anansi2safe - Security Researcher - Exploit Intelligence Platform

CVE-2023-20938 NOMISEC HIGH WORKING POC

Google Android - Use After Free

In binder_transaction_buffer_release of binder.c, there is a possible use after free due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-257685302References: Upstream kernel

9 stars

CVSS 7.8

View Code

CVE-2026-3909 NOMISEC HIGH WRITEUP

Google Chrome < 146.0.7680.75 - Out-of-Bounds Access

Out of bounds write in Skia in Google Chrome prior to 146.0.7680.75 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)

1 stars

CVSS 8.8

View Code

CVE-2026-3909 NOMISEC HIGH

Google Chrome < 146.0.7680.75 - Out-of-Bounds Access

Out of bounds write in Skia in Google Chrome prior to 146.0.7680.75 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)

CVSS 8.8

View Code