Lucene search
K

131179 matches found

CNVD
CNVD
•added 2026/04/16 12:0 a.m.•2 views

Google Chrome PDFium Component Heap Buffer Overflow Vulnerability

Google Chrome is a web browser from Google, an American company. A heap buffer overflow vulnerability exists in the PDFium component of Google Chrome, which can be exploited by an attacker to execute arbitrary code in the sandbox via specially crafted PDF files...

8.3CVSS6.3AI score0.0031EPSS
Exploits0
CNVD
CNVD
•added 2026/04/16 12:0 a.m.•2 views

Google Chrome Permissions Component Memory Misreference Vulnerability

Google Chrome on Android is an American web browser for Android by Google. A memory misreference vulnerability exists in the Google Chrome Permissions component, which can be exploited by an attacker to execute arbitrary code via specially crafted HTML pages...

8.8CVSS6AI score0.00323EPSS
Exploits0
CNVD
CNVD
•added 2026/04/16 12:0 a.m.•4 views

Google Chrome Access Control Error Vulnerability (CNVD-2026-17820)

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from an Access Control Error vulnerability that can be exploited by attackers to disclose cross-origin data via specially crafted HTML pages...

3.1CVSS5.2AI score0.00207EPSS
Exploits0
CNVD
CNVD
•added 2026/04/16 12:0 a.m.•4 views

D-Link DI-8003 Buffer Overflow Vulnerability (CNVD-2026-17622)

The D-Link DI-8003 is a wireless router from China-based AUO D-Link. The D-Link DI-8003 suffers from a buffer overflow vulnerability that originates from the qj.asp endpoint failing to properly validate the length and size of input data, which can be exploited by an attacker to cause a denial of...

7.5CVSS6.1AI score0.00516EPSS
Exploits0
CNVD
CNVD
•added 2026/04/16 12:0 a.m.•6 views

Google Chrome Forms component memory misreference vulnerability (CNVD-2026-17818)

Google Chrome is a web browser from Google, an American company. A memory misreference vulnerability exists in the Google Chrome Forms component, which can be exploited by an attacker to execute arbitrary code from a specially crafted HTML page in a sandbox...

8.8CVSS6AI score0.00323EPSS
Exploits0
CNVD
CNVD
•added 2026/04/16 12:0 a.m.•4 views

Google Chrome Skia Component Out-of-Bounds Read Vulnerability

Google Chrome is a web browser from Google, an American company. An out-of-bounds read vulnerability exists in the Google Chrome Skia component, which can be exploited by attackers to obtain sensitive information...

6.5CVSS5.3AI score0.00234EPSS
Exploits0
CNVD
CNVD
•added 2026/04/16 12:0 a.m.•10 views

Google Chrome Dawn Component Memory Misreference Vulnerability

Google Chrome is a web browser developed by Google with a Dawn component to handle WebGPU related functions. A memory misreference vulnerability exists in the Dawn component of Google Chrome. The vulnerability stems from improper management of the lifecycle of specific objects in the Dawn compone...

8.3CVSS5.8AI score0.00251EPSS
Exploits0
CNVD
CNVD
•added 2026/04/16 12:0 a.m.•4 views

D-Link DI-8003 Buffer Overflow Vulnerability (CNVD-2026-17628)

The D-Link DI-8003 is a wireless router from China-based AUO D-Link. A buffer overflow vulnerability exists in the D-Link DI-8003. The vulnerability is caused due to incorrect boundary checking in the router.asp script and can be exploited by an attacker to cause a denial of service...

7.5CVSS6AI score0.00516EPSS
Exploits0
CNVD
CNVD
•added 2026/04/16 12:0 a.m.•4 views

D-Link DI-8003 Buffer Overflow Vulnerability (CNVD-2026-17696)

The D-Link DI-8003 is a wireless router from China-based AUO D-Link. A buffer overflow vulnerability exists in the D-Link DI-8003. The vulnerability stems from improper handling of the name parameter in the /usbpaswd.asp endpoint, which can be exploited by an attacker to cause a denial of service...

