Lucene search
K

195539 matches found

CNNVD
CNNVD
added 2026/06/02 12:0 a.m.12 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a security vulnerability caused by integer overflow in the GPU. This vulnerability could allow remote attackers to execute out-of-bound memory access through specially crafted HTML...

8.8CVSS5.7AI score0.00247EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.10 views

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a resource management vulnerability. This vulnerability stemmed from race conditions in the GPU, which could allow remote attackers with access to the compromised renderer process to...

9.6CVSS5.6AI score0.00234EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.7 views

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a resource management vulnerability. This vulnerability stemmed from the use of reusing resources after they were released in the base code, which could allow remote attackers who ha...

8.8CVSS5.4AI score0.00234EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.10 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a security vulnerability. This vulnerability stemmed from the incomplete initialization of the Dawn component, which could allow remote attackers to obtain sensitive information from...

6.5CVSS5.3AI score0.0025EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.9 views

Google Chrome 输入验证错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 had a vulnerability related to input validation errors. This vulnerability stemmed from insufficient input validation in the ANGLE component. A remote attacker could exploit this vulnerability...

9.6CVSS5.4AI score0.00253EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.9 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a security vulnerability, which was caused by an integer overflow issue in the Skia component. A remote attacker could exploit this vulnerability through a specially crafted HTML pag...

8.8CVSS5.5AI score0.00234EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.16 views

Mozilla Firefox 安全漏洞

Mozilla Firefox is an open-source web browser developed by the Mozilla Foundation in the United States. Versions of Mozilla Firefox prior to 151.0.3 contained a security vulnerability, which was caused by a compilation error in the JavaScript Engine’s JIT component...

7.5CVSS5.3AI score0.00293EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.10 views

itsourcecode Fees Management System 代码注入漏洞

itsourcecode Fees Management System is an open-source charging management system developed by itsourcecode. Version 1.0 of the itsourcecode Fees Management System has a code injection vulnerability; this vulnerability stems from operations on the page parameters in the index.php file, which may...

5.3CVSS5AI score0.00273EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.10 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a security vulnerability caused by an uninitialized use of the Skia component. This vulnerability could allow remote attackers to exploit the vulnerability through specially crafted...

6.5CVSS5.9AI score0.0025EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.10 views

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 had a resource management vulnerability. This vulnerability stemmed from a problem with the reuse of resources after they were released by network components, which could allow remote attacker...

8.8CVSS5.5AI score0.00278EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.8 views

NVIDIA NVTabular 代码问题漏洞

NVIDIA NVTabular is a component within the deep learning recommendation system framework developed by NVIDIA Corporation. NVIDIA NVTabular has code-related vulnerabilities; these vulnerabilities stem from improper deserialization of untrusted data, which may lead to code execution, data tampering...

7.8CVSS5.6AI score0.0017EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.8 views

Google Chrome 竞争条件问题漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a vulnerability due to competition conditions in the Codecs component. This vulnerability could allow a remote attacker to achieve sandbox escape by using a specially crafted HTML pa...

8.3CVSS5.4AI score0.00228EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.9 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a security vulnerability, which was caused by improper implementation of Platform Integration in the Windows version. This vulnerability could allow remote attackers to execute...

6.8CVSS6AI score0.002EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.9 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a security vulnerability. This vulnerability stemmed from an uninitialized use in the WebML component, which could allow remote attackers to obtain sensitive information from process...

6.5CVSS5.9AI score0.0025EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.27 views

WordPress plugin rognone 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...

6.1CVSS5.1AI score0.00208EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.6 views

Google Chrome 输入验证错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 had a vulnerability related to input validation. This vulnerability originated from improper implementations in the base component, and it could allow remote attackers who have compromised...

9.6CVSS6AI score0.00301EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.22 views

Google Chrome 输入验证错误漏洞

Google Chrome is a web browser developed by Google Inc. of the United States. Google Chrome has a vulnerability related to input validation, which stems from insufficient validation for unreliable inputs...

8.8CVSS5.3AI score0.00234EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.7 views

Google Chrome 代码注入漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 had a code injection vulnerability. This vulnerability stemmed from script injections in the Headless component, which could allow remote attackers to execute arbitrary code through specially...

8.8CVSS6AI score0.00411EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.10 views

Google Chrome 缓冲区错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a buffer overflow vulnerability, which was caused by improper implementation of GPU components. This vulnerability could allow remote attackers to exploit the system through speciall...

