Lucene search
K

418162 matches found

EUVD
EUVD
•added 2026/06/24 6:43 p.m.•5 views

EUVD-2026-39041

Use after free in Digital Credentials in Google Chrome on Mac prior to 149.0.7827.197 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.9AI score0.00195EPSS
Exploits0References2
EUVD
EUVD
•added 2026/06/24 6:43 p.m.•7 views

EUVD-2026-39042

Use after free in FileSystem in Google Chrome prior to 149.0.7827.197 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.9AI score0.00195EPSS
Exploits0References2
EUVD
EUVD
•added 2026/06/24 6:43 p.m.•4 views

EUVD-2026-39039

Insufficient validation of untrusted input in Navigation in Google Chrome prior to 149.0.7827.197 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Chromium security severity: High...

4.2CVSS5.8AI score0.00146EPSS
Exploits0References2
EUVD
EUVD
•added 2026/06/24 6:43 p.m.•6 views

EUVD-2026-39038

Uninitialized Use in GPU in Google Chrome prior to 149.0.7827.197 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

5.3CVSS5.9AI score0.00186EPSS
Exploits0References2
EUVD
EUVD
•added 2026/06/24 6:43 p.m.•6 views

EUVD-2026-39037

Inappropriate implementation in Autofill in Google Chrome prior to 149.0.7827.197 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

5.9AI score0.00138EPSS
Exploits0References2
EUVD
EUVD
•added 2026/06/24 6:43 p.m.•6 views

EUVD-2026-39036

Inappropriate implementation in DeviceBoundSessionCredentials in Google Chrome prior to 149.0.7827.197 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: High...

4.3CVSS5.9AI score0.00143EPSS
Exploits0References2
EUVD
EUVD
•added 2026/06/24 6:43 p.m.•5 views

EUVD-2026-39035

Use after free in Autofill in Google Chrome on Windows prior to 149.0.7827.197 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Critical...

8.8CVSS6.3AI score0.0026EPSS
Exploits0References2
EUVD
EUVD
•added 2026/06/24 6:43 p.m.•6 views

EUVD-2026-39033

Use after free in WebGL in Google Chrome on Android prior to 149.0.7827.197 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

9.6CVSS5.9AI score0.00217EPSS
Exploits0References2
EUVD
EUVD
•added 2026/06/24 6:43 p.m.•4 views

EUVD-2026-39034

Out of bounds read and write in BlinkInterestGroups in Google Chrome prior to 149.0.7827.197 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Critical...

8.8CVSS6.3AI score0.0026EPSS
Exploits0References2
EUVD
EUVD
•added 2026/06/24 6:43 p.m.•4 views

EUVD-2026-39032

Use after free in WebGL in Google Chrome on Android prior to 149.0.7827.197 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

9.6CVSS5.9AI score0.00217EPSS
Exploits0References2
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•3 views

EUVD-2026-38890

In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell-wmi-sysman: bound enumeration string aggregation populateenumdata aggregates firmware-provided value-modifier and possible-value strings into fixed 512-byte struct members. The current code bounds each individu...

5.8AI score0.00172EPSS
Exploits0References8
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•4 views

EUVD-2026-38895

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: fix missing run load for vcn0 in attrdatagetblocklocked When a compressed or sparse attribute has its clusters frame-aligned, vcn is rounded down to the frame start using cmask, which can result in vcn != vcn0. In this...

5.8AI score0.00155EPSS
Exploits0References3
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•4 views

EUVD-2026-38904

In the Linux kernel, the following vulnerability has been resolved: bpf, arm64: Fix off-by-one in checkimm signed range check checkimmbits, imm is used in the arm64 BPF JIT to verify that a branch displacement in arm64 instruction units fits into the signed N-bit immediate field of a B, B.cond or...

5.8AI score0.00138EPSS
Exploits0References7
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•5 views

EUVD-2026-38903

In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix afunix iter deadlock bpfiterunixseqshow may deadlock when locksockfast takes the fast path and the iter prog attempts to update a sockmap. Which ends up spinning at sockmapupdateelem's bhlocksock: WARNING:...

5.7AI score0.00172EPSS
Exploits0References7
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•6 views

EUVD-2026-38907

In the Linux kernel, the following vulnerability has been resolved: ocfs2: validate group add input before caching BUG OCFS2IOCGROUPADD can trigger a BUGON in ocfs2setnewbufferuptodate: kernel BUG at fs/ocfs2/uptodate.c:509! Oops: invalid opcode: 0000 1 SMP KASAN NOPTI RIP:...

