CVE CyberSecurity Database News

Apr 1, 2026 Google Chrome

CVE-2026-5281 - Understanding the “Use After Free” Vulnerability in Dawn on Google Chrome (Before 146..768.178)

Recently, a critical vulnerability known as CVE-2026-5281 was discovered in the graphics engine Dawn as used within Google Chrome. Affecting Chrome versions prior to 146.

Mar 27, 2026 Java

CVE-2026-33871 - Denial of Service in Netty HTTP/2 via CONTINUATION Frame Flood

CVE-2026-33871 uncovers a serious denial of service (DoS) vulnerability in Netty, one of the most widely used asynchronous network application frameworks for Java. Found in

Mar 27, 2026 Java

CVE-2026-33870 - How a Netty Parsing Bug Puts Your Server at Risk (Exclusive Deep Dive)

Netty is a super popular Java networking framework, used by tons of projects and companies to build fast servers and clients. But behind the scenes,

Mar 25, 2026

CVE-2026-25645 - Zip Path Extraction Vulnerability in Python Requests (Easy-to-Understand Overview)

If you use the popular Python Requests library for HTTP requests, you should know about CVE-2026-25645. This security issue doesn't affect the main

Mar 20, 2026

CVE-2026-33068 - How Malicious Repos Could Bypass Workspace Trust in Claude Code (<v2.1.53)

Published: June 2024 Severity: High CVE Link: NVD Entry Agentic coding tools like Claude Code are fast becoming common in engineering workflows. But these AI-based