Lucene search
K

68 matches found

NVD
NVD
added 2026/06/30 11:17 p.m.7 views

CVE-2026-14066

Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...

4.3CVSS0.00244EPSS
Exploits0References2
OSV
OSV
added 2026/06/30 11:17 p.m.4 views

DEBIAN-CVE-2026-13926

Insufficient validation of untrusted input in Network in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.8AI score0.00319EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/06/30 10:38 p.m.5 views

CVE-2026-13962

Insufficient data validation in PDF in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.8AI score0.00272EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/30 10:38 p.m.4 views

CVE-2026-13926

Insufficient validation of untrusted input in Network in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.8AI score0.00319EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/30 10:38 p.m.9 views

CVE-2026-13894

Insufficient policy enforcement in Network in Google Chrome prior to 150.0.7871.47 allowed an attacker in a privileged network position to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.8AI score0.00212EPSS
Exploits0
EUVD
EUVD
added 2026/06/05 12:31 a.m.11 views

EUVD-2026-34748

Insufficient policy enforcement in Navigation in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00233EPSS
Exploits0References3
OSV
OSV
added 2026/06/04 11:17 p.m.7 views

DEBIAN-CVE-2026-11219

Inappropriate implementation in Navigation in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.5AI score0.00154EPSS
Exploits0References1
NVD
NVD
added 2026/06/04 11:17 p.m.8 views

CVE-2026-11026

Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension. Chromium security severity: Medium...

6.5CVSS0.00166EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/06/04 11:6 p.m.6 views

CVE-2026-11287

Insufficient policy enforcement in Navigation in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...

5.5AI score0.00233EPSS
Exploits0References2
CVE
CVE
added 2026/06/04 11:6 p.m.28 views

CVE-2026-11283

The CVE-2026-11283 entry concerns Google Chrome on macOS where Shortcuts mishandles untrusted input due to insufficient validation, allowing a remote attacker to bypass navigation restrictions via a malicious file. Affected product/version: Chrome for macOS, before 149.0.7827.53. Root cause: inad...

6.5CVSS5.8AI score0.002EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/04 11:6 p.m.23 views

CVE-2026-11275

CVE-2026-11275 affects Google Chrome on Android (pre-149.0.7827.53) where an inappropriate Page Info implementation could allow a renderer-compromised remote attacker to bypass navigation restrictions via a crafted HTML page. The issue is tied to the Page Info handling in Chromium/Chrome; the des...

6.5CVSS5.8AI score0.00201EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/06/04 11:4 p.m.38 views

CVE-2026-11026

Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension. Chromium security severity: Medium...

0.00166EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.24 views

PT-2026-46814

Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 149.0.7827.53 Description Insufficient policy enforcement in Navigation allows a remote attacker who has compromised the renderer process to bypass navigation restrictions using a crafted HTML page...

9.6CVSS5.5AI score0.00411EPSS
Exploits0References437
SUSE CVE
SUSE CVE
added 2026/05/08 2:26 a.m.13 views

SUSE CVE-2026-7937

Insufficient policy enforcement in DevTools in Google Chrome prior to 148.0.7778.96 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension. Chromium security severity: Medium...

3.1CVSS5.8AI score0.00143EPSS
Exploits0References3
CVE
CVE
added 2026/05/06 6:12 p.m.108 views

CVE-2026-7934

CVE-2026-7934 in Google Chrome’s Popup Blocker: Insufficient validation of untrusted input allowed a remote attacker who had access to the renderer process to bypass navigation restrictions via a crafted HTML page. Affected component: Popup Blocker in Chrome prior to version 148.0.7778.96. Root c...

4.2CVSS5.8AI score0.0017EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/10/09 12:0 a.m.20 views

CentOS 6 : chromium-browser (RHSA-2020:2544)

The remote CentOS Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:2544 advisory. - Use after free in reader mode in Google Chrome on Android prior to 83.0.4103.61 allowed a remote attacker who had compromised the renderer process to...

9.6CVSS7.4AI score0.06414EPSS
Exploits13References31
Redos
Redos
added 2024/07/26 12:0 a.m.18 views

ROS-20240726-07

A vulnerability in the Sign-In component of the Google Chrome browser is related to the ability to bypass navigation restrictions using a specially crafted HTML page. Exploitation of the vulnerability could allow an attacker, acting remotely, to execute cross-site scripted attacks...

6.5CVSS6.5AI score0.00293EPSS
Exploits1
NVD
NVD
added 2024/07/16 11:15 p.m.33 views

CVE-2024-5500

Inappropriate implementation in Sign-In in Google Chrome prior to 1.3.36.351 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.00293EPSS
Exploits1References2
NVD
NVD
added 2024/04/17 8:15 a.m.25 views

CVE-2024-3840

Insufficient policy enforcement in Site Isolation in Google Chrome prior to 124.0.6367.60 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

7.5CVSS7.8AI score0.00748EPSS
Exploits1References8
Veracode
Veracode
added 2024/02/26 8:26 a.m.24 views

Inappropriate Implementation

chromium is vulnerable to Inappropriate Implementation. The vulnerability is due to inappropriate implementation in the Navigation feature of Google Chrome, allowing a remote attacker to bypass navigation restrictions via a crafted HTML page...

8.8CVSS6.8AI score0.00786EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder