Lucene search
K

474 matches found

EUVD
EUVD
added 2026/04/15 9:30 p.m.4 views

EUVD-2026-23068

Insufficient policy enforcement in CORS in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

3.1CVSS5.8AI score0.00207EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/04/15 7:4 p.m.4 views

CVE-2026-6319

Use after free in Payments in Google Chrome on Android prior to 147.0.7727.101 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. Chromium security severity: Medium...

6.2AI score0.00293EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/15 7:4 p.m.2 views

CVE-2026-6316

Use after free in Forms in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.2AI score0.00323EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/04/15 7:4 p.m.15 views

CVE-2026-6312

Google Chrome Vulnerability CVE-2026-6312 affects the Passwords feature. The issue is caused by insufficient policy enforcement in Passwords, allowing a remote attacker who compromises the renderer process to leak cross-origin data via a crafted HTML page. Affected: Chrome versions before 147.0.7...

3.1CVSS5.8AI score0.00219EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/04/15 7:4 p.m.23 views

CVE-2026-6310

CVE-2026-6310 describes a use-after-free in Dawn within Google Chrome before 147.0.7727.101, allowing a remote attacker who has compromised the renderer process to potentially escape the sandbox via a crafted HTML page. The connected documents confirm the vulnerability details and severity (High)...

8.3CVSS5.8AI score0.00251EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/04/15 7:4 p.m.16 views

CVE-2026-6309

CVE-2026-6309 describes a use-after-free in Viz within Google Chrome prior to version 147.0.7727.101. If an attacker compromised the renderer process via a crafted HTML page, they could potentially perform a sandbox escape. The entry notes a high severity. Affected software/version: Google Chrome...

8.3CVSS5.8AI score0.00251EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/15 7:4 p.m.3 views

CVE-2026-6298

Heap buffer overflow in Skia in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Critical...

6.1AI score0.00286EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/04/11 12:0 a.m.9 views

PT-2026-35847

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 147.0.7727.138 Description A use after free issue in Chromoting allows a remote attacker to execute arbitrary code via malicious network traffic. Use after free is a memory corruption flaw that occurs when an...

10CVSS6.4AI score0.00433EPSS
Exploits0References39
SUSE CVE
SUSE CVE
added 2026/04/09 11:30 p.m.6 views

SUSE CVE-2026-5860

Use after free in WebRTC in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.7AI score0.0048EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/04/09 11:30 p.m.4 views

SUSE CVE-2026-5881

Policy bypass in LocalNetworkAccess in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

7.3AI score0.00217EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/04/09 11:29 p.m.6 views

SUSE CVE-2026-5891

Insufficient policy enforcement in browser UI in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS7.3AI score0.00206EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/04/09 11:29 p.m.5 views

SUSE CVE-2026-5914

Type Confusion in CSS in Google Chrome prior to 147.0.7727.55 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. Chromium security severity: Low...

8.8CVSS7.3AI score0.00164EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/04/09 11:29 p.m.6 views

SUSE CVE-2026-5918

Inappropriate implementation in Navigation in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

4.3CVSS7.3AI score0.00158EPSS
Exploits0References3
EUVD
EUVD
added 2026/04/09 12:32 a.m.2 views

EUVD-2026-20707

Race in WebCodecs in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

5.9AI score0.0018EPSS
Exploits0References3
EUVD
EUVD
added 2026/04/09 12:31 a.m.7 views

EUVD-2026-20658

Inappropriate implementation in V8 in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

6.3AI score0.00303EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/04/09 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2026-5889

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cryptographic Flaw in PDFium in Google Chrome prior to 147.0.7727.55 allowed an attacker to read potentially sensitive information from encrypted PDFs via a...

4.3CVSS7.3AI score0.00102EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/09 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-5891

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient policy enforcement in browser UI in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who had compromised the renderer process to...

4.3CVSS7.3AI score0.00206EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/09 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2026-5913

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Out of bounds read in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page...

8.1CVSS7.3AI score0.00205EPSS
Exploits0References2
OSV
OSV
added 2026/04/08 10:16 p.m.2 views

DEBIAN-CVE-2026-5911

Policy bypass in ServiceWorkers in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to bypass content security policy via a crafted HTML page. Chromium security severity: Low...

4.3CVSS8.4AI score0.00166EPSS
Exploits0References1
OSV
OSV
added 2026/04/08 10:16 p.m.3 views

DEBIAN-CVE-2026-5912

Integer overflow in WebRTC in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. Chromium security severity: Low...

8.8CVSS8.5AI score0.00215EPSS
Exploits0References1
Rows per page
Query Builder