Lucene search
K

997 matches found

OSV
OSV
added 2025/09/03 5:15 p.m.0 views

DEBIAN-CVE-2025-9867

Inappropriate implementation in Downloads in Google Chrome on Android prior to 140.0.7339.80 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

5.4CVSS5.6AI score0.00281EPSS
Exploits0References1
OSV
OSV
added 2025/09/03 5:15 p.m.4 views

CVE-2025-9865

Inappropriate implementation in Toolbar in Google Chrome on Android prior to 140.0.7339.80 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform domain spoofing via a crafted HTML page. Chromium security severity: Medium...

5.4CVSS6.5AI score
Exploits0References2
OSV
OSV
added 2025/09/03 5:15 p.m.1 views

DEBIAN-CVE-2025-9865

Inappropriate implementation in Toolbar in Google Chrome on Android prior to 140.0.7339.80 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform domain spoofing via a crafted HTML page. Chromium security severity: Medium...

5.4CVSS5.6AI score0.00247EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/03 4:17 p.m.2 views

CVE-2025-9867

Inappropriate implementation in Downloads in Google Chrome on Android prior to 140.0.7339.80 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

5.9AI score0.00281EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/12 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2023-0130

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in in Fullscreen API in Google Chrome on Android prior to 109.0.5414.74 allowed a remote attacker to spoof the contents of the...

6.5CVSS7.4AI score0.0056EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/09 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2023-0133

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in in Permission prompts in Google Chrome on Android prior to 109.0.5414.74 allowed a remote attacker to bypass main origin...

6.5CVSS7.5AI score0.00573EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2023-0136

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in in Fullscreen API in Google Chrome on Android prior to 109.0.5414.74 allowed a remote attacker to execute incorrect security UI...

8.8CVSS8.2AI score0.00647EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/05/29 2:12 a.m.6 views

SUSE CVE-2025-5066

Inappropriate implementation in Messages in Google Chrome on Android prior to 137.0.7151.55 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS6.5AI score0.00406EPSS
Exploits0References3
NVD
NVD
added 2025/05/27 9:15 p.m.9 views

CVE-2025-5066

Inappropriate implementation in Messages in Google Chrome on Android prior to 137.0.7151.55 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.00406EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 9:10 a.m.2 views

CVE-2024-6990

Uninitialized Use in Dawn in Google Chrome on Android prior to 127.0.6533.88 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. Chromium security severity: Critical...

8.8CVSS6.7AI score0.00865EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:23 a.m.11 views

CVE-2024-7964

Use after free in Passwords in Google Chrome on Android prior to 128.0.6613.84 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS8.9AI score0.00552EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:15 p.m.7 views

CVE-2020-16045

Use after Free in Payments in Google Chrome on Android prior to 87.0.4280.66 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page...

9.6CVSS6.5AI score0.01006EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 2:59 a.m.12 views

CVE-2012-4905

Cross-site scripting XSS vulnerability in Google Chrome before 18.0.1025308 on Android allows remote attackers to inject arbitrary web script or HTML via an extra in an Intent object, aka "Universal XSS UXSS."...

4.3CVSS5AI score0.01553EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2025/04/20 11:26 p.m.7 views

SUSE CVE-2016-5196

The content renderer client in Google Chrome prior to 54.0.2840.85 for Android insufficiently enforced the Same Origin Policy amongst downloaded files, which allowed a remote attacker to access any downloaded file and interact with sites, including those the user was logged into, via a crafted HT...

8.8CVSS6.5AI score0.00979EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/04/02 1:29 p.m.2 views

SUSE CVE-2025-3067

Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform privilege escalation via a crafted app. Chromium security severity: Medium...

8.8CVSS6.8AI score0.00552EPSS
Exploits0References4
OSV
OSV
added 2025/04/02 1:15 a.m.1 views

DEBIAN-CVE-2025-3067

Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform privilege escalation via a crafted app. Chromium security severity: Medium...

8.6CVSS8.2AI score0.00552EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/04/02 1:15 a.m.8 views

CVE-2025-3068

Inappropriate implementation in Intents in Google Chrome on Android prior to 135.0.7049.52 allowed a remote attacker to perform privilege escalation via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS5.8AI score0.00319EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2025/04/01 12:0 a.m.1 views

PT-2025-14450 · Google +2 · Google Chrome +2

Name of the Vulnerable Software and Affected Versions: Google Chrome on Android versions prior to 135.0.7049.52 Description: The issue is related to an inappropriate implementation in Intents, allowing a remote attacker to perform privilege escalation via a crafted HTML page. Recommendations: For...

10CVSS6.4AI score0.00552EPSS
Exploits0References66
SUSE CVE
SUSE CVE
added 2025/03/06 3:3 a.m.3 views

SUSE CVE-2025-1917

Inappropriate implementation in Browser UI in Google Chrome on Android prior to 134.0.6998.35 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS6.5AI score0.0033EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2025/03/06 3:3 a.m.3 views

SUSE CVE-2025-1922

Inappropriate implementation in Selection in Google Chrome on Android prior to 134.0.6998.35 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.3CVSS6.5AI score0.00287EPSS
Exploits0References5
Rows per page
Query Builder