7.5CVSS5.7AI score0.00516EPSS
Exploits0
CNVD
CNVD
•added 2026/04/16 12:0 a.m.•2 views

D-Link DI-8003 Buffer Overflow Vulnerability (CNVD-2026-17537)

The D-Link DI-8003 is a wireless router from China-based AUO D-Link. A buffer overflow vulnerability exists in the D-Link DI-8003. The vulnerability stems from the name parameter in the /urlmember.asp endpoint failing to properly validate the length and size of the input data, which can be...

7.5CVSS6AI score0.00516EPSS
Exploits0
CNVD
CNVD
•added 2026/04/16 12:0 a.m.•5 views

D-Link DI-8003 Buffer Overflow Vulnerability (CNVD-2026-17623)

The D-Link DI-8003 is a wireless router from China-based AUO D-Link. The D-Link DI-8003 suffers from a buffer overflow vulnerability that stems from the s parameter in the pppoelistopt.asp endpoint failing to properly validate the length size of the input data, which can be exploited by an attack...

7.5CVSS6.1AI score0.00516EPSS
Exploits0
CNVD
CNVD
•added 2026/04/16 12:0 a.m.•5 views

D-Link DI-8003 Buffer Overflow Vulnerability (CNVD-2026-17630)

The D-Link DI-8003 is a wireless router from China-based AUO D-Link. A buffer overflow vulnerability exists in the D-Link DI-8003. The vulnerability is caused due to improper handling of the id parameter in the /saveparmusb.asp endpoint and can be exploited by an attacker to cause a denial of...

7.5CVSS6AI score0.00467EPSS
Exploits0
CNVD
CNVD
•added 2026/04/16 12:0 a.m.•5 views

D-Link DI-8003 Buffer Overflow Vulnerability (CNVD-2026-17634)

The D-Link DI-8003 is a wireless router from China-based AUO D-Link. The D-Link DI-8003 suffers from a buffer overflow vulnerability that originates from improper validation of the id parameter in the /thdmember.asp endpoint, which can be exploited by an attacker to cause a denial of service...

7.5CVSS6.1AI score0.00516EPSS
Exploits0
CNVD
CNVD
•added 2026/04/16 12:0 a.m.•3 views

D-Link DI-8003 Buffer Overflow Vulnerability (CNVD-2026-17654)

The D-Link DI-8003 is a wireless router from China-based AUO D-Link. The D-Link DI-8003 suffers from a buffer overflow vulnerability caused by incorrect boundary checking of the httplanport parameter in the /webgl.asp endpoint, which can be exploited by an attacker to cause a denial of service...

7.5CVSS6.1AI score0.00408EPSS
Exploits0
CNVD
CNVD
•added 2026/04/16 12:0 a.m.•2 views

D-Link DI-8003 Buffer Overflow Vulnerability (CNVD-2026-17657)

The D-Link DI-8003 is a wireless router from China-based AUO D-Link. A buffer overflow vulnerability exists in the D-Link DI-8003. The vulnerability is caused due to incorrect parameter boundary checking in the /yyxzdlink.asp endpoint and can be exploited by an attacker to cause a denial of servi...

7.5CVSS6AI score0.00412EPSS
Exploits0
CNVD
CNVD
•added 2026/04/16 12:0 a.m.•5 views

D-Link DI-8003 Buffer Overflow Vulnerability (CNVD-2026-17624)

The D-Link DI-8003 is a wireless router from China-based AUO D-Link. The D-Link DI-8003 suffers from a buffer overflow vulnerability caused by incorrect boundary checking in the qos.asp script, which can be exploited by an attacker to cause a denial of service...

