Lucene search
K

31 matches found

OSV
OSV
added last week7 views

DEBIAN-CVE-2026-14150

Insufficient validation of untrusted input in Speech in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

5.4CVSS5.8AI score0.00152EPSS
Exploits0References1
Cvelist
Cvelist
added last week22 views

CVE-2026-13970

Uninitialized Use in Media in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

0.00271EPSS
Exploits0References2
Cvelist
Cvelist
added last week21 views

CVE-2026-13871

Insufficient policy enforcement in GuestView in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Chromium security severity: Medium...

0.00272EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/30 12:0 a.m.5 views

PT-2026-54057

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description Insufficient validation of untrusted input in ANGLE allows a remote attacker who has compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page...

9.6CVSS6AI score0.00413EPSS
Exploits0References441
Tenable Nessus
Tenable Nessus
added 2026/06/12 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-12031

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in Views in Google Chrome on Windows prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to...

8.3CVSS5.4AI score0.00191EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/06/08 11:27 p.m.9 views

CVE-2026-11678

Integer overflow in libyuv in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

5.5AI score0.00177EPSS
Exploits0References2
NVD
NVD
added 2026/06/05 12:17 a.m.9 views

CVE-2026-11246

Insufficient validation of untrusted input in IndexedDB in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. Chromium security severity: Low...

5.3CVSS0.00202EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/04 11:6 p.m.7 views

CVE-2026-11250

Inappropriate implementation in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Low...

9.6CVSS5.5AI score0.00239EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2026/06/04 11:4 p.m.10 views

CVE-2026-11098

Insufficient validation of untrusted input in GPU in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.3CVSS5.5AI score0.00233EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/06/02 12:0 a.m.9 views

PT-2026-46678

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.53 Description Insufficient validation of untrusted input in the Password Manager allows a remote attacker who has compromised the renderer process to potentially perform a sandbox escape via a crafte...

9.6CVSS5.8AI score0.00985EPSS
Exploits0References434
Positive Technologies
Positive Technologies
added 2026/06/02 12:0 a.m.15 views

PT-2026-46585

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.53 Description An uninitialized use in Skia allows a remote attacker who has compromised the renderer process to obtain potentially sensitive information from process memory by using a crafted HTML...

9.6CVSS5.8AI score0.00493EPSS
Exploits0References437
NVD
NVD
added 2026/05/28 11:16 p.m.12 views

CVE-2026-9942

Uninitialized Use in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Chromium security severity: High...

5CVSS0.00199EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2026/05/28 10:25 p.m.7 views

CVE-2026-9982

Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS5.5AI score0.00184EPSS
Exploits0
NVD
NVD
added 2026/05/14 8:17 p.m.11 views

CVE-2026-8514

Use after free in Aura in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

8.3CVSS0.00207EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/14 7:52 p.m.44 views

CVE-2026-8579

Insufficient validation of untrusted input in Skia in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory write via a crafted print file. Chromium security severity: Medium...

0.00134EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/05/14 7:52 p.m.9 views

CVE-2026-8528

Insufficient validation of untrusted input in SiteIsolation in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to bypass Site Isolation via a crafted HTML page. Chromium security severity: High...

4.3CVSS5.8AI score0.00196EPSS
Exploits0
CVE
CVE
added 2026/05/06 6:12 p.m.17 views

CVE-2026-7970

CVE-2026-7970 affects Google Chrome’s TopChrome component. The issue is a use-after-free in TopChrome that, if a renderer process is compromised, could enable a sandbox escape via a crafted HTML page. Google Chrome 148.0.7778.96 and later addresses this by including fixes in the stable channel up...

8.3CVSS5.8AI score0.00207EPSS
Exploits0References2Affected Software1
AlpineLinux
AlpineLinux
added 2026/05/06 6:12 p.m.8 views

CVE-2026-7945

Insufficient validation of untrusted input in COOP in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Chromium security severity: Medium...

3.1CVSS5.8AI score0.002EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/04/30 2:28 a.m.11 views

SUSE CVE-2026-7360

Insufficient validation of untrusted input. in Compositing in Google Chrome prior to 147.0.7727.138 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Chromium security severity: High...

3.1CVSS5.3AI score0.00162EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/04/09 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-5880

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient policy enforcement in browser UI in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who had compromised the renderer process to spoo...

4.3CVSS7.3AI score0.00191EPSS
Exploits0References2
Rows per page
Query Builder