Lucene search
K

220 matches found

Cvelist
Cvelist
added 2026/05/28 10:25 p.m.31 views

CVE-2026-9989

Inappropriate implementation in Media in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to bypass same origin policy via a crafted video file. Chromium security severity: High...

0.00012EPSS
Exploits0References2
CVE
CVE
added 2026/05/14 7:52 p.m.9 views

CVE-2026-8573

Google Chrome on Windows is affected by CVE-2026-8573 due to an integer overflow in Codecs, enabling a remote attacker to potentially escape the sandbox via a crafted video file. Affected versions are Windows builds prior to 148.0.7778.168; remediation is to update to 148.0.7778.168 or newer. Chr...

8.3CVSS5.9AI score0.00086EPSS
Exploits0References2Affected Software1
Snyk
Snyk
added 2026/05/14 7:16 p.m.5 views

Division by zero

Overview Affected versions of this package are vulnerable to Division by zero in the qtdemuxaudiocaps function of the isomp4 plugin when parsing MP4 audio tracks. An attacker can cause a denial of service by supplying crafted atom data that triggers an integer division by zero. Remediation A fix...

9.1CVSS5.8AI score0.00039EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.5 views

Google Chrome 缓冲区错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.168 contained a buffer overflow vulnerability, which was caused by an out-of-bounds write issue in the Codecs component. This vulnerability could allow remote attackers to execute a sandbox escap...

8.3CVSS6.2AI score0.00092EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/05/05 8:41 a.m.5 views

nginx: NGINX: Denial of Service or Code Execution via specially crafted MP4 files

A flaw was found in NGINX's ngxhttpmp4module. This Out-of-Bounds Read/Write vulnerability occurs due to improper handling of specially crafted MP4 files. A local authenticated attacker, by supplying a malicious MP4 file, can trigger a buffer over-read or overwrite in worker memory. This can lead ...

8.5CVSS7.7AI score0.00026EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/04/23 4:12 p.m.2 views

CVE-2026-6921

Race in GPU in Google Chrome on Windows prior to 147.0.7727.117 allowed a remote attacker to potentially perform a sandbox escape via a crafted video file. Chromium security severity: Medium...

5.8AI score0.00028EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/09 12:0 a.m.0 views

Linux Distros Unpatched Vulnerability : CVE-2026-5910

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in Media in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to potentially exploit heap corruption via a crafted video file...

8.8CVSS7.4AI score0.00094EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/16 12:24 a.m.4 views

CVE-2025-70299

A heap overflow in the aviparseinputfile function of GPAC v2.4.0 allows attackers to cause a Denial of Service DoS via a crafted AVI file...

6.5CVSS7AI score0.00031EPSS
Exploits1References1
CVE
CVE
added 2026/01/15 12:0 a.m.14 views

CVE-2025-70303

CVE-2025-70303 concerns GPAC v2.4.0, where the uncv_parse_config() function is vulnerable to a heap overflow (CNVD and Red Hat listings corroborate as a DoS risk). Exploitation involves processing a crafted MP4 file, leading to denial of service. Connected sources consistently describe a DoS outc...

5.5CVSS6.6AI score0.00012EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2025/11/24 1:16 p.m.1 views

CVE-2025-41016

Inadequate access control vulnerability in Davantis DFUSION v6.177.7, which allows unauthorised actors to extract images and videos related to alarm events through access to “/alarms//”, where the “MEDIA” parameter can take the value of “snapshot” or “video.mp4”. These media files contain images...

8.7CVSS0.00058EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/06 10:8 p.m.2 views

CVE-2025-11216

Inappropriate implementation in Storage in Google Chrome on Mac prior to 141.0.7390.54 allowed a remote attacker to perform domain spoofing via a crafted video file. Chromium security severity: Low...

6.1AI score0.00031EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2025/11/06 10:8 p.m.6 views

CVE-2025-11216

Inappropriate implementation in Storage in Google Chrome on Mac prior to 141.0.7390.54 allowed a remote attacker to perform domain spoofing via a crafted video file. Chromium security severity: Low...

6.3CVSS8.4AI score0.00031EPSS
Exploits0
GithubExploit
GithubExploit
added 2025/10/18 11:36 a.m.87 views

0-DAY

0-DAYzero-day !Repo Statushttps://img.shields.io/badge/...

5.8AI score
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-27213

Malicious code in bioql PyPI...

8.4CVSS7.6AI score0.00118EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.1 views

EUVD-2025-14622

Malicious code in bioql PyPI...

6.3CVSS6.3AI score0.0051EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-8988

Malicious code in bioql PyPI...

9.8CVSS6.3AI score0.00191EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2017-7208

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The decoderesidual function in libavcodec in libav 9.21 allows remote attackers to cause a denial of service buffer over-read or obtain sensitive information fr...

7.1CVSS7.1AI score0.00226EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2019-20628

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains a Use- After-Free vulnerability in gfm2tsprocesspmt in...

5.5CVSS6.6AI score0.00378EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2019-20632

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains an invalid pointer dereference in gfodfdeletedescriptor in...

5.5CVSS6.6AI score0.00324EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/08/26 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2018-13302

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In FFmpeg 4.0.1, improper handling of frame types other than EAC3FRAMETYPEINDEPENDENT that have multiple independent substreams in the handleeac3 function in...

8.8CVSS6.8AI score0.00881EPSS
Exploits0References2
Rows per page
Query Builder