7.5CVSS6.1AI score0.00516EPSS
Exploits0
CNVD
CNVD
•added 2026/04/16 12:0 a.m.•3 views

D-Link DI-8003 Buffer Overflow Vulnerability (CNVD-2026-17627)

The D-Link DI-8003 is a wireless router from China-based AUO D-Link. A buffer overflow vulnerability exists in the D-Link DI-8003. The vulnerability is caused due to incorrect boundary checking in the qostypeasp.asp script and can be exploited by an attacker to cause a denial of service...

7.5CVSS6AI score0.00516EPSS
Exploits0
CNVD
CNVD
•added 2026/04/16 12:0 a.m.•3 views

D-Link DI-8003 Buffer Overflow Vulnerability (CNVD-2026-17631)

The D-Link DI-8003 is a wireless router from China-based AUO D-Link. A buffer overflow vulnerability exists in the D-Link DI-8003. The vulnerability is caused due to incorrect boundary checking in the shutset.asp script and can be exploited by an attacker to cause a denial of service...

7.5CVSS6AI score0.00516EPSS
Exploits0
CNVD
CNVD
•added 2026/04/16 12:0 a.m.•1 views

D-Link DI-8003 Buffer Overflow Vulnerability (CNVD-2026-17648)

The D-Link DI-8003 is a wireless router from China-based AUO D-Link. The D-Link DI-8003 suffers from a buffer overflow vulnerability that originates from improper handling of multiple parameters in the /urlrule.asp endpoint, which can be exploited by an attacker to cause a denial of service...

7.5CVSS6.1AI score0.00605EPSS
Exploits0
CNVD
CNVD
•added 2026/04/16 12:0 a.m.•3 views

D-Link DI-8003 Buffer Overflow Vulnerability (CNVD-2026-17655)

The D-Link DI-8003 is a wireless router from China-based AUO D-Link. The D-Link DI-8003 suffers from a buffer overflow vulnerability caused by incorrect bounds checking of parameters in the /xwglref.asp endpoint, which can be exploited by an attacker to cause a denial of service...

7.5CVSS6.1AI score0.00492EPSS
Exploits0
CNVD
CNVD
•added 2026/04/16 12:0 a.m.•7 views

D-Link DI-8003 Buffer Overflow Vulnerability (CNVD-2026-19420)

The D-Link DI-8003 is a wireless router from China-based AUO D-Link. The D-Link DI-8003 suffers from a buffer overflow vulnerability caused by incorrect boundary checking in the wanlinedetection.asp script, which can be exploited by an attacker to cause a denial of service...

7.5CVSS6AI score0.00412EPSS
Exploits0
CNVD
CNVD
•added 2026/04/16 12:0 a.m.•3 views

D-Link DI-8003 Buffer Overflow Vulnerability (CNVD-2026-17638)

The D-Link DI-8003 is a wireless router from China-based AUO D-Link. The D-Link DI-8003 suffers from a buffer overflow vulnerability that originates from improper handling of the pid parameter in the /trace.asp endpoint, which can be exploited by an attacker to cause a denial of service...

7.5CVSS6.1AI score0.00516EPSS
Exploits0
CNVD
CNVD
•added 2026/04/16 12:0 a.m.•3 views

D-Link DI-8003 Buffer Overflow Vulnerability (CNVD-2026-17652)

The D-Link DI-8003 is a wireless router from China-based AUO D-Link. The D-Link DI-8003 suffers from a buffer overflow vulnerability caused by incorrect boundary checking in webpost.aspscript, which can be exploited by an attacker to cause a denial of service...

7.5CVSS6.1AI score0.00599EPSS
Exploits0
CNVD
CNVD
•added 2026/04/16 12:0 a.m.•7 views

D-Link DI-8003 Buffer Overflow Vulnerability (CNVD-2026-17643)

The D-Link DI-8003 is a wireless router from China-based AUO D-Link. The D-Link DI-8003 suffers from a buffer overflow vulnerability that originates from improper handling of the name parameter in the /urlgroup.asp endpoint, which can be exploited by an attacker to cause a denial of service...

