anansi2safe

4 exploits Active since Feb 2023
CVE-2023-20938 NOMISEC HIGH WORKING POC
Android - Use-After-Free in binder_transaction_buffer_release
In binder_transaction_buffer_release of binder.c, there is a possible use after free due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-257685302References: Upstream kernel
9 stars
CVSS 7.8
CVE-2026-3909 NOMISEC HIGH WRITEUP
Google Chrome < 146.0.7680.75 - Out-of-bounds Write in Skia via Crafted HTML Page
Out of bounds write in Skia in Google Chrome prior to 146.0.7680.75 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)
1 stars
CVSS 8.8
CVE-2026-5281 GITHUB HIGH html WORKING POC
Google Chrome < 146.0.7680.178 - Use-After-Free in Dawn
Use after free in Dawn in Google Chrome prior to 146.0.7680.178 allowed a remote attacker who had compromised the renderer process to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)
CVSS 8.8
CVE-2026-3909 NOMISEC HIGH
Google Chrome < 146.0.7680.75 - Out-of-bounds Write in Skia via Crafted HTML Page
Out of bounds write in Skia in Google Chrome prior to 146.0.7680.75 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)
CVSS 8.8