Lucene search
K

1740 matches found

CVE
CVE
added 2026/06/04 11:3 p.m.24 views

CVE-2026-10948

CVE-2026-10948 describes a use-after-free in WebRTC affecting Google Chrome up to 149.0.7827.53 . The vulnerability allows a remote attacker to execute arbitrary code inside Chrome’s sandbox via a crafted HTML page. The impact is described as high severity with possible full compromise of the san...

8.8CVSS6.2AI score0.00493EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/04 11:3 p.m.6 views

CVE-2026-10905

Use after free in Network in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00286EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/04 11:3 p.m.38 views

CVE-2026-10889

Out of bounds read in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

0.00286EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/06/04 11:3 p.m.9 views

CVE-2026-10886

Use after free in FileSystem in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

5.8AI score0.00345EPSS
Exploits0References2
CVE
CVE
added 2026/06/04 11:3 p.m.24 views

CVE-2026-10885

Use after free in Chrome for iOS: Google Chrome on iOS prior to 149.0.7827.53 allows remote code execution via a crafted HTML page. The issue in Chrome for iOS is confirmed in multiple sources (CVE-2026-10885). The Chrome 149 stability release includes this fix (149.0.7827.53) across desktop and ...

8.8CVSS6.2AI score0.00374EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.10 views

PT-2026-46766

Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00221EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/02 12:0 a.m.13 views

PT-2026-46453

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.53 Description An integer overflow in Chromecast allows a remote attacker who has compromised the renderer process to potentially perform a sandbox escape. This is achieved through the use of a crafte...

9.6CVSS5.9AI score0.00985EPSS
Exploits0References434
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.12 views

Google Chrome 缓冲区错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a buffer overflow vulnerability. This vulnerability stemmed from an out-of-bounds read in the WebRTC component, which could allow remote attackers to extract sensitive information fr...

6.5CVSS5.8AI score0.00243EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/06/01 2:1 a.m.17 views

webkitgtk: A maliciously crafted webpage may be able to fingerprint the user

A flaw was found in WebKitGTK. A maliciously crafted web page can cause an authorization issue due to improper state management and may be able to fingerprint the user...

4.3CVSS5.7AI score0.00276EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/31 12:0 a.m.11 views

TRENDnet TEW-432BRP 安全漏洞

TRENDnet TEW-432BRP is a dual-band wireless router produced by TRENDnet Corporation. Version 3.10B20 of TRENDnet TEW-432BRP has a security vulnerability. This vulnerability stems from a parameter in the function formSetWlanEncrypt, specifically webpage, which causes a stack buffer overflow. This...

9CVSS7.7AI score0.03198EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/31 12:0 a.m.9 views

TRENDnet TEW-432BRP 安全漏洞

TRENDnet TEW-432BRP is a dual-band wireless router produced by TRENDnet Corporation. Version 3.10B20 of TRENDnet TEW-432BRP has a security vulnerability. This vulnerability stems from an issue with the formSetPassword function in the file/goform/formSetPassword, where the webpage operation in the...

9CVSS7.6AI score0.00472EPSS
Exploits0References4
Circl
Circl
added 2026/05/30 5:4 p.m.16 views

CVE-2026-10192

creationtimestamp| type| source ---|---|--- 2026-05-30 17:04:12+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116664608498253097 2026-05-31 19:04:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mn6b26y72e2s 2026-05-31 23:04:21+00:00| seen|...

9CVSS7.3AI score0.00503EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2026/05/30 2:18 a.m.18 views

SUSE CVE-2026-9927

Use after free in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.2AI score0.00303EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/05/29 10:31 p.m.25 views

PraisonAI has an Arbitrary File Write in Python API

Bug Report: Arbitrary File Write in Python API Summary Hidden metadata in a webpage causes PraisonAI agents to write attacker-controlled content to arbitrary paths. writefile skips path validation when workspace=None always None in production. Affected PraisonAI outputfile: /tmp/flag.txt...

6AI score0.00051EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/05/29 12:38 a.m.13 views

EUVD-2026-33160

Integer overflow in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

5.9AI score0.00191EPSS
Exploits0References3
Redos
Redos
added 2026/05/29 12:0 a.m.16 views

ROS-20260529-73-0010

The vulnerability of JavaScript script handlers in Mozilla Firefox, Firefox ESR, and the email client Thunderbird lies in the issue of writing beyond the buffer boundaries in memory during the processing of Promise objects. Exploiting this vulnerability allows a malicious actor to execute arbitra...

9.8CVSS6.3AI score0.08917EPSS
Exploits1
NVD
NVD
added 2026/05/28 11:16 p.m.13 views

CVE-2026-9970

Use after free in WebGL in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS0.00214EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/28 10:25 p.m.37 views

CVE-2026-9912

Inappropriate implementation in GPU in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

0.00247EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/28 10:25 p.m.10 views

CVE-2026-9906

Out of bounds write in GPU in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00214EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/28 10:25 p.m.9 views

CVE-2026-9902

Use after free in Accessibility in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00214EPSS
Exploits0References2
Rows per page
Query Builder