6AI score0.00176EPSS
Exploits0References9
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•7 views

EUVD-2026-38897

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: prevent uninitialized lcn caused by zero len syzbot reported a uninit-value in ntfsiomapbegin 1. Since runs was not touched yet, runlookupentry immediately fails and returns false, which makes the value of "len" 0...

5.7AI score0.00172EPSS
Exploits0References3
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•4 views

EUVD-2026-38898

In the Linux kernel, the following vulnerability has been resolved: i3c: master: renesas: Fix memory leak in renesasi3ci3cxfers The xfer structure allocated by renesasi3callocxfer was never freed in the renesasi3ci3cxfers function. Use the freekfree cleanup attribute to automatically free the...

5.7AI score0.00166EPSS
Exploits0References4
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•4 views

EUVD-2026-38893

In the Linux kernel, the following vulnerability has been resolved: greybus: raw: fix use-after-free on cdev close This addresses a use-after-free bug when a raw bundle is disconnected but its chardev is still opened by an application. When the application releases the cdev, it causes the followi...

5.7AI score0.00129EPSS
Exploits0References3
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•5 views

EUVD-2026-38906

In the Linux kernel, the following vulnerability has been resolved: imafs: Correctly create securityfs files for unsupported hash algos imatpmchip-allocatedbanksi.cryptoid is initialized to HASHALGOLAST if the TPM algorithm is not supported. However there are places relying on the algorithm to be...

5.7AI score0.00168EPSS
Exploits0References5
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•5 views

EUVD-2026-38900

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix NULL deref in mapkptrmatchtype for scalar regs Commit ab6c637ad027 "bpf: Fix a bpfkptrxchg issue with local kptr" refactored mapkptrmatchtype to branch on btfiskernel before checking basetype. A scalar register stored in...

5.7AI score0.00168EPSS
Exploits0References6
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•6 views

EUVD-2026-38894

In the Linux kernel, the following vulnerability has been resolved: NFSD: fix nfs4file access extra count in nfsd4addrdaccesstowrdeleg In nfsd4addrdaccesstowrdeleg, if fp-fifdsORDONLY is already set by another thread, nfs4filegetaccess should not be called to increment the nfs4file access count...

5.7AI score0.00432EPSS
Exploits0References4
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•6 views

EUVD-2026-38901

In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Take state lock for afunix iter When a BPF iterator program updates a sockmap, there is a race condition in unixstreambpfupdateproto where the peer pointer can become stale1 during a state transition TCPESTABLISHED ...

5.7AI score0.00133EPSS
Exploits0References7
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•4 views

EUVD-2026-38892

In the Linux kernel, the following vulnerability has been resolved: greybus: raw: fix use-after-free if write is called after disconnect If a user writes to the chardev after disconnect has been called, the kernel panics with the following trace with CONFIGINITONFREEDEFAULTON=y: BUG: kernel NULL...

5.7AI score0.00129EPSS
Exploits0References3
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•4 views

EUVD-2026-38908

In the Linux kernel, the following vulnerability has been resolved: ocfs2: validate bgbits during freefrag scan BUG A crafted filesystem can trigger an out-of-bounds bitmap walk when OCFS2IOCINFO is issued with OCFS2INFOFLNONCOHERENT. BUG: KASAN: use-after-free in instrumentatomicread...

5.7AI score0.00122EPSS
Exploits0References9
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•3 views

EUVD-2026-38899

In the Linux kernel, the following vulnerability has been resolved: bpf: Validate nodeid in arenaallocpages arenaallocpages accepts a plain int nodeid and forwards it through the entire allocation chain without any bounds checking. Validate nodeid before passing it down the allocation chain in...

5.7AI score0.00128EPSS
Exploits0References5
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•4 views

EUVD-2026-38905

In the Linux kernel, the following vulnerability has been resolved: HID: usbhid: fix deadlock in hidpostreset You can build a USB device that includes a HID component and a storage or UAS component. The components can be reset only together. That means that hidprereset and hidpostreset are in the...

5.7AI score0.00176EPSS
Exploits0References9
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•3 views

EUVD-2026-38896

In the Linux kernel, the following vulnerability has been resolved: usb: typec: Fix error pointer dereference The variable tps-partner is checked for an error pointer and then if it is, it sends an error message but does not return and then immediately dereferenced a few lines below: tps-partner ...