7.5CVSS6.1AI score0.00516EPSS
Exploits0
CNVD
CNVD
•added 2026/04/16 12:0 a.m.•6 views

D-Link DI-8003 Buffer Overflow Vulnerability (CNVD-2026-17635)

The D-Link DI-8003 is a wireless router from China-based AUO D-Link. The D-Link DI-8003 suffers from a buffer overflow vulnerability caused by incorrect boundary checking in the timegroup.asp script, which can be exploited by an attacker to cause a denial of service...

7.5CVSS6.1AI score0.00516EPSS
Exploits0
CNVD
CNVD
•added 2026/04/16 12:0 a.m.•8 views

D-Link DI-8003 and DI-8003G Buffer Overflow Vulnerability

The D-Link DI-8003 and DI-8003G are both wireless routers from China-based AUO D-Link. A buffer overflow vulnerability exists in the D-Link DI-8003 and DI-8003G. The vulnerability is caused due to incorrect boundary checking in the wanping.asp script and can be exploited by an attacker to cause a...

7.5CVSS6AI score0.00412EPSS
Exploits0
CNVD
CNVD
•added 2026/04/16 12:0 a.m.•12 views

Google Chrome Turbofan Type Obfuscation Vulnerability

Google Chrome is a web browser developed by Google. A type confusion vulnerability exists in Google Chrome's Turbofan compiler. The vulnerability stems from Turbofan's failure to properly handle types in certain JavaScript code, which can be exploited by an attacker to execute arbitrary code in t...

8.8CVSS6.2AI score0.00365EPSS
Exploits3
CNVD
CNVD
•added 2026/04/16 12:0 a.m.•11 views

Google Chrome PDFium Heap Buffer Overflow Vulnerability

Google Chrome is a web browser developed by Google with a built-in PDFium component for rendering PDF documents. Google Chrome's PDFium suffers from a heap buffer overflow vulnerability that stems from a failure to properly handle certain data in a specially crafted PDF file, which can be exploit...

8.8CVSS6.4AI score0.00336EPSS
Exploits0
CNVD
CNVD
•added 2026/04/16 12:0 a.m.•6 views

Cisco Unity Connection Web Management Interface SQL Injection Vulnerability

Cisco Unity Connection is a unified communications messaging platform that focuses on providing voicemail and messaging capabilities. An SQL injection vulnerability exists in Cisco Unity Connection. The vulnerability stems from insufficient validation of user-supplied input and can be exploited b...

4.3CVSS5.8AI score0.00228EPSS
Exploits0
CNVD
CNVD
•added 2026/04/16 12:0 a.m.•6 views

Google Chrome Video Component Memory Misreference Vulnerability

Google Chrome is a web browser from Google, an American company. A memory misreference vulnerability exists in the Google Chrome Video component, which can be exploited by an attacker to perform out-of-bounds memory access via specially crafted HTML pages...

8.8CVSS5.3AI score0.00252EPSS
Exploits0
CNVD
CNVD
•added 2026/04/16 12:0 a.m.•6 views

Apache Airflow Security Bypass Vulnerability

Apache Airflow is the United States Apache Apache Foundation's set of open source platform with the creation, management and monitoring of workflow functions. The platform is scalable and dynamic monitoring and other features. Apache Airflow has a security bypass vulnerability that stems from...

7.5CVSS5.3AI score0.00439EPSS
Exploits0
CNVD
CNVD
•added 2026/04/15 12:0 a.m.•8 views

Adobe InDesign Desktop Out-of-Bounds Write Vulnerability (CNVD-2026-19439)

Adobe InDesign Desktop is a page layout software from the American company Audobee Adobe. Adobe InDesign Desktop suffers from an out-of-bounds write vulnerability that can be exploited by an attacker to execute arbitrary code on the system...

7.8CVSS6.2AI score0.00141EPSS
Exploits0
CNVD
CNVD
•added 2026/04/15 12:0 a.m.•7 views

Adobe Bridge Numeric Error Vulnerability

Adobe Bridge is a file viewer from the American company Audobee Adobe. Adobe Bridge suffers from a numeric error vulnerability that can be exploited by an attacker to cause a denial of service in the application...