8.8CVSS5.8AI score0.00325EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.9 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a security vulnerability. This vulnerability stemmed from an integer overflow in the DevTools component, which could allow remote attackers to execute arbitrary code in the sandbox...

8.8CVSS6.1AI score0.00361EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.14 views

WordPress plugin Google Plus One Bottom 跨站请求伪造漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...

4.3CVSS5.4AI score0.00128EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.8 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by the American company Google. There is a security vulnerability in Google Chrome, which stems from improper implementation...

6.5CVSS5.2AI score0.00142EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.9 views

WordPress plugin Confidant 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...

8.1CVSS5.4AI score0.00415EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.10 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a security vulnerability caused by integer overflow in Media components. This vulnerability could allow remote attackers to execute arbitrary code within a sandbox through malicious...

8.8CVSS6.1AI score0.00333EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.8 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by the American company Google. Versions of Google Chrome prior to 149.0.7827.53 contained a security vulnerability, which was caused by improper implementation of the Enterprise component. This vulnerability could allow local attackers to gain elevated...

6.1CVSS5.3AI score0.00094EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.7 views

FIT2CLOUD CordysCRM 代码注入漏洞

FIT2CLOUD CordysCRM is a customer relationship management system developed by FIT2CLOUD Corporation. Versions of FIT2CLOUD CordysCRM 1.6.2 and earlier contain a code injection vulnerability. This vulnerability stems from an unknown function in the file...

4.8CVSS4.9AI score0.00251EPSS
Exploits0References9
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.10 views

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a resource management vulnerability. This vulnerability stemmed from the reuse of resources after Blink was released, which could allow remote attackers to execute arbitrary code...

8.8CVSS6AI score0.0028EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.9 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by the American company Google. Google Chrome has a security vulnerability that stems from the reuse of objects after their release...

8.8CVSS5.3AI score0.00224EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.7 views

Google Chrome 输入验证错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 had a vulnerability related to input validation. This vulnerability stemmed from insufficient validation of untrusted inputs by Chromoting, which could allow a remote attacker with access to t...

9.6CVSS5.3AI score0.00234EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.10 views

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a resource management vulnerability. This vulnerability stemmed from the reuse of the WebAuthentication component after it was released, which could allow remote attackers to exploit...

7.5CVSS5.5AI score0.00326EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.10 views

itsourcecode Fees Management System SQL注入漏洞

itsourcecode Fees Management System is an open-source charging management system developed by itsourcecode. Version 1.0 of the itsourcecode Fees Management System has a SQL injection vulnerability. This vulnerability arises from manipulating the parameter ID in the file /managepayment.php, which...

6.5CVSS5.7AI score0.002EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.10 views

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a resource management vulnerability. This vulnerability stemmed from WebXRs allowing objects to be reused after being released, which could enable remote attackers to execute arbitra...

8.8CVSS6AI score0.00456EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.9 views

Zyxel VMG4005-B50B 安全漏洞

The Zyxel VMG4005-B50B is a VDSL2/ADSL2+ broadband modem produced by the Chinese company Zyxel. The firmware version 5.13ABRL.5.4C0 and earlier contain security vulnerabilities. These vulnerabilities stem from a buffer overflow in the UPnP AddPortMapping command, which could allow adjacent...

6.5CVSS5.9AI score0.00168EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.7 views

Yandex Database 安全漏洞

Yandex Database is a distributed SQL database management system developed by the Russian company Yandex. Versions of Yandex Database prior to 25.3.1.25 contained security vulnerabilities. These vulnerabilities were caused by LDAP filter injection issues, which could allow remote attackers to bypa...

5.3CVSS5.6AI score0.00268EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.13 views

Prefect 安全漏洞

Prefect is a workflow orchestration tool developed by Prefect OpenSource, enabling developers to build, monitor data pipelines, and respond to changes in those pipelines. Version 3.6.19 of Prefect contains a security vulnerability. This vulnerability stems from improper handling of URL paths for...

7.5CVSS5.3AI score0.00476EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.7 views

WordPress plugin Cookiteer 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...

8.1CVSS5.5AI score0.00337EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.10 views

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser developed by the American company Google. Google Chrome has a resource management vulnerability that stems from the reusing of resources after they are released...

