Lucene search
K

1594 matches found

SUSE CVE
SUSE CVE
added 2026/05/08 2:26 a.m.13 views

SUSE CVE-2026-7960

Race in Speech in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

5.3CVSS5.8AI score0.00176EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2026/05/07 2:0 p.m.9 views

Chromium: CVE-2026-7935 Inappropriate implementation in Speech

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

5.4CVSS5.8AI score0.0019EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/05/07 2:0 p.m.8 views

Chromium: CVE-2026-7960 Race in Speech

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

5.3CVSS5.8AI score0.00176EPSS
Exploits0
EUVD
EUVD
added 2026/05/06 9:31 p.m.8 views

EUVD-2026-27974

Inappropriate implementation in Speech in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

5.4CVSS5.8AI score0.0019EPSS
Exploits0References3
NVD
NVD
added 2026/05/06 7:16 p.m.6 views

CVE-2026-7935

Inappropriate implementation in Speech in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

5.4CVSS0.0019EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/05/06 7:16 p.m.9 views

CVE-2026-7960

Race in Speech in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

5.3CVSS5.8AI score0.00176EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/05/06 7:16 p.m.9 views

CVE-2026-7935

Inappropriate implementation in Speech in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

5.4CVSS5.8AI score0.0019EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/05/06 6:12 p.m.8 views

CVE-2026-7960

Race in Speech in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

5.3CVSS5.8AI score0.00176EPSS
Exploits0
Cvelist
Cvelist
added 2026/05/06 6:12 p.m.46 views

CVE-2026-7960

Race in Speech in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

0.00176EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/06 6:12 p.m.8 views

CVE-2026-7935

Inappropriate implementation in Speech in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.0019EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/05/06 6:12 p.m.11 views

CVE-2026-7935

Inappropriate implementation in Speech in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

5.4CVSS5.8AI score0.0019EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/06 6:12 p.m.7 views

CVE-2026-7935

Inappropriate implementation in Speech in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

5.4CVSS5.8AI score0.0019EPSS
Exploits0
CNNVD
CNNVD
added 2026/05/05 12:0 a.m.9 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by the American company Google. Versions of Google Chrome prior to 148.0.7778.96 contained a security vulnerability caused by improper handling of Speech features. This vulnerability could allow remote attackers to execute UI deception through specially...

5.4CVSS5.9AI score0.0019EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/05/05 12:0 a.m.14 views

PT-2026-38128

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.96 Description An inappropriate implementation in the Speech component allows a remote attacker to perform UI spoofing, which is the act of mimicking a legitimate user interface to deceive users, via ...

9.6CVSS5.8AI score0.00344EPSS
Exploits0References136
Positive Technologies
Positive Technologies
added 2026/05/05 12:0 a.m.17 views

PT-2026-38153

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.96 Description A race condition in the Speech component allows a remote attacker who has already compromised the renderer process to obtain potentially sensitive information from process memory by usi...

9.6CVSS5.8AI score0.00344EPSS
Exploits0References135
CNNVD
CNNVD
added 2026/05/05 12:0 a.m.11 views

Google Chrome 竞争条件问题漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.96 contained a vulnerability related to speech processing. This vulnerability could allow remote attackers to access potentially sensitive information from process memory through specially crafte...

5.3CVSS5.8AI score0.00176EPSS
Exploits0References3
Patchstack
Patchstack
added 2026/05/01 9:15 a.m.8 views

WordPress Text To Speech TTS Accessibility plugin <= 1.7.34 - Unauthenticated Reflected Cross-Site Scripting vulnerability

Unauthenticated Reflected Cross-Site Scripting vulnerability discovered by Asaf Mozes in WordPress Plugin Text To Speech TTS Accessibility versions = 1.7.34...

6.1CVSS5.8AI score0.00276EPSS
Exploits0References1Affected Software1
Fedora
Fedora
added 2026/04/25 1:55 a.m.6 views

[SECURITY] Fedora 44 Update: qt6-qtspeech-6.10.3-1.fc44

The module enables a Qt application to support accessibility features such as text-to-speech, which is useful for end-users who are visually challenged or cannot access the application for whatever reason. The most common use case where text-to-speech comes in handy is when the end-user is drivin...

5.4AI score
Exploits0
NVD
NVD
added 2026/04/23 8:16 p.m.9 views

CVE-2026-41279

Flowise is a drag & drop user interface to build a customized large language model flow. Prior to 3.1.0, the text-to-speech generation endpoint POST /api/v1/text-to-speech/generate is whitelisted no auth and accepts a credentialId directly in the request body. When called without a chatflowId, th...

8.2CVSS0.00261EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/04/23 7:53 p.m.8 views

CVE-2026-41279

Flowise is a drag & drop user interface to build a customized large language model flow. Prior to 3.1.0, the text-to-speech generation endpoint POST /api/v1/text-to-speech/generate is whitelisted no auth and accepts a credentialId directly in the request body. When called without a chatflowId, th...

8.2CVSS5.8AI score0.00261EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder