|
4991
|
5.5 |
MEDIUM
Local
|
-
|
-
|
Ubuntu Linux 6.8, 6.17 and 7.0 contain AppArmor SAUCE patches which incorrectly validate the size of an internal structure, leading to an out-of-bounds read in notification handling code. The bug can…
|
CWE-125
Out-of-bounds Read
|
CVE-2026-47332
|
2026-05-29 11:45 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4992
|
7.8 |
HIGH
Local
|
-
|
-
|
Ubuntu Linux 6.8, 6.17 and 7.0 contain AppArmor SAUCE patches which can potentially incorrectly compute the size of an internal buffer, leading to a heap memory out-of-bounds read in notification han…
|
CWE-125
Out-of-bounds Read
|
CVE-2026-47333
|
2026-05-29 11:45 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4993
|
5.5 |
MEDIUM
Local
|
-
|
-
|
Ubuntu Linux 6.8, 6.17 and 7.0 contain AppArmor SAUCE patches which incorrectly sleep while holding a spinlock in notification handling code. The bug can be triggered by an unprivileged local user an…
|
CWE-833
Deadlock
|
CVE-2026-47334
|
2026-05-29 11:45 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4994
|
5.5 |
MEDIUM
Local
|
-
|
-
|
Ubuntu Linux 6.8 contains SAUCE patches with a possible NULL pointer dereference in the handling of AppArmor notifications. The bug can be triggered by an unprivileged local user. This can lead to a …
|
CWE-476
NULL Pointer Dereference
|
CVE-2026-47335
|
2026-05-29 11:45 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4995
|
3.3 |
LOW
Local
|
-
|
-
|
Ubuntu Linux 6.8 contains SAUCE patches with a possible use of an uninitialized variable in AppArmor AF_INET/AF_INET6 socket mediation code. The bug can be triggered by an unprivileged local user and…
|
CWE-457
Use of Uninitialized Variable
|
CVE-2026-47336
|
2026-05-29 11:45 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4996
|
3.3 |
LOW
Local
|
-
|
-
|
Ubuntu Linux 6.8, 6.17 and 7.0 contain SAUCE patches with a possible NULL pointer dereference in the handling of AF_INET/AF_INET6 socket mediation. The bug can be triggered by an unprivileged local u…
|
CWE-476
NULL Pointer Dereference
|
CVE-2026-47337
|
2026-05-29 11:45 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4997
|
9.8 |
CRITICAL
Network
|
-
|
-
|
The Advanced Custom Fields: Extended plugin for WordPress is vulnerable to Privilege Escalation via Validation Bypass in all versions up to and including 0.9.2.5. The vulnerability exists due to the …
|
CWE-269
Improper Privilege Management
|
CVE-2026-8809
|
2026-05-29 11:40 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4998
|
- |
|
-
|
-
|
Use after free in SurfaceCapture in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
|
CWE-416
Use After Free
|
CVE-2026-9961
|
2026-05-29 11:35 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4999
|
- |
|
-
|
-
|
Out of bounds write in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
|
CWE-787
Out-of-bounds Write
|
CVE-2026-9965
|
2026-05-29 11:35 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
5000
|
7.5 |
HIGH
Network
|
benoitc
|
hackney
|
Improper Neutralization of CRLF Sequences ('CRLF Injection') vulnerability in benoitc hackney allows HTTP Request/Response Splitting. The WebSocket upgrade code in src/hackney_ws.erl copies the host,…
|
CWE-93
CRLF Injection
|
CVE-2026-47072
|
2026-05-29 05:27 |
2026-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