8.8CVSS5.3AI score0.00187EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.8 views

NiceGUI 信息泄露漏洞

NiceGUI is an easy-to-use, Python-based UI framework developed under the open source license. Versions of NiceGUI prior to 3.12.0 contained a vulnerability related to information leakage. This vulnerability stemmed from the fact that the ui.restructuredtext function did not disable the file...

7.5CVSS5.2AI score0.00255EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.10 views

Vivotek FD8136 安全漏洞

Vivotek FD8136 is a hemispherical network camera produced by the Chinese company Vivotek. The Vivotek FD8136 FD8136-VVTK-0300a version contains a security vulnerability. This vulnerability stems from a stack buffer overflow in the exportlanguage.cgi binary file. The Content-Length value is direct...

6.3CVSS6.4AI score0.00261EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.10 views

Open5GS 竞争条件问题漏洞

Open5GS is an open-source implementation of 5G Core and EPC in C language, which serves as the core network for LTE/NR networks. Versions of Open5GS 2.7.6 and earlier contained a race condition vulnerability. This vulnerability stemmed from a issue with the gmmstatesecuritymode function in theNGA...

3.1CVSS5.3AI score0.00224EPSS
Exploits0References8
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.9 views

Dräger Core和Dräger M540 Converter Service 资源管理错误漏洞

Both the Dräger Core and Dräger M540 Converter Service are products of the German company Dräger. The Dräger Core is a medical device remote access and control platform. The Dräger M540 Converter Service is a medical device data conversion service. Versions 1.0.5 of Dräger Core and 1.0.9 of Dräge...

8.7CVSS5.4AI score0.00284EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.8 views

Memos 安全漏洞

Memos is an open-source memo center with knowledge management and social features, hosted on a server. Version 0.26.0 of Memos contains a security vulnerability. This vulnerability stems from cross-site scripting vulnerabilities in the SANITIZESCHEMA,Memo Rendering Component, and Public/Private...

6.1CVSS5.1AI score0.00224EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.11 views

Northern.tech CFEngine Enterprise 安全漏洞

Northern.tech CFEngine Enterprise is a multi-functional solution from Northern.tech company, designed for automatically performing daily tasks. There were security vulnerabilities in versions 3.24.3 to 3.24.4 and 3.27.0 to 3.27.1 of Northern.tech CFEngine Enterprise, which stemmed from cross-site...

6.1CVSS5AI score0.00166EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.7 views

Dräger Zeus IE和Dräger Zeus RS C500 安全漏洞

Both Dräger Zeus IE and Dräger Zeus RS C500 are intelligent anesthesia workstations produced by the German company Dräger. Both devices have security vulnerabilities; these vulnerabilities stem from local security issues, which may allow unauthorized individuals to manipulate the software’s...

7CVSS5.4AI score0.00169EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.10 views

OpenTelemetry eBPF Instrumentation 安全漏洞

OpenTelemetry eBPF Instrumentation is an open-source, eBPF-based lightweight telemetry data collection tool developed by OpenTelemetry. Versions of OpenTelemetry eBPF Instrumentation prior to 0.9.0 contained security vulnerabilities. These vulnerabilities stemmed from the BPF probe’s reexecution...

7.5CVSS5.4AI score0.00319EPSS
Exploits1References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.11 views

WordPress plugin ZeM STL 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

6.4CVSS5.2AI score0.00241EPSS
Exploits0References9
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.9 views

WordPress plugin Easy Cart 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

6.4CVSS5.2AI score0.00243EPSS
Exploits0References15
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.13 views

authentik 数据伪造问题漏洞

Authentik is an open-source identity provisioning application developed by Authentik. Versions of Authentik before 2025.12.5 and 2026.2.3 had a data manipulation vulnerability. This vulnerability stemmed from the SAML response processor not verifying the Conditions element in assertions, which...

7.5CVSS5.3AI score0.00169EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.8 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a security vulnerability, which was caused by improper implementation of the Workers component. This vulnerability could allow remote attackers to bypass the same-origin policy throu...

6.5CVSS5.4AI score0.00262EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.10 views

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser developed by Google Inc. in the United States. Payments is one of the payment components included in Google Chrome. Blink is a browser rendering engine developed jointly by Google Inc. and Opera Software AB in Norway. V8 is an open-source JavaScript engine used in...

8.8CVSS5.5AI score0.00183EPSS
Exploits0References3
Total number of security vulnerabilities195539