Lucene search
K

43 matches found

CVE
CVE
added yesterday3 views

CVE-2026-14094

CVE-2026-14094 : Use-after-free in the Google Chrome Installer on Windows allows local privilege escalation via a malicious file. Affected: Chrome Installer on Windows (pre-150.0.7871.47). Root cause: use-after-free in Installer code. Impact: OS-level privilege escalation as described by Chromium...

5.8AI score
Exploits0References2
EUVD
EUVD
added 2026/06/05 12:31 a.m.10 views

EUVD-2026-34564

Inappropriate implementation in Installer in Google Chrome on Windows prior to 149.0.7827.53 allowed a local attacker to perform OS-level privilege escalation via a malicious file. Chromium security severity: Medium...

5.8AI score0.0008EPSS
Exploits0References3
OSV
OSV
added 2026/06/04 11:17 p.m.6 views

DEBIAN-CVE-2026-11103

Inappropriate implementation in Installer in Google Chrome on Windows prior to 149.0.7827.53 allowed a local attacker to perform OS-level privilege escalation via a malicious file. Chromium security severity: Medium...

7.8CVSS5.4AI score0.0008EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/04 11:4 p.m.33 views

CVE-2026-11103

Inappropriate implementation in Installer in Google Chrome on Windows prior to 149.0.7827.53 allowed a local attacker to perform OS-level privilege escalation via a malicious file. Chromium security severity: Medium...

0.0008EPSS
Exploits0References2
CVE
CVE
added 2026/06/04 11:4 p.m.16 views

CVE-2026-11103

CVE-2026-11103 affects Google Chrome on Windows, where an inappropriate implementation in the Installer component allows a local attacker to escalate privileges via a malicious file. The vulnerability is tied to Chrome versions prior to 149.0.7827.53. The CVSS context indicates a local exploit wi...

7.8CVSS5.8AI score0.0008EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2026/06/04 11:4 p.m.7 views

CVE-2026-11103

Inappropriate implementation in Installer in Google Chrome on Windows prior to 149.0.7827.53 allowed a local attacker to perform OS-level privilege escalation via a malicious file. Chromium security severity: Medium...

7.8CVSS5.4AI score0.0008EPSS
Exploits0
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.8 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by the American company Google. Versions of Google Chrome prior to 149.0.7827.53 contained a security vulnerability, which was caused by improper implementation of the Installer component. This vulnerability could allow local attackers to execute operation...

7.8CVSS5.5AI score0.0008EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/02 12:0 a.m.7 views

PT-2026-46630

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.53 Description An inappropriate implementation in the Installer on Windows allows a local attacker to achieve OS-level privilege escalation by using a malicious file. Recommendations Update to version...

9.6CVSS5.8AI score0.00493EPSS
Exploits0References437
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2019-5122

Malware in sbrugna...

7.8CVSS7.9AI score0.00525EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-27723

Malware in sbrugna...

7.8CVSS8.6AI score0.00358EPSS
Exploits0References13
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-7977

Malware in sbrugna...

7.8CVSS8.6AI score0.00269EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-15851

Malicious code in bioql PyPI...

8.8CVSS9.2AI score0.00966EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/23 6:23 a.m.7 views

CVE-2024-7980

Insufficient data validation in Installer in Google Chrome on Windows prior to 128.0.6613.84 allowed a local attacker to perform privilege escalation via a crafted symbolic link. Chromium security severity: Medium...

7.8CVSS7.2AI score0.00262EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2024/08/22 3:12 a.m.2 views

SUSE CVE-2024-7979

Insufficient data validation in Installer in Google Chrome on Windows prior to 128.0.6613.84 allowed a local attacker to perform privilege escalation via a crafted symbolic link. Chromium security severity: Medium...

7.8CVSS6.6AI score0.00221EPSS
Exploits0References5
AlpineLinux
AlpineLinux
added 2024/08/21 9:15 p.m.13 views

CVE-2024-7980

Insufficient data validation in Installer in Google Chrome on Windows prior to 128.0.6613.84 allowed a local attacker to perform privilege escalation via a crafted symbolic link. Chromium security severity: Medium...

7.8CVSS7.1AI score0.00262EPSS
Exploits0
OSV
OSV
added 2024/08/21 9:15 p.m.2 views

DEBIAN-CVE-2024-7980

Insufficient data validation in Installer in Google Chrome on Windows prior to 128.0.6613.84 allowed a local attacker to perform privilege escalation via a crafted symbolic link. Chromium security severity: Medium...

7.8CVSS7.2AI score0.00262EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/21 8:20 p.m.28 views

CVE-2024-7979

Insufficient data validation in Installer in Google Chrome on Windows prior to 128.0.6613.84 allowed a local attacker to perform privilege escalation via a crafted symbolic link. Chromium security severity: Medium...

0.00221EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/08/21 8:20 p.m.12 views

CVE-2024-7980

Insufficient data validation in Installer in Google Chrome on Windows prior to 128.0.6613.84 allowed a local attacker to perform privilege escalation via a crafted symbolic link. Chromium security severity: Medium...

6.7AI score0.00262EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2024/07/29 4:56 a.m.30 views

Gh0st RAT Trojan Targets Chinese Windows Users via Fake Chrome Site

The remote access trojan known as Gh0st RAT has been observed being delivered by an "evasive dropper" called Gh0stGambit as part of a drive-by download scheme targeting Chinese-speaking Windows users. These infections stem from a fake website "chrome-web.com" serving malicious installer packages...

8AI score
Exploits0
Veracode
Veracode
added 2023/10/19 3:42 a.m.16 views

Improper Authorization

chromium is vulnerable to Improper Authorization. An attacker could exploit this vulnerability by tricking a user into running a specially crafted command. The command would cause the Chrome installer to overwrite arbitrary files on the system, which could allow the attacker to gain elevated...

4.3CVSS7.3AI score0.00515EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder