Lucene search
K

1059 matches found

RedhatCVE
RedhatCVE
added 2026/05/29 12:7 a.m.12 views

CVE-2026-10005

An use after free flaw was found in the WebAppInstalls component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=513750089...

9.6CVSS5.7AI score0.00261EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/05/29 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2026-9990

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in WebAppInstalls in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gesture...

7.5CVSS5.6AI score0.00173EPSS
Exploits0References2
OSV
OSV
added 2026/05/28 11:16 p.m.9 views

DEBIAN-CVE-2026-9990

Use after free in WebAppInstalls in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

7.5CVSS5.8AI score0.00173EPSS
Exploits0References1
NVD
NVD
added 2026/05/28 11:16 p.m.15 views

CVE-2026-9990

Use after free in WebAppInstalls in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

7.5CVSS0.00173EPSS
Exploits0References2
NVD
NVD
added 2026/05/28 11:16 p.m.15 views

CVE-2026-9987

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 148.0.7778.216 allowed a local attacker to execute arbitrary code via a malicious file. Chromium security severity: High...

7.8CVSS0.00099EPSS
Exploits0References2
OSV
OSV
added 2026/05/28 11:16 p.m.12 views

DEBIAN-CVE-2026-9987

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 148.0.7778.216 allowed a local attacker to execute arbitrary code via a malicious file. Chromium security severity: High...

7.8CVSS6.2AI score0.00099EPSS
Exploits0References1
CVE
CVE
added 2026/05/28 10:25 p.m.30 views

CVE-2026-10005

Google Chrome on macOS is affected by CVE-2026-10005 via a use-after-free in the WebAppInstalls component. The flaw allows a remote attacker to execute arbitrary code if the user is persuaded to perform certain UI gestures on a crafted HTML page; impact is high. A patch exists in Chrome version 1...

7.5CVSS6.2AI score0.00261EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2026/05/28 10:25 p.m.11 views

CVE-2026-10005

Use after free in WebAppInstalls in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

7.5CVSS6.2AI score0.00261EPSS
Exploits0
CVE
CVE
added 2026/05/28 10:25 p.m.20 views

CVE-2026-9990

CVE-2026-9990 affects Google Chrome on macOS in the WebAppInstalls component. The vulnerability is a use-after-free leading to potential heap corruption when a user is persuaded to perform specific UI gestures on a crafted HTML page. The issue is tied to Chromium code (upstream bug 513128608) and...

7.5CVSS5.8AI score0.00173EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/28 10:25 p.m.11 views

CVE-2026-9990

Use after free in WebAppInstalls in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00173EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2026/05/28 10:25 p.m.12 views

CVE-2026-9990

Use after free in WebAppInstalls in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

7.5CVSS5.8AI score0.00173EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/05/28 10:25 p.m.13 views

CVE-2026-9987

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 148.0.7778.216 allowed a local attacker to execute arbitrary code via a malicious file. Chromium security severity: High...

6.2AI score0.00099EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/28 12:0 a.m.9 views

PT-2026-44698

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.216 Description A use after free issue exists in WebAppInstalls on Mac. A remote attacker can potentially exploit heap corruption—a condition where memory allocation on the heap is corrupted—via a...

9.6CVSS5.8AI score0.00368EPSS
Exploits0References157
GithubExploit
GithubExploit
added 2026/05/22 11:19 p.m.90 views

web-app-security-lab

Vulnerable Web App — Attack & Defend Lab A deliberately-vulne...

5.8AI score
Exploits0
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Chromium

In incorrect security user interfaces of web app installations in Google Chrome on Android before version 90.0.4430.212, an attacker who convinced a user to install a web application could inject scripts or HTML into a privileged page through a crafted HTML page...

8.8CVSS7.9AI score0.00831EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/20 12:0 a.m.7 views

CVE-2026-44925

Cross-Site Request Forgery CSRF vulnerability in InfoScale v.9.1.3 Operations Manager VIOM allows an attacker to force the user with an active session into clicking a malicious HTML link, which triggers unintended modifications on VIOM web application without the user's knowledge...

5.8AI score0.00198EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2026/05/18 9:0 p.m.6 views

@domoskanonos/nidoca-pwa (>=1.0.1 <=1.0.2) potentially affected by unknown CVE via jest-electron (=0.1.11)

jest-electron NPM version =0.1.11 is affected by a known vulnerability. The following packages have a transitive dependency on jest-electron and may be impacted: - @domoskanonos/nidoca-pwa =1.0.1, =1.0.2 Source cves: unknown CVE Source advisory: SNYK:JS-JESTELECTRON-16754431...

5.5AI score
Exploits0
GithubExploit
GithubExploit
added 2026/05/18 11:28 a.m.105 views

pentest-report-clinic-sangabriel

Penetration Test Report — Clínica San Gabriel Overview Fu...

9.8CVSS6.1AI score0.9927EPSS
Exploits45
GithubExploit
GithubExploit
added 2026/05/09 10:38 a.m.90 views

CoreExploit-Final

CoreExploit 🔐 Ethical Penetration Testing Learning Platfor...

5.8AI score
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/07 12:0 a.m.14 views

PT-2026-38614

Name of the Vulnerable Software and Affected Versions Cinny versions prior to 4.10.3 Description A remote authenticated attacker who shares a room with a victim and has permissions to create room emotes can cause the victim's client to send their Matrix access token to an attacker-controlled...

7.1CVSS5.9AI score0.00302EPSS
Exploits0References6
Rows per page
Query Builder