5.5CVSS5.8AI score0.00169EPSS
Exploits0
CNVD
CNVD
•added 2026/04/15 12:0 a.m.•8 views

Adobe Framemaker Heap Buffer Overflow Vulnerability (CNVD-2026-19998)

Adobe Framemaker is the United States of America Odooby Adobe company's set of page layout software for writing and editing large or complex documents including structured documents. Adobe Framemaker suffers from a heap buffer overflow vulnerability that could be exploited by an attacker to cause...

7.8CVSS6.2AI score0.00194EPSS
Exploits0
CNVD
CNVD
•added 2026/04/15 12:0 a.m.•10 views

Adobe InDesign Desktop Heap Buffer Overflow Vulnerability (CNVD-2026-17774)

Adobe InDesign Desktop is a page layout software from the American company Audobee Adobe. Adobe InDesign Desktop suffers from a heap buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code on the system or cause the application to crash...

7.8CVSS6.5AI score0.00178EPSS
Exploits0
CNVD
CNVD
•added 2026/04/15 12:0 a.m.•5 views

Schneider Electric PowerChute Serial Shutdown Path Traversal Vulnerability

Schneider Electric PowerChute Serial Shutdown is a UPS management, normal shutdown and energy management software from Schneider Electric, France. A path traversal vulnerability exists in Schneider Electric PowerChute Serial Shutdown, which can be exploited by an attacker to cause a web...

6.9CVSS5.4AI score0.00204EPSS
Exploits0
CNVD
CNVD
•added 2026/04/15 12:0 a.m.•4 views

Schneider Electric PowerChute Serial Shutdown Security Bypass Vulnerability

Schneider Electric PowerChute Serial Shutdown is a UPS management, normal shutdown and energy management software from Schneider Electric France. A security bypass vulnerability exists in Schneider Electric PowerChute Serial Shutdown, which stems from improper output encoding or escaping, and can...

6.9CVSS5.4AI score0.00186EPSS
Exploits0
CNVD
CNVD
•added 2026/04/15 12:0 a.m.•8 views

Adobe InCopy Out-of-Bounds Write Vulnerability (CNVD-2026-19437)

Adobe InCopy is a text editing software for creative writing from the American company Audobee Adobe. Adobe InCopy suffers from an out-of-bounds write vulnerability that can be exploited by an attacker to execute arbitrary code on the system...

7.8CVSS6.2AI score0.00138EPSS
Exploits0
CNVD
CNVD
•added 2026/04/15 12:0 a.m.•10 views

Adobe InDesign Desktop Heap Buffer Overflow Vulnerability (CNVD-2026-19440)

Adobe InDesign Desktop is a page layout software from the American company Audobee Adobe. Adobe InDesign Desktop suffers from a heap buffer overflow vulnerability that can be exploited by an attacker to cause the disclosure of sensitive information in memory...

5.5CVSS5.9AI score0.00156EPSS
Exploits0
CNVD
CNVD
•added 2026/04/15 12:0 a.m.•8 views

Schneider Electric PowerChute Serial Shutdown CRLF Injection Vulnerability

Schneider Electric PowerChute Serial Shutdown is a UPS management, normal shutdown and energy management software from Schneider Electric France. Schneider Electric PowerChute Serial Shutdown suffers from a CRLF injection vulnerability that stems from improper CRLF sequence neutralization, which...

5.3CVSS5.5AI score0.0023EPSS
Exploits0
CNVD
CNVD
•added 2026/04/15 12:0 a.m.•7 views

Adobe Bridge heap buffer overflow vulnerability (CNVD-2026-17718)

Adobe Bridge is a file viewer from the American company Audobee Adobe. Adobe Bridge suffers from a heap buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code in the context of the current user...

