Lucene search
K

15821 matches found

RedhatCVE
RedhatCVE
added yesterday5 views

CVE-2026-58208

A flaw was found in NATS Server. An unauthenticated client with access to the WebSocket listener could exploit a vulnerability where requests for the MQTT-over-WebSocket path were incorrectly routed into MQTT handling, even when MQTT was not configured. This allowed the client to access...

7.5CVSS6AI score0.00593EPSS
Exploits0References8
EUVD
EUVD
added 5 days ago9 views

EUVD-2026-42478

Uninitialized Use in V8 in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

6.3AI score0.0027EPSS
Exploits0References3
EUVD
EUVD
added 5 days ago8 views

EUVD-2026-42481

Uninitialized Use in ANGLE in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

6AI score0.00215EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 5 days ago8 views

Google Chrome < 150.0.7871.114 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 150.0.7871.114. It is, therefore, affected by multiple vulnerabilities as referenced in the 202607stable-channel-update-for-desktop01162222768 advisory. - Use after free in InterestGroups in Google Chrome prior to...

9.6CVSS6.4AI score0.00306EPSS
Exploits0References55
Tenable Nessus
Tenable Nessus
added 5 days ago7 views

Google Chrome < 150.0.7871.114 Multiple Vulnerabilities

The version of Google Chrome installed on the remote macOS host is prior to 150.0.7871.114. It is, therefore, affected by multiple vulnerabilities as referenced in the 202607stable-channel-update-for-desktop01162222768 advisory. - Use after free in InterestGroups in Google Chrome prior to...

9.6CVSS6.4AI score0.00306EPSS
Exploits0References55
NVD
NVD
added 6 days ago8 views

CVE-2026-15132

Uninitialized Use in V8 in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS0.0027EPSS
Exploits0References2
Snyk
Snyk
added 6 days ago6 views

Uncaught Exception

Overview github.com/nats-io/nats-server/v2/server is an A simple, secure and performant communications system for digital systems, services and devices. Affected versions of this package are vulnerable to Uncaught Exception in the WebSocket listener routing, which dispatches requests for the...

8.2CVSS6.1AI score0.00593EPSS
Exploits0References2
Debian CVE
Debian CVE
added 6 days ago4 views

CVE-2026-15109

Uninitialized Use in ANGLE in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

6.5CVSS6AI score0.00215EPSS
Exploits0
CVE
CVE
added 6 days ago11 views

CVE-2026-15109

Summary: CVE-2026-15109 affects Google Chrome via an uninitialized use in ANGLE. Affected component: ANGLE in Chrome. Impact: remote attacker could potentially read sensitive data from process memory by enticing a user to visit a crafted HTML page. Versions: Chrome prior to 150.0.7871.115 are aff...

6.5CVSS6AI score0.00215EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 6 days ago5 views

CVE-2026-15109

Uninitialized Use in ANGLE in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

6AI score0.00215EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 6 days ago32 views

CVE-2026-15109

Uninitialized Use in ANGLE in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

0.00215EPSS
Exploits0References2
Debian CVE
Debian CVE
added 6 days ago5 views

CVE-2026-15132

Uninitialized Use in V8 in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.3AI score0.0027EPSS
Exploits0
CVE
CVE
added 6 days ago26 views

CVE-2026-15132

CVE-2026-15132 affects Google Chrome (V8) with an Uninitialized Use in V8 that could allow a remote attacker to execute arbitrary code inside the browser sandbox via a crafted HTML page. The vulnerability is rated High (CVSS 3.1 base score 8.8) with network attack vector, requiring user interacti...

8.8CVSS6.3AI score0.0027EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 6 days ago32 views

CVE-2026-15132

Uninitialized Use in V8 in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

0.0027EPSS
Exploits0References2
Cvelist
Cvelist
added 6 days ago34 views

CVE-2026-15168 Use of Uninitialized Variable in Wireshark

BLF file parser in Wireshark 4.6.0 to 4.6.6 and 4.4.0 to 4.4.16 allows possible information disclosure...

2.5CVSS0.00102EPSS
Exploits1References2
CVE
CVE
added 6 days ago14 views

CVE-2026-15168

Wireshark is affected by CVE-2026-15168 due to a vulnerability in the BLF file parser. Versions 4.6.0–4.6.6 and 4.4.0–4.4.16 are susceptible to information disclosure. The CVSS v3.1 score is 2.5 (LOW); attack vector LOCAL, required user interaction, high complexity, and no privileges required. Th...

3.3CVSS5.9AI score0.00102EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 6 days ago35 views

CVE-2026-55761 Portainer: Unauthenticated Restore Endpoint Allows Admin Takeover on Uninitialised Portainer Instances

Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. In versions 2.39.0 through 2.39.3 and 2.40.0 until 2.43.0, unauthenticated restore and administrator initialization...

7.1CVSS0.00272EPSS
Exploits1References6
CVE
CVE
added 6 days ago9 views

CVE-2026-55761

Portainer Community Edition contains a vulnerability where, in versions 2.39.0–2.39.3 and 2.40.0–2.43.0, unauthenticated restore and administrator initialization endpoints (/api/restore and /api/users/admin/init) remain accessible during the five-minute setup window for uninitialized instances. A...

7.1CVSS5.9AI score0.00272EPSS
Exploits1References6Affected Software1
Positive Technologies
Positive Technologies
added 6 days ago9 views

PT-2026-56651

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.115 Description An uninitialized use in the V8 engine allows a remote attacker to execute arbitrary code within a sandbox by using a specially crafted HTML page. V8 is the open-source JavaScript and...

9.6CVSS6.4AI score0.0027EPSS
Exploits0References35
RedHat Linux
RedHat Linux
added 2026/07/06 2:31 p.m.5 views

kernel: RDMA/mlx4: Fix mis-use of RCU in mlx4_srq_event()

A flaw was found in the Linux kernel's RDMA/mlx4 component. This vulnerability arises from the incorrect use of Read-Copy Update RCU in the mlx4srqevent function. An attacker could potentially trigger an event before the srq object is fully initialized, leading to a system crash. This could resul...

7.8CVSS6.5AI score0.00114EPSS
Exploits0References5
Rows per page
Query Builder