Lucene search
+L

23 matches found

Microsoft CVE
Microsoft CVE
added last week5 views

Chromium: CVE-2026-13904 Incorrect security UI in Safe Browsing

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.5CVSS6.1AI score0.00264EPSS
Exploits0
NVD
NVD
added 2026/06/30 11:17 p.m.7 views

CVE-2026-13998

Incorrect security UI in File Input in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.2CVSS0.00154EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.20 views

PT-2026-46797

Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 149.0.7827.53 Description An inappropriate implementation in the user interface allows a remote attacker to leak cross-origin data, which is information from a different origin than the one that...

9.6CVSS5.5AI score0.00493EPSS
Exploits0References434
NVD
NVD
added 2026/05/28 11:16 p.m.12 views

CVE-2026-9937

Use after free in UI in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS0.00222EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/05/28 10:25 p.m.30 views

CVE-2026-9984

Use after free in UI in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.2AI score0.00234EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/05/28 10:25 p.m.10 views

CVE-2026-9951

Use after free in UI in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00222EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2026/05/14 7:52 p.m.38 views

CVE-2026-8575

Use after free in UI in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

8.3CVSS5.8AI score0.00176EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/05/14 7:52 p.m.9 views

CVE-2026-8561

Incorrect security UI in Fullscreen in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

5.4CVSS5.8AI score0.00184EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/06 6:13 p.m.8 views

CVE-2026-7991

Use after free in UI in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

6.2AI score0.00223EPSS
Exploits0References2
OSV
OSV
added 2025/02/05 11:15 p.m.4 views

CVE-2024-38317

IBM Aspera Shares 1.9.0 through 1.10.0 PL6 is vulnerable to cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session...

4.8CVSS5.4AI score0.00214EPSS
Exploits0References1
OSV
OSV
added 2024/05/30 11:15 p.m.10 views

DEBIAN-CVE-2024-5497

Out of bounds memory access in Browser UI in Google Chrome prior to 125.0.6422.141 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS8.1AI score0.00738EPSS
Exploits1References1
OSV
OSV
added 2024/03/06 10:55 a.m.29 views

BIT-GRAFANA-2022-32276

Grafana 8.4.3 allows unauthenticated access via for example a /dashboard/snapshot/?orgId=0 URI. NOTE: the vendor considers this a UI bug, not a vulnerability...

7.5CVSS7.6AI score0.03487EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2023/09/26 6:1 p.m.11 views

CVE-2023-30961 Palantir Gotham UI bug that could lead to incorrect data classification

Palantir Gotham was found to be vulnerable to a bug where under certain circumstances, the frontend could have applied an incorrect classification to a newly created property or link...

6.5CVSS6.8AI score0.00351EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/09/26 6:1 p.m.38 views

CVE-2023-30961 Palantir Gotham UI bug that could lead to incorrect data classification

Palantir Gotham was found to be vulnerable to a bug where under certain circumstances, the frontend could have applied an incorrect classification to a newly created property or link...

6.5CVSS6.6AI score0.00351EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/06/17 1:15 p.m.3 views

CVE-2022-32276

Grafana 8.4.3 allows unauthenticated access via for example a /dashboard/snapshot/?orgId=0 URI. NOTE: the vendor considers this a UI bug, not a vulnerability...

7.5CVSS5.3AI score0.03487EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2022/06/17 1:15 p.m.45 views

CVE-2022-32276

Grafana 8.4.3 allows unauthenticated access via for example a /dashboard/snapshot/?orgId=0 URI. NOTE: the vendor considers this a UI bug, not a vulnerability...

7.5CVSS7.1AI score0.03487EPSS
Exploits1References3
OSV
OSV
added 2022/06/17 11:38 a.m.10 views

CVE-2022-32276

Grafana 8.4.3 allows unauthenticated access via for example a /dashboard/snapshot/?orgId=0 URI. NOTE: the vendor considers this a UI bug, not a vulnerability...

7.5CVSS7.6AI score0.03487EPSS
Exploits1References4
Cvelist
Cvelist
added 2022/06/17 11:38 a.m.213 views

CVE-2022-32276

Grafana 8.4.3 allows unauthenticated access via for example a /dashboard/snapshot/?orgId=0 URI. NOTE: the vendor considers this a UI bug, not a vulnerability...

7.8AI score0.03487EPSS
Exploits1References2
CVE
CVE
added 2022/06/17 11:38 a.m.91 views

CVE-2022-32276

Grafana 8.4.3 allows unauthenticated access via a /dashboard/snapshot/*?orgId=0 URI. The vendor labels this as a UI bug, not a vulnerability. Connected Red Hat and OSV entries reiterate the same issue and list Grafana 8.4.3 as affected. No public exploit details are provided in the documents. Rem...

7.5CVSS7.5AI score0.03487EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2021/10/08 10:15 p.m.6 views

UBUNTU-CVE-2021-37971

Incorrect security UI in Web Browser UI in Google Chrome prior to 94.0.4606.54 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

4.3CVSS6.7AI score0.01174EPSS
Exploits1References2
Rows per page
Query Builder