Lucene search
+L

18 matches found

susecve
susecve
added 2026/06/07 4:51 a.m.10 views

SUSE CVE-2026-10913

Use after free in ANGLE in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.0039EPSS
Exploits0References2
susecve
susecve
added 2026/06/07 4:49 a.m.15 views

SUSE CVE-2026-10962

Type Confusion in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00393EPSS
Exploits0References2
euvd
euvd
added 2026/06/05 12:31 a.m.11 views

EUVD-2026-34767

Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. Chromium security severity: Low...

6.2AI score0.00224EPSS
Exploits0References3
euvd
euvd
added 2026/06/05 12:31 a.m.10 views

EUVD-2026-34677

Incorrect security UI in File Input in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.0015EPSS
Exploits1References3
euvd
euvd
added 2026/06/05 12:31 a.m.10 views

EUVD-2026-34494

Insufficient validation of untrusted input in GPU in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00285EPSS
Exploits0References3
euvd
euvd
added 2026/06/05 12:31 a.m.10 views

EUVD-2026-34460

Insufficient policy enforcement in Password Manager in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.0031EPSS
Exploits0References3
osv
osv
added 2026/06/04 11:17 p.m.11 views

DEBIAN-CVE-2026-11080

Use after free in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS5.6AI score0.00234EPSS
Exploits0References1
osv
osv
added 2026/06/04 11:16 p.m.7 views

DEBIAN-CVE-2026-10883

Type Confusion in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

8.8CVSS5.6AI score0.0039EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/06/04 11:6 p.m.9 views

CVE-2026-11262

Use after free in TabStrip in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Low...

8.8CVSS6AI score0.0028EPSS
Exploits0References3Affected Software1
attackerkb
attackerkb
added 2026/06/04 11:6 p.m.6 views

CVE-2026-11248

Inappropriate implementation in Google Lens in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...

8.8CVSS5.5AI score0.00241EPSS
Exploits0References3Affected Software1
vulnrichment
vulnrichment
added 2026/06/04 11:5 p.m.9 views

CVE-2026-11201

Use after free in ServiceWorker in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension. Chromium security severity: Medium...

5.9AI score0.00206EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/06/04 11:5 p.m.12 views

CVE-2026-11186

Inappropriate implementation in CSS in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: Medium...

6AI score0.00159EPSS
Exploits0References3Affected Software1
debiancve
debiancve
added 2026/06/04 11:4 p.m.8 views

CVE-2026-11056

Insufficient validation of untrusted input in SiteIsolation in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

9.6CVSS5.5AI score0.00234EPSS
Exploits0
cve
cve
added 2026/06/04 11:3 p.m.22 views

CVE-2026-10944

The CVE-2026-10944 entry concerns Google Chrome on iOS where the Autofill policy enforcement is insufficient prior to version 149.0.7827.53. Root cause: inadequate controls in Autofill that allow cross-origin data leakage via a crafted HTML page. Impact: potential exposure of cross-origin data (h...

6.5CVSS5.8AI score0.00296EPSS
Exploits0References2Affected Software1
ptsecurity
ptsecurity
added 2026/06/04 12:0 a.m.18 views

PT-2026-46480

Name of the Vulnerable Software and Affected Versions Google Chrome on iOS versions prior to 149.0.7827.53 Description A use after free issue in the Autofill component allows a remote attacker to potentially exploit heap corruption. This occurs when a user is convinced to perform specific UI...

9.6CVSS6.1AI score0.00985EPSS
Exploits0References433
ptsecurity
ptsecurity
added 2026/06/02 12:0 a.m.16 views

PT-2026-46833

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.53 Description A use after free issue in PDFium allows a remote attacker to execute arbitrary code within a sandbox by using a specially crafted PDF file. Use after free is a memory corruption flaw th...

9.6CVSS6AI score0.00985EPSS
Exploits0References439
cnnvd
cnnvd
added 2026/06/02 12:0 a.m.9 views

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a resource management vulnerability. This vulnerability stemmed from the reuse of Media after its release, which could allow remote attackers to execute arbitrary code within a sandb...

8.8CVSS6AI score0.0028EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2026/06/02 12:0 a.m.19 views

PT-2026-46684

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.53 Description Script injection in the Accessibility component allows an attacker to inject arbitrary scripts or HTML, leading to Universal Cross-Site Scripting UXSS, which is a vulnerability that...

9.6CVSS6.1AI score0.00985EPSS
Exploits0References434
Rows per page
Query Builder