Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Securly | Securly Chrome Extension | affected |
|
No data.
No data.
OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.
No data.
Project Subscriptions
No data.
No advisories yet.
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
| Link | Providers |
|---|---|
| https://kb.cert.org/vuls/id/595768 |
|
Wed, 03 Jun 2026 20:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Weaknesses | CWE-200 CWE-284 |
Wed, 03 Jun 2026 19:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Version 3.0.7 of the Securly Chrome Extension exposes multiple publicly accessible endpoints that allow unauthenticated access to sensitive data. The exposed information consists of SHA-1 hashes that are inadequately obfuscated using a simple Caesar cipher, which can be easily reversed to recover the original hash values and access the protected data. | |
| Title | CVE-2026-8878 | |
| References |
|
Projects
Sign in to view the affected projects.
MITRE
Status: PUBLISHED
Assigner: certcc
Published:
Updated: 2026-06-03T18:09:04.115Z
Reserved: 2026-05-18T20:27:44.651Z
Link: CVE-2026-8878
Vulnrichment
No data.
NVD
Status : Received
Published: 2026-06-03T19:16:39.387
Modified: 2026-06-03T19:16:39.387
Link: CVE-2026-8878
Redhat
No data.
OpenCVE Enrichment
Updated: 2026-06-03T20:30:36Z
No weakness.