7.8CVSS6.4AI score0.00259EPSS
Exploits0
CNVD
CNVD
•added 2026/04/15 12:0 a.m.•5 views

Adobe Bridge heap buffer overflow vulnerability (CNVD-2026-17717)

Adobe Bridge is a file viewer from the American company Audobee Adobe. Adobe Bridge suffers from a heap buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code in the context of the current user...

7.8CVSS6.4AI score0.00227EPSS
Exploits0
CNVD
CNVD
•added 2026/04/15 12:0 a.m.•6 views

Adobe Connect Cross-Site Scripting Vulnerability (CNVD-2026-18681)

Adobe Connect is a software for creating meeting environments from the American company Audobee Adobe. Adobe Connect suffers from a cross-site scripting vulnerability that could be exploited by an attacker to steal a victim's cookie-based authentication credentials...

9.3CVSS5.6AI score0.00304EPSS
Exploits0
CNVD
CNVD
•added 2026/04/15 12:0 a.m.•8 views

Schneider Electric PowerChute Serial Shutdown Denial of Service Vulnerability

Schneider Electric PowerChute Serial Shutdown is a UPS management, normal shutdown and energy management software from Schneider Electric France. A denial of service vulnerability exists in Schneider Electric PowerChute Serial Shutdown, which stems from improperly limiting too many authentication...

6.9CVSS5.6AI score0.00274EPSS
Exploits0
CNVD
CNVD
•added 2026/04/15 12:0 a.m.•11 views

Adobe Photoshop Desktop Out-of-Bounds Read Vulnerability

Adobe Photoshop Desktop is a photo manipulation software from the American company Audobee Adobe. Adobe Photoshop Desktop suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to cause code execution in the current user's environment...

7.8CVSS6.1AI score0.00211EPSS
Exploits0
CNVD
CNVD
•added 2026/04/15 12:0 a.m.•10 views

Adobe Framemaker Memory Misreference Vulnerability (CNVD-2026-19999)

Adobe Framemaker is the United States of America Odooby Adobe company's set of page layout software for writing and editing large or complex documents including structured documents. A memory misreference vulnerability exists in Adobe Framemaker, which can be exploited by an attacker to cause...

7.8CVSS6AI score0.00184EPSS
Exploits0
CNVD
CNVD
•added 2026/04/15 12:0 a.m.•5 views

Adobe Bridge heap buffer overflow vulnerability (CNVD-2026-17735)

Adobe Bridge is a file viewer from the American company Audobee Adobe. Adobe Bridge suffers from a heap buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code on a system or cause an application to crash...

7.8CVSS6.5AI score0.00259EPSS
Exploits0
CNVD
CNVD
•added 2026/04/15 12:0 a.m.•11 views

Adobe Experience Manager Cross-Site Scripting Vulnerability (CNVD-2026-20002)

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Odobie Adobe. The program supports mobile content management, marketing and sales campaign management and multi-site management. A...

5.4CVSS5.6AI score0.00189EPSS
Exploits0
CNVD
CNVD
•added 2026/04/15 12:0 a.m.•8 views

Adobe Framemaker Type Obfuscation Vulnerability

Adobe Framemaker is the United States of America Odooby Adobe company's set of page layout software for writing and editing large or complex documents including structured documents. A type confusion vulnerability exists in Adobe Framemaker, which can be exploited by an attacker to cause arbitrar...

7.8CVSS6AI score0.00176EPSS
Exploits0
CNVD
CNVD
•added 2026/04/15 12:0 a.m.•8 views

Adobe Framemaker Out-of-Bounds Write Vulnerability (CNVD-2026-19996)

Adobe Framemaker is the United States of America Odooby Adobe company's set of page layout software for writing and editing large or complex documents including structured documents. An out-of-bounds write vulnerability exists in Adobe Framemaker, which could be exploited by an attacker to cause...

7.8CVSS6AI score0.00154EPSS
Exploits0
Total number of security vulnerabilities131179