5.7AI score0.00166EPSS
Exploits0References4
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•5 views

EUVD-2026-38902

In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix afunix null-ptr-deref in proto update unixstreamconnect sets skstate WRITEONCEsk-skstate, TCPESTABLISHED before it assigns a peer unixpeersk = newsk. skstate == TCPESTABLISHED makes sockmapskstateallowed believe...

5.6AI score0.0018EPSS
Exploits0References7
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•5 views

EUVD-2026-38865

In the Linux kernel, the following vulnerability has been resolved: net/sched: schdualpi2: drain both C-queue and L-queue in dualpi2change Fix dualpi2change to correctly enforce updated limit and memlimit values after a configuration change of the dualpi2 qdisc. Before this patch, dualpi2change...

5.7AI score0.00173EPSS
Exploits0References4
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•2 views

EUVD-2026-38877

In the Linux kernel, the following vulnerability has been resolved: ice: fix double-free of txbuf skb If icetso or icetxcsum fail, the error path in icexmitframering frees the skb, but the 'first' txbuf still points to it and is marked as valid ICETXBUFSKB. 'nexttouse' remains unchanged, so the...

5.8AI score0.00123EPSS
Exploits0References3
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•5 views

EUVD-2026-38878

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in smb2open during durable reconnect In smb2open, the call to ksmbdputdurablefdfp drops the reference to the durable file descriptor early during the durable reconnect process. If an error occurs...

5.7AI score0.00435EPSS
Exploits0References4
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•7 views

EUVD-2026-38883

In the Linux kernel, the following vulnerability has been resolved: erofs: unify lcn as u64 for 32-bit platforms As sashiko reported 1, lcn was typed as unsigned long or unsigned int sometimes, which is only 32 bits wide on 32-bit platforms, which causes lcn lclusterbits to be truncated at 4 GiB...

5.7AI score0.00168EPSS
Exploits0References5
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•4 views

EUVD-2026-38868

In the Linux kernel, the following vulnerability has been resolved: netfilter: nat: use kfreercu to release ops Florian Westphal says: "Historically this is not an issue, even for normal base hooks: the data path doesn't use the original nfhookops that are used to register the callbacks. However,...

5.8AI score0.00123EPSS
Exploits0References4
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•3 views

EUVD-2026-38881

In the Linux kernel, the following vulnerability has been resolved: macvlan: fix macvlangetsize not reserving space for IFLAMACVLANBCCUTOFF macvlangetsize does not account for IFLAMACVLANBCCUTOFF, but macvlanfillinfo conditionally includes it when port-bccutoff != 1. This causes nlaputs32 to fail...

5.7AI score0.00168EPSS
Exploits0References6
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•3 views

EUVD-2026-38866

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkosf: fix potential NULL dereference in ttl check The nfosfttl function accessed skb-dev to perform a local interface address lookup without verifying that the device pointer was valid. Additionally, the...

5.8AI score0.00508EPSS
Exploits0References9
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•5 views

EUVD-2026-38876

In the Linux kernel, the following vulnerability has been resolved: ice: fix race condition in TX timestamp ring cleanup Fix a race condition between icefreetxtstampring and icetxmap that can cause a NULL pointer dereference. icefreetxtstampring currently clears the ICETXFLAGSTXTIME flag after...

5.8AI score0.00155EPSS
Exploits0References3
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•4 views

EUVD-2026-38879

In the Linux kernel, the following vulnerability has been resolved: net/sched: taprio: fix use-after-free in advancesched on schedule switch In advancesched, when shouldchangeschedules returns true, switchschedules is called to promote the admin schedule to oper. switchschedules queues the old op...

5.7AI score0.00125EPSS
Exploits0References9
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•4 views

EUVD-2026-38860

In the Linux kernel, the following vulnerability has been resolved: fs/adfs: validate nzones in adfsvalidatebblk Reject ADFS disc records with a zero zone count during boot block validation, before the disc record is used. When nzones is 0, adfsreadmap passes it to kmallocarray0, ... which return...

5.7AI score0.00184EPSS
Exploits0References9
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•3 views

EUVD-2026-38861

In the Linux kernel, the following vulnerability has been resolved: tipc: fix double-free in tipcbufappend tipcmsgvalidate can potentially reallocate the skb it is validating, freeing the old one. In tipcbufappend, it was being called with a pointer to a local variable which was a copy of the...

