Lucene search
K

46 matches found

The Hacker News
The Hacker News
added 6 days ago18 views

AI-Generated Browser Ransomware Abuses Chromium API on Windows, Linux, macOS, Android

Cybersecurity researchers have flagged a new malware artifact generated using DeepSeek that constructed a novel attack path combining "unrealistic browser-malware concepts with a real browser capability" to turn it into a working ransomware technique that runs entirely inside the browser on both...

8.8CVSS7.2AI score0.99735EPSS
Exploits9
EUVD
EUVD
added 6 days ago4 views

EUVD-2026-40739

Insufficient policy enforcement in FileSystem in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass discretionary access control via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00221EPSS
Exploits0References3
NVD
NVD
added last week4 views

CVE-2026-14052

Insufficient policy enforcement in FileSystem in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass discretionary access control via a crafted HTML page. Chromium security severity: Low...

4.3CVSS0.00221EPSS
Exploits0References2
NVD
NVD
added 2026/06/24 7:17 p.m.7 views

CVE-2026-13027

Use after free in FileSystem in Google Chrome prior to 149.0.7827.197 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS0.00195EPSS
Exploits0References2
CVE
CVE
added 2026/06/24 6:43 p.m.19 views

CVE-2026-13027

CVE-2026-13027 is a use-after-free in Chrome’s FileSystem prior to 149.0.7827.197, allowing a remote attacker to potentially exploit heap corruption via a crafted HTML page. Affected: Google Chrome (FileSystem component); root cause: use-after-free vulnerability; impact: heap corruption with high...

8.8CVSS5.9AI score0.00195EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/06/24 6:43 p.m.32 views

CVE-2026-13027

Use after free in FileSystem in Google Chrome prior to 149.0.7827.197 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

0.00195EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/06/07 4:51 a.m.12 views

SUSE CVE-2026-10886

Use after free in FileSystem in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

9.6CVSS5.5AI score0.00345EPSS
Exploits0References2
OSV
OSV
added 2026/06/04 11:16 p.m.6 views

DEBIAN-CVE-2026-10886

Use after free in FileSystem in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

9.6CVSS5.5AI score0.00345EPSS
Exploits0References1
CVE
CVE
added 2026/06/04 11:6 p.m.22 views

CVE-2026-11258

This CVE (CVE-2026-11258) affects Google Chrome’s File System Access and is due to an inappropriate implementation that allows a remote attacker to bypass discretionary access control when a user is persuaded by a crafted HTML page to perform specific UI gestures. Affected software: Chrome prior ...

6.5CVSS5.8AI score0.00201EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/04 11:3 p.m.40 views

CVE-2026-10931

Summary: CVE-2026-10931 is a use-after-free in Chrome’s FileSystem that could allow a remote sandbox escape via a crafted HTML page. Affected product/area: Google Chrome (Chromium-based) prior to version 149.0.7827.53. Impact: high severity with potential sandbox escape; attacker could trigger ne...

9.6CVSS5.8AI score0.00325EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/06/04 11:3 p.m.28 views

CVE-2026-10931

Use after free in FileSystem in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

0.00325EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/04 11:3 p.m.31 views

CVE-2026-10886

Use after free in FileSystem in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

0.00345EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/05/14 8:17 p.m.7 views

CVE-2026-8512

Use after free in FileSystem in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

8.3CVSS5.8AI score0.00207EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/05/14 8:17 p.m.10 views

CVE-2026-8543

Out of bounds read in FileSystem in Google Chrome on Mac prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

5.3CVSS5.8AI score0.00255EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/05/14 7:52 p.m.42 views

CVE-2026-8543

Out of bounds read in FileSystem in Google Chrome on Mac prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

0.00255EPSS
Exploits0References2
CVE
CVE
added 2026/05/14 7:52 p.m.20 views

CVE-2026-8512

CVE-2026-8512 affects Google Chrome FileSystem use-after-free prior to version 148.0.7778.168. A remote attacker who entices a user to perform specific UI gestures could trigger a sandbox escape via a crafted HTML page. Diagnosis: the root cause is a use-after-free in FileSystem; impact is sandbo...

8.3CVSS5.8AI score0.00207EPSS
Exploits0References2Affected Software1
AlpineLinux
AlpineLinux
added 2026/05/14 7:52 p.m.7 views

CVE-2026-8512

Use after free in FileSystem in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

8.3CVSS5.8AI score0.00207EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/14 12:0 a.m.13 views

PT-2026-41072

Name of the Vulnerable Software and Affected Versions Google Chrome on Mac versions prior to 148.0.7778.168 Description An out of bounds read in FileSystem allows a remote attacker to obtain potentially sensitive information from process memory. This occurs when a user is convinced to perform...

9.6CVSS5.9AI score0.00498EPSS
Exploits0References83
NVD
NVD
added 2026/04/15 8:16 p.m.6 views

CVE-2026-6360

Use after free in FileSystem in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS0.00253EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/15 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-6360

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in FileSystem in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page...

8.8CVSS5.8AI score0.00253EPSS
Exploits0References2
Rows per page
Query Builder