Lucene search
+L

19 matches found

nvd
nvd
added 2026/06/30 11:17 p.m.5 views

CVE-2026-14093

Use after free in Cast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Low...

9.6CVSS0.00234EPSS
Exploits0References2
cvelist
cvelist
added 2026/06/30 10:39 p.m.31 views

CVE-2026-14093

Use after free in Cast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Low...

0.00234EPSS
Exploits0References2
nvd
nvd
added 2026/06/05 12:17 a.m.8 views

CVE-2026-11259

Insufficient validation of untrusted input in Cast in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: Low...

4.3CVSS0.00182EPSS
Exploits0References2
osv
osv
added 2026/06/05 12:17 a.m.5 views

DEBIAN-CVE-2026-11259

Insufficient validation of untrusted input in Cast in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.5AI score0.00182EPSS
Exploits0References1
nessus
nessus
added 2026/06/05 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-10890

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in Cast in Google Chrome prior to 149.0.7827.53 allowed an attacker on the local network segment to potentially exploit heap corruption via...

8.8CVSS5.5AI score0.00183EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2026/06/04 11:6 p.m.7 views

CVE-2026-11259

Insufficient validation of untrusted input in Cast in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: Low...

5.5AI score0.00182EPSS
Exploits0References2
cve
cve
added 2026/06/04 11:6 p.m.25 views

CVE-2026-11259

CVE-2026-11259 : In Google Chrome, the Cast feature allowed a remote attacker to bypass the same-origin policy due to insufficient validation of untrusted input. This affects Chrome versions prior to 149.0.7827.53. The issue is limited to a policy bypass and is described with a Low severity in Ch...

4.3CVSS5.8AI score0.00182EPSS
Exploits0References2Affected Software1
cve
cve
added 2026/06/04 11:3 p.m.44 views

CVE-2026-10890

CVE-2026-10890 is a Use after Free in Cast in Google Chrome prior to 149.0.7827.53, enabling heap corruption via malicious network traffic on a local network segment. Affected feature: Cast in Chrome; root cause: use-after-free. Impact: potential heap corruption with high severity (CRITICAL). Goo...

8.8CVSS5.8AI score0.00183EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2026/05/06 6:13 p.m.37 views

CVE-2026-8009

Inappropriate implementation in Cast in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...

0.0012EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/05/06 6:13 p.m.5 views

CVE-2026-8009

Inappropriate implementation in Cast in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...

5CVSS5.8AI score0.0012EPSS
Exploits0References3Affected Software1
cve
cve
added 2026/05/06 6:13 p.m.34 views

CVE-2026-8009

CVE-2026-8009: Google Chrome prior to 148.0.7778.96 has an Inappropriate implementation in Cast that lets a remote attacker who compromised the renderer bypass navigation restrictions via a crafted HTML page. Affected software is Chrome versions before 148.0.7778.96; the root cause is an incorrec...

5CVSS5.8AI score0.0012EPSS
Exploits0References2Affected Software1
debiancve
debiancve
added 2026/05/06 6:13 p.m.10 views

CVE-2026-8007

Insufficient validation of untrusted input in Cast in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via a crafted HTML page. Chromium security severity: Low...

7.5CVSS5.8AI score0.0019EPSS
Exploits0
ubuntucve
ubuntucve
added 2026/04/28 11:16 p.m.8 views

CVE-2026-7338

Use after free in Cast in Google Chrome prior to 147.0.7727.138 allowed an attacker on the local network segment to potentially exploit heap corruption via malicious network traffic. Chromium security severity: High...

7.5CVSS5.8AI score0.00134EPSS
Exploits0References1
susecve
susecve
added 2026/04/17 12:4 p.m.9 views

SUSE CVE-2026-6317

Use after free in Cast in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.2AI score0.00341EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2026/04/15 7:4 p.m.5 views

CVE-2026-6317

Use after free in Cast in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

6.2AI score0.00341EPSS
Exploits0References2
attackerkb
attackerkb
added 2025/08/07 1:30 a.m.4 views

CVE-2025-8578

Use after free in Cast in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS7.3AI score0.00326EPSS
Exploits0References3Affected Software1
susecve
susecve
added 2023/08/04 2:5 a.m.10 views

SUSE CVE-2023-4075

Use after free in Cast in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS9.2AI score0.01219EPSS
Exploits0References5
osv
osv
added 2023/08/03 1:15 a.m.3 views

DEBIAN-CVE-2023-4075

Use after free in Cast in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS8.2AI score0.01219EPSS
Exploits0References1
attackerkb
attackerkb
added 2022/04/05 1:15 a.m.5 views

CVE-2022-0469

Use after free in Cast in Google Chrome prior to 98.0.4758.80 allowed a remote attacker who convinced a user to engage in specific interactions to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.2AI score0.007EPSS
Exploits0References3
Rows per page
Query Builder