24h | 7d | 30d

Overview

  • Pending

13 Apr 2026
Published
13 Apr 2026
Updated

CVSS
Pending
EPSS
0.08%

KEV

Description

An out-of-bounds read in the read_global_param() function (libavcodec/av1dec.c) of FFmpeg v8.0.1 allows attackers to cause a Denial of Service (DoS) via a crafted input.

Statistics

  • 1 Post

Last activity: 23 hours ago

Bluesky

Profile picture fallback
#Mageia em alerta? Vulnerabilidades no FFmpeg (CVE-2026-30997 e CVE-2026-40962) podem travar seu sistema com um simples arquivo de mídia. Saiba mais -> tinyurl.com/4d9xc2vk
  • 0
  • 0
  • 0
  • 23h ago

Overview

  • Google
  • Chrome

28 May 2026
Published
30 May 2026
Updated

CVSS
Pending
EPSS
0.08%

KEV

Description

Use after free in Network in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Critical)

Statistics

  • 1 Post

Last activity: 20 hours ago

Bluesky

Profile picture fallback
Chrome 148 patches 151 vulnerabilities, including 22 critical flaws that could enable RCE or sandbox escape. Top issues include CVE-2026-9872 in GPU and CVE-2026-9873 in Network. #Chrome148 #CVE2026 #BrowserSecurity
  • 0
  • 0
  • 0
  • 20h ago

Overview

  • FFmpeg
  • FFmpeg

16 Apr 2026
Published
16 Apr 2026
Updated

CVSS v3.1
MEDIUM (4.9)
EPSS
0.01%

KEV

Description

FFmpeg before 8.1 has an integer overflow and resultant out-of-bounds write via CENC (Common Encryption) subsample data to libavformat/mov.c.

Statistics

  • 1 Post

Last activity: 23 hours ago

Bluesky

Profile picture fallback
#Mageia em alerta? Vulnerabilidades no FFmpeg (CVE-2026-30997 e CVE-2026-40962) podem travar seu sistema com um simples arquivo de mídia. Saiba mais -> tinyurl.com/4d9xc2vk
  • 0
  • 0
  • 0
  • 23h ago

Overview

  • Google
  • Chrome

28 May 2026
Published
30 May 2026
Updated

CVSS
Pending
EPSS
0.04%

KEV

Description

Out of bounds write in GPU in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)

Statistics

  • 1 Post

Last activity: 20 hours ago

Bluesky

Profile picture fallback
Chrome 148 patches 151 vulnerabilities, including 22 critical flaws that could enable RCE or sandbox escape. Top issues include CVE-2026-9872 in GPU and CVE-2026-9873 in Network. #Chrome148 #CVE2026 #BrowserSecurity
  • 0
  • 0
  • 0
  • 20h ago

Overview

  • F5
  • NGINX Plus

13 May 2026
Published
21 May 2026
Updated

CVSS v3.1
HIGH (8.1)
EPSS
0.90%

KEV

Description

NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_rewrite_module module. This vulnerability exists when the rewrite directive is followed by a rewrite, if, or set directive and an unnamed Perl-Compatible Regular Expression (PCRE) capture (for example, $1, $2) with a replacement string that includes a question mark (?). An unauthenticated attacker along with conditions beyond its control can exploit this vulnerability by sending crafted HTTP requests. This may cause a heap buffer overflow in the NGINX worker process leading to a restart. Additionally, attackers can execute code on systems with Address Space Layout Randomization (ASLR) disabled or when the attacker can bypass ASLR.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Statistics

  • 1 Post

Last activity: 6 hours ago

Bluesky

Profile picture fallback
The latest update for #Indusface includes "6 WAAP Features Every Bank and Financial Institution Needs in 2026" and "NGINX Under Active Attack: CVE-2026-42945 and CVE-2026-9256 Put Your Infrastructure at Risk". #cybersecurity #infosec https://opsmtrs.com/3ySs2VF
  • 0
  • 0
  • 0
  • 6h ago
Showing 41 to 45 of 45 CVEs