5.7AI score0.00351EPSS
Exploits0References9
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•9 views

EUVD-2026-38886

In the Linux kernel, the following vulnerability has been resolved: f2fs: avoid reading already updated pages during GC We found the following issue during fuzz testing: page: refcount:3 mapcount:0 mapping:00000000b6e89c65 index:0x18b2dc pfn:0x161ba9 memcg:f8ffff800e269c00 aops:f2fsmetaaops ino:2...

5.7AI score0.00166EPSS
Exploits0References4
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•5 views

EUVD-2026-38873

In the Linux kernel, the following vulnerability has been resolved: afunix: Drop all SCM attributes for SOCKMAP. SOCKMAP can hide inflight fd from AFUNIX GC. When a socket in SOCKMAP receives skb with inflight fd, skpsockverdictdataready looks up the mapped socket and enqueue skb to its...

5.7AI score0.00129EPSS
Exploits0References3
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•6 views

EUVD-2026-38872

In the Linux kernel, the following vulnerability has been resolved: sctp: fix OOB write to userspace in sctpgetsockoptpeerauthchunks sctpgetsockoptpeerauthchunks checks that the caller's optval buffer is large enough for the peer AUTH chunk list with if len gauthchunks, which lives at offset...

6AI score0.00176EPSS
Exploits0References9
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•3 views

EUVD-2026-38880

In the Linux kernel, the following vulnerability has been resolved: nexthop: fix IPv6 route referencing IPv4 nexthop syzbot reported a panic 1 2. When an IPv6 nexthop is replaced with an IPv4 nexthop, the hasv4 flag of all groups containing this nexthop is not updated. This is because...

5.7AI score0.00185EPSS
Exploits0References9
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•4 views

EUVD-2026-38888

In the Linux kernel, the following vulnerability has been resolved: um: Fix potential race condition in TLB sync During the TLB sync, we need to traverse and modify the page table, so we should hold the page table lock. Since full SMP support for threads within the same process is still missing,...

5.8AI score0.0012EPSS
Exploits0References3
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•5 views

EUVD-2026-38857

In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: propagate nvmettcpbuildpduiovec errors to its callers Currently, when nvmettcpbuildpduiovec detects an out-of-bounds PDU length or offset, it triggers nvmettcpfatalerrorcmd-queue and returns early. However, because the...

5.7AI score0.00342EPSS
Exploits0References7
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•4 views

EUVD-2026-38869

In the Linux kernel, the following vulnerability has been resolved: netfilter: xtables: restrict several matches to inet family This is a partial revert of: commit ab4f21e6fb1c "netfilter: xtables: use NFPROTOUNSPEC in more extensions" to allow ipv4 and ipv6 only. - xtmac - xtowner - xtphysdev...

5.8AI score0.00176EPSS
Exploits0References9
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•4 views

EUVD-2026-38874

In the Linux kernel, the following vulnerability has been resolved: ipv6: fix possible UAF in icmpv6rcv Caching saddr and daddr before pskbpull is problematic since skb-head can change. Remove these temporary variables: - We only access &ipv6hdrskb-saddr and &ipv6hdrskb-daddr when netdbgratelimit...

5.7AI score0.00377EPSS
Exploits0References9
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•3 views

EUVD-2026-38875

In the Linux kernel, the following vulnerability has been resolved: ice: fix potential NULL pointer deref in error path of icesetringparam icesetringparam nullifies tstampring of temporary txrings, without clearing ICETXRINGFLAGSTXTIME bit. When ICETXRINGFLAGSTXTIME is set and the subsequent...

5.8AI score0.00155EPSS
Exploits0References3
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•3 views

EUVD-2026-38884

In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - copy IV using skcipher ivsize AFALG rfc3686-ctr-aes-ccp requests pass an 8-byte IV to the driver. ccpaescomplete restores AESBLOCKSIZE bytes into the caller's IV buffer while RFC3686 skciphers expose an 8-byte IV, s...

5.7AI score0.00132EPSS
Exploits0References9
EUVD
EUVD
•added 2026/06/24 6:32 p.m.•8 views

EUVD-2026-38891

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: terminate the cached volume label after UTF-8 conversion ntfsfillsuper loads the on-disk volume label with utf16stoutf8s and stores the result in sbi-volume.label. The converted label is later exposed through...

5.7AI score0.00172EPSS
Exploits0References8
Total number of security vulnerabilities418162