Lucene search
K

155 matches found

BDU FSTEC
BDU FSTEC
added 2025/06/09 12:0 a.m.7 views

The vulnerability of the browser’s Background Fetch API programming interface in Google Chrome, which allows a perpetrator to disclose protected information

The vulnerability of the Background Fetch API in Google Chrome browser’s software interface is related to the disclosure of information. Exploiting this vulnerability could allow a remote attacker to disclose sensitive information through a specially created HTML page...

6.4CVSS5.8AI score0.00322EPSS
Exploits0References10Affected Software4
RedhatCVE
RedhatCVE
added 2025/05/29 9:30 p.m.8 views

CVE-2025-5064

Inappropriate implementation in Background Fetch API in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.4CVSS5.9AI score0.00322EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2025/05/29 6:55 p.m.304 views

Chromium: CVE-2025-5064 Inappropriate implementation in Background Fetch API

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

5.4CVSS6.9AI score0.00322EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/05/29 2:12 a.m.5 views

SUSE CVE-2025-5064

Inappropriate implementation in Background Fetch API in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.4CVSS6.5AI score0.00322EPSS
Exploits0References3
OSV
OSV
added 2025/05/27 9:15 p.m.2 views

DEBIAN-CVE-2025-5064

Inappropriate implementation in Background Fetch API in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.4CVSS5.6AI score0.00322EPSS
Exploits0References1
NVD
NVD
added 2025/05/27 9:15 p.m.10 views

CVE-2025-5064

Inappropriate implementation in Background Fetch API in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.4CVSS0.00322EPSS
Exploits0References2
OSV
OSV
added 2025/05/27 9:15 p.m.5 views

CVE-2025-5064

Inappropriate implementation in Background Fetch API in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.4CVSS6.2AI score
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/05/27 8:43 p.m.7 views

CVE-2025-5064

Inappropriate implementation in Background Fetch API in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.9AI score0.00322EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/05/27 8:43 p.m.15 views

CVE-2025-5064

Inappropriate implementation in Background Fetch API in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

0.00322EPSS
Exploits0References2
CVE
CVE
added 2025/05/27 8:43 p.m.558 views

CVE-2025-5064

CVE-2025-5064 relates to an inappropriate implementation in Chrome's Background Fetch API that could leak cross-origin data via a crafted HTML page. Affected product: Google Chrome (Chromium base). The issue is mitigated by upgrading to Chrome 137.0.7151.55 or later (Chromium fix referenced by Ch...

5.4CVSS6AI score0.00322EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2025/05/27 8:43 p.m.8 views

CVE-2025-5064

Inappropriate implementation in Background Fetch API in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.4CVSS5.6AI score0.00322EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2025/05/27 8:43 p.m.6 views

CVE-2025-5064

Inappropriate implementation in Background Fetch API in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.4CVSS6AI score0.00322EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/05/27 12:0 a.m.4 views

PT-2025-23028 · Google +2 · Google Chrome +2

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 137.0.7151.55 Description: The issue is related to an inappropriate implementation in the Background Fetch API, allowing a remote attacker to leak cross-origin data via a crafted HTML page. This could potential...

8.8CVSS5.5AI score0.03073EPSS
Exploits0References38
FreeBSD
FreeBSD
added 2025/05/27 12:0 a.m.12 views

chromium -- multiple security fixes

Chrome Releases reports: This update includes 11 security fixes: 411573532 High CVE-2025-5063: Use after free in Compositing. Reported by Anonymous on 2025-04-18 417169470 High CVE-2025-5280: Out of bounds write in V8. Reported by pwn2car on 2025-05-12 40058068 Medium CVE-2025-5064: Inappropriate...

8.8CVSS6.6AI score0.03073EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.35 views

openSUSE: Security Advisory for chromium (openSUSE-SU-2022:10086-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.4AI score0.00799EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2023/03/23 12:0 a.m.25 views

Google Chrome Security Update (stable-channel-update-for-desktop_21-2021-09) - Linux

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...

8.8CVSS7.4AI score0.01662EPSS
Exploits3References1
SUSE CVE
SUSE CVE
added 2023/02/15 4:2 a.m.2 views

SUSE CVE-2020-6510

Heap buffer overflow in background fetch in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

7.8CVSS8.5AI score0.01583EPSS
Exploits0References9
SUSE CVE
SUSE CVE
added 2023/02/15 3:39 a.m.4 views

SUSE CVE-2021-37968

Inappropriate implementation in Background Fetch API in Google Chrome prior to 94.0.4606.54 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

4.3CVSS5.9AI score0.01188EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 3:39 a.m.4 views

SUSE CVE-2021-37965

Inappropriate implementation in Background Fetch API in Google Chrome prior to 94.0.4606.54 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

4.3CVSS5.8AI score0.01125EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 3:39 a.m.4 views

SUSE CVE-2021-37967

Inappropriate implementation in Background Fetch API in Google Chrome prior to 94.0.4606.54 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page...

4.3CVSS5.9AI score0.00739EPSS
Exploits0References5
Rows per page
Query Builder