.m.19 views

Websites Can Now Spy on You Through Your Hard Drive

Thanks to the newly detailed FROST technique, telltale SSD activity can be measured in the browser using simple JavaScript...

5.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/05/15 12:0 a.m.13 views

Siemens Solid Edge Multiple File Parsing Vulnerabilities (SSA-921111)

The version of Siemens Solid Edge installed on the remote Windows host is SE2026 prior to V226.0 Update 5. It is, therefore, affected by multiple file parsing vulnerabilities: - The affected application is vulnerable to uninitialized pointer access while parsing specially crafted PAR files. An...

7.8CVSS7.6AI score0.00106EPSS
Exploits0References3
vulnersOsv
vulnersOsv
added 2026/05/14 4:37 p.m.9 views

@ardeora/start-devtools (>=1.0.0 <=1.0.1), @carvajalconsultants/headstart (>=1.0.0 <=1.0.2) +29 more potentially affected by unknown CVE via @tanstack/start-server-core (>=1.121.0-alpha.28 <=1.167.3)

@tanstack/start-server-core NPM version =1.121.0-alpha.28, =1.0.0, =1.0.0, =0.0.14, =0.3.0, =0.3.0, =1.20.3-alpha.1, =1.111.10, =1.121.23, =0.0.1, =1.121.0-alpha.28, =1.20.3-alpha.1, =1.114.29, =1.121.23, =1.121.0-alpha.28, =1.97.4, =1.120.20 and more Source cves: unknown CVE Source advisory:...

5.5AI score
Exploits0
EUVD
EUVD
added 2026/05/12 12:32 p.m.36 views

EUVD-2026-29436

A vulnerability has been identified in Solid Edge SE2026 All versions V226.0 Update 5. The affected applications contain a stack based overflow vulnerability while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process...

7.8CVSS6AI score0.00106EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/12 12:32 p.m.11 views

EUVD-2026-29435

A vulnerability has been identified in Solid Edge SE2026 All versions V226.0 Update 5. The affected application is vulnerable to uninitialized pointer access while parsing specially crafted PAR files. An attacker could leverage this vulnerability to execute code in the context of the current...

7.8CVSS5.9AI score0.00105EPSS
Exploits0References2
NVD
NVD
added 2026/05/12 10:16 a.m.22 views

CVE-2026-44412

A vulnerability has been identified in Solid Edge SE2026 All versions V226.0 Update 5. The affected applications contain a stack based overflow vulnerability while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process...

7.8CVSS0.00106EPSS
Exploits0References1
NVD
NVD
added 2026/05/12 10:16 a.m.13 views

CVE-2026-44411

A vulnerability has been identified in Solid Edge SE2026 All versions V226.0 Update 5. The affected application is vulnerable to uninitialized pointer access while parsing specially crafted PAR files. An attacker could leverage this vulnerability to execute code in the context of the current...

7.8CVSS0.00105EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/12 8:21 a.m.38 views

CVE-2026-44412

A vulnerability has been identified in Solid Edge SE2026 All versions V226.0 Update 5. The affected applications contain a stack based overflow vulnerability while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process...

7.8CVSS0.00106EPSS
Exploits0References1
CVE
CVE
added 2026/05/12 8:21 a.m.24 views

CVE-2026-44412

CVE-2026-44412 affects Solid Edge SE2026 (all versions

7.8CVSS6AI score0.00106EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/12 8:21 a.m.8 views

CVE-2026-44412

A vulnerability has been identified in Solid Edge SE2026 All versions V226.0 Update 5. The affected applications contain a stack based overflow vulnerability while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process...

7.8CVSS6AI score0.00106EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/12 8:21 a.m.6 views

CVE-2026-44412

A vulnerability has been identified in Solid Edge SE2026 All versions V226.0 Update 5. The affected applications contain a stack based overflow vulnerability while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process...

7.8CVSS6AI score0.00106EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/12 8:21 a.m.35 views

CVE-2026-44411

A vulnerability has been identified in Solid Edge SE2026 All versions V226.0 Update 5. The affected application is vulnerable to uninitialized pointer access while parsing specially crafted PAR files. An attacker could leverage this vulnerability to execute code in the context of the current...

7.8CVSS0.00105EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/12 8:21 a.m.10 views

CVE-2026-44411

A vulnerability has been identified in Solid Edge SE2026 All versions V226.0 Update 5. The affected application is vulnerable to uninitialized pointer access while parsing specially crafted PAR files. An attacker could leverage this vulnerability to execute code in the context of the current...

7.8CVSS5.9AI score0.00105EPSS
Exploits0References1
CVE
CVE
added 2026/05/12 8:21 a.m.11 views

CVE-2026-44411

Solid Edge SE2026 is affected (versions

7.8CVSS5.9AI score0.00105EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/12 8:21 a.m.10 views

CVE-2026-44411

A vulnerability has been identified in Solid Edge SE2026 All versions V226.0 Update 5. The affected application is vulnerable to uninitialized pointer access while parsing specially crafted PAR files. An attacker could leverage this vulnerability to execute code in the context of the current...

7.8CVSS5.9AI score0.00105EPSS
Exploits0References2
Rows per page
Query Builder