|
2841
|
8.3 |
HIGH
Network
|
google
|
chrome
|
Use after free in Core in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTM…
|
CWE-416
Use After Free
|
CVE-2026-8574
|
2026-05-20 04:27 |
2026-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2842
|
9.4 |
CRITICAL
Network
|
dify
|
dify
|
Dify version 1.14.1 and prior contain a path traversal vulnerability that allows authenticated users to manipulate requests forwarded to the Plugin Daemon's internal REST API by exploiting insufficie…
|
CWE-23
Relative Path Traversal
|
CVE-2026-41948
|
2026-05-20 04:25 |
2026-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2843
|
9.1 |
CRITICAL
Network
|
dify
|
dify
|
Dify version 1.14.1 and prior contains an authorization bypass vulnerability that allows authenticated editor users to set and enable trace configurations for any application regardless of tenant own…
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2026-41947
|
2026-05-20 04:24 |
2026-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2844
|
7.2 |
HIGH
Network
|
dataease
|
dataease
|
A security flaw has been discovered in Dataease 2.10.20. Impacted is the function SqlparserUtils.transFilter of the file SqlparserUtils.java of the component Data Dashboard. The manipulation results …
|
CWE-74
CWE-89
Injection
SQL Injection
|
CVE-2026-8724
|
2026-05-20 04:04 |
2026-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2845
|
6.5 |
MEDIUM
Local
|
xen
|
xen
|
Any guest can cause xenstored to crash by issuing a XS_RESET_WATCHES
command within a transaction due to an assert() triggering.
In case xenstored was built with NDEBUG #defined nothing bad will
hap…
|
CWE-617
Reachable Assertion
|
CVE-2026-23557
|
2026-05-20 03:56 |
2026-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2846
|
7.8 |
HIGH
Local
|
xen
|
xen
|
The adjustments made for XSA-379 as well as those subsequently becoming
XSA-387 still left a race window, when a HVM or PVH guest does a grant
table version change from v2 to v1 in parallel with mapp…
|
CWE-362
Race Condition
|
CVE-2026-23558
|
2026-05-20 03:55 |
2026-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2847
|
7.5 |
HIGH
Network
|
langgenius
|
dify
|
Dify version 1.14.1 and prior contain an authorization bypass vulnerability in the file preview endpoint that allows any authenticated user to read up to 3,000 characters of any uploaded document acr…
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2026-41949
|
2026-05-20 03:50 |
2026-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2848
|
7.5 |
HIGH
Network
|
mozilla
|
firefox
thunderbird
|
Incorrect boundary conditions in the Audio/Video: Web Codecs component. This vulnerability was fixed in Firefox 151, Firefox ESR 115.36, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2026-8946
|
2026-05-20 03:50 |
2026-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2849
|
7.3 |
HIGH
Network
|
mozilla
|
firefox
thunderbird
|
Use-after-free in the DOM: Bindings (WebIDL) component. This vulnerability was fixed in Firefox 151, Firefox ESR 115.36, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11.
|
CWE-416
Use After Free
|
CVE-2026-8947
|
2026-05-20 03:47 |
2026-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2850
|
9.6 |
CRITICAL
Network
|
mozilla
|
firefox
thunderbird
|
Sandbox escape due to use-after-free in the Disability Access APIs component. This vulnerability was fixed in Firefox 151, Firefox ESR 115.36, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140…
|
CWE-416
Use After Free
|
CVE-2026-8953
|
2026-05-20 03:45 |
2026-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
