9.8

CVSS3.1

CVE-2026-42208 - LiteLLM: LiteLLM: Unauthorized data access and modification via SQL injection

A flaw was found in LiteLLM. A database query used for proxy API key checks incorrectly incorporated caller-supplied key values directly into the query. This vulnerability allows an unauthenticated attacker to send a specially crafted Authorization header to any Large Language Model (LLM) API route…

πŸ“… Published: April 28, 2026, midnight πŸ”„ Last Modified: April 28, 2026, midnight

3.1

CVSS3.1

CVE-2026-7360 - chromium-browser: Insufficient validation of untrusted input in Compositing

Insufficient validation of untrusted input. in Compositing in Google Chrome prior to 147.0.7727.138 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. (Chromium security severity: High)

πŸ“… Published: April 28, 2026, midnight πŸ”„ Last Modified: April 30, 2026, 4:37 p.m.

7.5

CVSS3.1

CVE-2026-7357 - chromium-browser: Use after free in GPU

Use after free in GPU in Google Chrome prior to 147.0.7727.138 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

πŸ“… Published: April 28, 2026, midnight πŸ”„ Last Modified: April 30, 2026, 4:37 p.m.

8.3

CVSS3.1

CVE-2026-7353 - chromium-browser: Heap buffer overflow in Skia

Heap buffer overflow in Skia in Google Chrome prior to 147.0.7727.138 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

πŸ“… Published: April 28, 2026, midnight πŸ”„ Last Modified: April 30, 2026, 4:39 p.m.

7.5

CVSS3.1

CVE-2026-7349 - chromium-browser: Use after free in Cast

Use after free in Cast in Google Chrome prior to 147.0.7727.138 allowed an attacker on the local network segment to execute arbitrary code inside a sandbox via malicious network traffic. (Chromium security severity: High)

πŸ“… Published: April 28, 2026, midnight πŸ”„ Last Modified: April 30, 2026, 4:40 p.m.

8.8

CVSS3.1

CVE-2026-7337 - chromium-browser: Type Confusion in V8

Type Confusion in V8 in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

πŸ“… Published: April 28, 2026, midnight πŸ”„ Last Modified: April 30, 2026, 6:28 p.m.

6.5

CVSS3.1

CVE-2026-41526 - Shell Argument Quoting Vulnerability Leading to Escape in KCoreAddons

In KDE KCoreAddons before 6.25, KShell::quoteArgs is intended to safely quote arguments so that they can be passed to a shell command. This parsing does not adequately handle metacharacters, leading to an escape from the shell. All applications relying on this method in a security-critical path to …

πŸ“… Published: April 28, 2026, midnight πŸ”„ Last Modified: April 28, 2026, 1:03 p.m.

9.8

CVSS3.1

CVE-2025-60889 -

Insecure deserialization of untrusted input in StellarGroup HPX 1.11.0 under certain conditions may allow attackers to execute arbitrary code or other unspecified impacts.

πŸ“… Published: April 28, 2026, midnight πŸ”„ Last Modified: May 2, 2026, 12:45 a.m.

8.6

CVSS4.0

CVE-2026-20766 - Milesight Cameras Heap-based Buffer Overflow

An out-of-bounds memory access vulnerability exists in specific firmware versions of Milesight AIOT cameras.

πŸ“… Published: April 27, 2026, 11:45 p.m. πŸ”„ Last Modified: April 28, 2026, 2:39 p.m.

9.3

CVSS4.0

CVE-2026-7202 - Totolink A8000RU CGI cstecgi.cgi setWiFiWpsStart os command injection

A vulnerability has been found in Totolink A8000RU 7.1cu.643_b20200521. This affects the function setWiFiWpsStart of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument wscDisabled leads to os command injection. The attack can be initiated remotely. The expl…

πŸ“… Published: April 27, 2026, 11:45 p.m. πŸ”„ Last Modified: April 29, 2026, 2:13 p.m.
Total resulsts: 348038
Page 119 of 34,804
Β« previous page Β» next page
Filters