CVE Vulnerability Catalog
Translated CVE descriptions from NVD NIST - in English
CISA KEV catalog updated: (v2026.07.10)
SAP MDG (Review Match Groups Application) does not perform the necessary authorization checks for authenticated users. This could allow a low-privileged user to perform actions that would otherwise be restricted, resulting in escalation of privileges.
There is a reflected XSS vulnerability in SAP NetWeaver JAVA (JDBC Test Servlet) that allows an unauthenticated attacker to craft a malicious link. Clicking this link by a victim may lead to the execution of malicious script in the victim's browser.
SAP S/4HANA (On-Premise) contains an SQL injection vulnerability in a remote-enabled function module component that could be exploited by an authenticated attacker to potentially execute unauthorized database queries. This flaw exposes sensitive information to which they should not otherwise have access.
SAP Fiori Launchpad allows attackers to craft malicious URLs that triggers arbitrary service calls on the Fiori domain. When opened by the user, this could compromise accounts by stealing user credentials.
Inappropriate implementation in Guest View in Google Chrome prior to version 149.0.7827.103 allowed a remote attacker to perform UI spoofing via a crafted HTML page.
In Google Chrome on Windows prior to version 149.0.7827.103, an uninitialized use in the video module allowed a remote attacker who compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page.
Inappropriate implementation in Passwords in Google Chrome prior to version 149.0.7827.103 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
Inappropriate implementation in MediaCapture in Google Chrome on Mac prior to version 149.0.7827.103 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
Integer overflow in libyuv in Google Chrome prior to version 149.0.7827.103 allowed a remote attacker who compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page.
An out of bounds read in Google Chrome on ChromeOS prior to version 149.0.7827.103 allowed a remote attacker who compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page.
In Google Chrome on Linux and ChromeOS prior to version 149.0.7827.103, there is an uninitialized use issue in codecs that allows a remote attacker to leak cross-origin data via a crafted video file.
Insufficient validation of untrusted input in Google Chrome prior to version 149.0.7827.103 allowed a remote attacker to perform UI spoofing via a crafted HTML page.
In Google Chrome on Windows prior to version 149.0.7827.103, an out of bounds read vulnerability allowed a remote attacker to leak cross-origin data via a crafted HTML page.
Insufficient validation of untrusted input in Extensions in Google Chrome prior to version 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page.
Inappropriate implementation in Extensions in Google Chrome prior to version 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page.
Use after free in Ozone in Google Chrome prior to version 149.0.7827.103 allows a local attacker to potentially exploit heap corruption via physical access to the device.
A race condition in OpenVPN versions 2.6.0 through 2.6.19 and 2.7_alpha1 through 2.7.1 allows remote attackers to potentially cause a server crash or leak heap memory via a use-after-free triggered during TLS session promotion.
A vulnerability was identified in CodeAstro Student Attendance Management System version 1.0. Manipulation of the classId argument in the file /attendance-php/Admin/createClassArms.php leads to SQL injection, which can be initiated remotely.
Namespace attributes are not encoded correctly during HTML serialization, allowing bypassing the cross-site scripting prevention mechanism of typo3/html-sanitizer before version 2.3.2.
Improper validation of packet length during tls-crypt-v2 key extraction in OpenVPN versions 2.6.0 through 2.6.19 and 2.7_alpha1 through 2.7.1 allows authenticated attackers to trigger a fatal assertion and cause a denial of service via a specially crafted packet.

