Lucene search
K

7036 matches found

OSV
OSV
added 2026/06/30 11:17 p.m.2 views

DEBIAN-CVE-2026-13882

Race in USB in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

9.6CVSS5.8AI score0.00224EPSS
Exploits0References1
NVD
NVD
added 2026/06/30 11:17 p.m.4 views

CVE-2026-13880

Use after free in USB in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

9.6CVSS0.0028EPSS
Exploits0References2
NVD
NVD
added 2026/06/30 11:17 p.m.4 views

CVE-2026-13882

Race in USB in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

9.6CVSS0.00224EPSS
Exploits0References2
Circl
Circl
added 2026/06/30 10:41 p.m.9 views

CVE-2026-11541

creationtimestamp| type| source ---|---|--- 2026-06-30 22:41:11+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpk34s2k5x2u 2026-07-01 02:51:56+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mpkj56ehry2l 2026-07-02 01:31:56+00:00| seen|...

9.8CVSS5.9AI score0.00418EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2026/06/30 10:39 p.m.4 views

CVE-2026-14083

Insufficient validation of untrusted input in HTML in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: Low...

6.1CVSS6AI score0.00182EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/30 10:38 p.m.5 views

CVE-2026-13880

Use after free in USB in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

9.6CVSS5.8AI score0.0028EPSS
Exploits0
CVE
CVE
added 2026/06/30 10:38 p.m.15 views

CVE-2026-13882

CVE-2026-13882 describes a race in USB handling in Google Chrome before 150.0.7871.47 that could allow a remote attacker who has compromised the renderer process to escape the sandbox via a crafted HTML page. The issue is documented across NVD, Debian, EUVD, and other feeds with a consistent desc...

9.6CVSS5.8AI score0.00224EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/30 10:38 p.m.13 views

CVE-2026-13880

Google Chrome for macOS prior to 150.0.7871.47 is affected by CVE-2026-13880 due to a use-after-free in USB handling that could allow a remote attacker who has compromised the renderer process to escape the sandbox via a crafted HTML page. The issue affects Chrome on Mac, with the mitigation bein...

9.6CVSS5.8AI score0.0028EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/30 12:0 a.m.5 views

PT-2026-54123

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description A use after free issue exists in the USB component of Google Chrome on Mac. This flaw allows a remote attacker who has already compromised the renderer process to potentially achieve a...

9.6CVSS6AI score0.00413EPSS
Exploits0References439
Positive Technologies
Positive Technologies
added 2026/06/30 12:0 a.m.5 views

PT-2026-54159

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description A race condition in the USB component allows a remote attacker who has already compromised the renderer process to potentially achieve a sandbox escape. This is triggered through the us...

9.6CVSS6AI score0.00413EPSS
Exploits0References439
Cvelist
Cvelist
added 2026/06/29 9:39 p.m.26 views

CVE-2026-10647 Deadlock denial of service in USB CDC-NCM device class on TX enqueue failure

The USB CDC-NCM device class subsys/usb/devicenext/class/usbdcdcncm.c ignores the return value of usbdepenqueue in its ethernet transmit callback cdcncmsend. When the enqueue fails, the function still calls ksemtake&data-syncsem, KFOREVER, blocking on a completion semaphore that is only ever...

5.3CVSS0.00134EPSS
Exploits1References2
CVE
CVE
added 2026/06/29 3:23 p.m.14 views

CVE-2026-13437

CVE-2026-13437 affects Devolutions PowerShell Universal 2026.2.0. An attacker with AI Agent read access can exploit the AI Agent job API to receive App Tokens serialized in plaintext within API responses, enabling retrieval of reusable authentication tokens with potential higher privilege. The un...

6.5CVSS5.8AI score0.00255EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/06/29 3:23 p.m.36 views

CVE-2026-13437

Insertion of sensitive information into sent data in the AI Agent job API in Devolutions PowerShell Universal 2026.2.0 allows an authenticated user with AI Agent read access to obtain reusable, potentially higher-privileged authentication tokens via App Tokens serialized in plaintext in job API...

0.00255EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/29 12:0 a.m.10 views

PT-2026-53303

Name of the Vulnerable Software and Affected Versions Devolutions PowerShell Universal version 2026.2.0 Description An information disclosure issue exists in the AI Agent job API. An authenticated user with AI Agent read access can obtain reusable, potentially higher-privileged authentication...

6.5CVSS5.8AI score0.00255EPSS
Exploits0References7
Circl
Circl
added 2026/06/28 1:22 p.m.8 views

CVE-2026-13487

creationtimestamp| type| source ---|---|--- 2026-06-28 13:22:36+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mpe2y3obci2v 2026-06-28 14:35:33+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpe72l5y2323 2026-06-29 19:46:18+00:00| seen|...

7.5CVSS7.1AI score0.00269EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2026/06/27 8:18 a.m.9 views

USB: serial: io_ti: fix heap overflow in get_manuf_info()

...

7.8CVSS5.8AI score0.00284EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/06/27 8:8 a.m.7 views

USB: serial: kl5kusb105: fix bulk-out buffer overflow

...

7.8CVSS5.8AI score0.00148EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/06/26 6:29 p.m.7 views

CVE-2026-53037

A flaw was found in the Linux kernel's USB Human Interface Device HID subsystem. This vulnerability occurs when a USB device, containing both HID and storage or Universal Attached SCSI UAS components, is reset. During the reset process, memory allocation operations within the hidpostreset functio...

5.5CVSS5.7AI score0.00176EPSS
Exploits0References4
Circl
Circl
added 2026/06/26 2:18 p.m.9 views

CVE-2026-57924

creationtimestamp| type| source ---|---|--- 2026-06-26 14:18:37+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mp756gpb7h27...

5.3CVSS5.8AI score0.00167EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/26 11:14 a.m.12 views

CVE-2026-53194

A flaw was found in the Linux kernel's kl5kusb105 USB serial driver. This buffer overflow vulnerability allows a local attacker to write data beyond the intended memory boundary if attacker controls USB device or driver, because triggered from the internals of the device. By sending a specially...

7.8CVSS6AI score0.00148EPSS
Exploits0References4
Rows per page
Query Builder