Lucene search
K

1755 matches found

NVD
NVD
added 2026/06/10 11:16 p.m.11 views

CVE-2026-42305

Dulwich is a pure-Python implementation of the Git file formats and protocols. Versions starting with 0.10.0 and prior to 1.2.5 have an arbitrary file write leading to remote code execution when cloning or checking out a malicious Git repository on Windows. Dulwich's path-element validator accept...

8.8CVSS0.00635EPSS
Exploits0References4
CVE
CVE
added 2026/06/10 2:9 p.m.25 views

CVE-2026-6090

Lenovo Smart Connect for Windows is described as affected by CVE-2026-6090, a potential authentication bypass that could allow a local authenticated user to execute arbitrary code with elevated privileges. CVSS metrics show: CVSS v3.1 base score 7.0 (LOCAL, HIGH impact to Confidentiality/Integrit...

7.3CVSS6AI score0.00108EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/06/10 2:30 a.m.7 views

SUSE CVE-2026-11680

Use after free in Media in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00243EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/09 12:33 a.m.13 views

EUVD-2026-35222

Uninitialized Use in Video in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

5.3CVSS5.5AI score0.00193EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/09 12:33 a.m.17 views

EUVD-2026-35248

Use after free in FullScreen in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

5.6AI score0.00263EPSS
Exploits0References3
NVD
NVD
added 2026/06/09 12:16 a.m.11 views

CVE-2026-11661

Use after free in Views in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS0.00242EPSS
Exploits0References2
NVD
NVD
added 2026/06/09 12:16 a.m.19 views

CVE-2026-11665

Out of bounds read in Dawn in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

4.3CVSS0.00217EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/06/09 12:0 a.m.14 views

Microsoft .NET 授权问题漏洞

Microsoft .NET is a software framework developed by Microsoft Corporation in the United States. It focuses on agile software development, rapid application development, platform independence, and transparency in networking. There are vulnerabilities related to licensing in Microsoft .NET. Attacke...

7.8CVSS5.4AI score0.00384EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/09 12:0 a.m.18 views

Microsoft .NET 后置链接漏洞

Microsoft .NET is a software framework developed by Microsoft Corporation in the United States. It focuses on agile software development, rapid application development, platform independence, and network transparency. There is a post-release vulnerability in Microsoft .NET. Attackers can exploit...

6.2CVSS5.3AI score0.00388EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/08 11:27 p.m.48 views

CVE-2026-11696

Uninitialized Use in Video in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

0.00193EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/08 12:0 a.m.27 views

PT-2026-47457

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.103 Description A use after free issue in Aura on Windows allows a remote attacker who has compromised the renderer process to potentially perform a sandbox escape. This is achieved through the use of...

9.6CVSS6AI score0.01654EPSS
Exploits4References82
SUSE CVE
SUSE CVE
added 2026/06/07 4:48 a.m.11 views

SUSE CVE-2026-10999

Integer overflow in ANGLE in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.5AI score0.00287EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/06/07 4:47 a.m.10 views

SUSE CVE-2026-11021

Insufficient validation of untrusted input in GPU in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

9.6CVSS5.5AI score0.00325EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/06/07 4:46 a.m.13 views

SUSE CVE-2026-11060

Use after free in Media in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6AI score0.0028EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/06/07 4:46 a.m.10 views

SUSE CVE-2026-11070

Insufficient validation of untrusted input in Chromoting in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the network process to potentially perform a sandbox escape via malicious network traffic. Chromium security severity: Medium...

9.6CVSS5.5AI score0.00216EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/06/07 4:41 a.m.12 views

SUSE CVE-2026-11218

Inappropriate implementation in PlatformIntegration in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a malicious file. Chromium security severity: Low...

6.8CVSS6AI score0.002EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/06 12:43 p.m.15 views

CVE-2026-21038

Improper input validation in Samsung Android USB Driver for Windows prior to version 1.9.5.0 allows local attacker to access out-of-bounds memory...

5.9CVSS5.4AI score0.00101EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:34 p.m.10 views

CVE-2026-1352

IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 for Linux, UNIX and Windows includes Db2 Connect Server could allow an authenticated user to cause a denial of service due to improper neutralization of special elements in data query logic...

6.5CVSS5.4AI score0.00328EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:12 p.m.11 views

CVE-2026-0539

Incorrect Default Permissions in pcvisit service binary on Windows allows a low-privileged local attacker to escalate their privileges by overwriting the service binary with arbitrary contents. This service binary is automatically launched with NT\SYSTEM privileges on boot. This issue affects all...

8.5CVSS5.6AI score0.00101EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/05 12:31 a.m.11 views

EUVD-2026-34729

Uninitialized Use in ANGLE in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.0025EPSS
Exploits0References3
Rows per page
Query Builder