Lucene search
K

17 matches found

Tenable Nessus
Tenable Nessus
added 2026/07/01 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2026-13803

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Type Confusion in Chrome Tabs in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform ...

8.3CVSS6.2AI score0.00303EPSS
Exploits0References2
NVD
NVD
added 2026/06/30 11:16 p.m.5 views

CVE-2026-13803

Type Confusion in Chrome Tabs in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS0.00303EPSS
Exploits0References2
OSV
OSV
added 2026/06/30 11:16 p.m.3 views

DEBIAN-CVE-2026-13803

Type Confusion in Chrome Tabs in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS5.8AI score0.00303EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/06/30 10:37 p.m.6 views

CVE-2026-13803

Type Confusion in Chrome Tabs in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS5.8AI score0.00303EPSS
Exploits0
CVE
CVE
added 2026/06/30 10:37 p.m.15 views

CVE-2026-13803

CVE-2026-13803 describes a Type Confusion in Chrome Tabs affecting Google Chrome prior to 150.0.7871.47. The root cause is a type-confusion vulnerability in the Chrome renderer that could allow a remote attacker who already compromised the renderer process to potentially escape the sandbox by pre...

8.3CVSS5.8AI score0.00303EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/06/30 10:37 p.m.29 views

CVE-2026-13803

Type Confusion in Chrome Tabs in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

0.00303EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/06/08 11:4 p.m.13 views

Anyquery: AppleScript/JXA Code Injection via Unescaped URL in macOS Chrome Plugin

AppleScript/JXA Code Injection via Unescaped URL in macOS Chrome Plugin | Field | Value | | ---------------- | ----- | | Repository | julien040/anyquery | | Affected version | 0.4.4 commit 0abd460 | | Vulnerability | CWE-94 — Improper Control of Generation of Code | | Severity | High | Summary Th...

6AI score0.00048EPSS
Exploits0References2Affected Software4
OSV
OSV
added 2026/06/08 11:4 p.m.6 views

GHSA-HRJ8-HJV8-MGWC Anyquery: AppleScript/JXA Code Injection via Unescaped URL in macOS Chrome Plugin

AppleScript/JXA Code Injection via Unescaped URL in macOS Chrome Plugin | Field | Value | | ---------------- | ----- | | Repository | julien040/anyquery | | Affected version | 0.4.4 commit 0abd460 | | Vulnerability | CWE-94 — Improper Control of Generation of Code | | Severity | High | Summary Th...

9CVSS6AI score0.00048EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/08 12:0 a.m.17 views

PT-2026-47572

AppleScript/JXA Code Injection via Unescaped URL in macOS Chrome Plugin | Field | Value | | ---------------- | ----- | | Repository | julien040/anyquery | | Affected version | 0.4.4 commit 0abd460 | | Vulnerability | CWE-94 — Improper Control of Generation of Code | | Severity | High | Summary Th...

9CVSS6AI score
Exploits0References3
SUSE CVE
SUSE CVE
added 2024/08/08 2:35 a.m.4 views

SUSE CVE-2024-6997

Use after free in Tabs in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS7.3AI score0.00517EPSS
Exploits0References4
OSV
OSV
added 2024/08/06 4:15 p.m.2 views

DEBIAN-CVE-2024-6997

Use after free in Tabs in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS7.8AI score0.00517EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2023/09/26 12:0 a.m.17 views

The vulnerability of Google Chrome’s user tabs allows a hacker to replace the user’s interface.

The vulnerability of Google Chrome’s user tabs is related to improperly implemented security checks for standard elements. Exploiting this vulnerability allows a malicious actor to replace the user interface with a specially created HTML page...

5CVSS5.5AI score0.00663EPSS
Exploits0References9Affected Software4
Malwarebytes
Malwarebytes
added 2022/11/01 2:0 p.m.68 views

Malware on the Google Play store leads to harmful phishing sites

A family of malicious apps from developer Mobile apps Group are listed on Google Play and infected with Android/Trojan.HiddenAds.BTGTHB. In total, four apps are listed, and together they have amassed at least one million downloads. Older versions of these apps have been detected in the past as...

6.9AI score
Exploits0
OSV
OSV
added 2018/11/14 3:29 p.m.4 views

CVE-2018-6079

Inappropriate sharing of TEXTURE2DARRAY/TEXTURE3D data between tabs in WebGL in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

6.5CVSS7.4AI score0.01709EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2016/05/12 12:0 a.m.10 views

The vulnerability of the Firefox browser, which allows attackers to carry out UXSS attacks

The vulnerability of the WebExtension sandbox component browser/components/extensions/ext-tabs.js in the Firefox browser does not properly restrict the inheritance from API calls like chrome.tabs.create and chrome.tabs.update. Exploiting this vulnerability allows a malicious actor to perform UXSS...

4.3CVSS6.7AI score0.01252EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2016/04/30 5:59 p.m.5 views

CVE-2016-2817

The WebExtension sandbox feature in browser/components/extensions/ext-tabs.js in Mozilla Firefox before 46.0 does not properly restrict principal inheritance during chrome.tabs.create and chrome.tabs.update API calls, which allows remote attackers to conduct Universal XSS UXSS attacks via a craft...

5.4CVSS7.3AI score0.01252EPSS
Exploits0References9
CNVD
CNVD
added 2016/04/28 12:0 a.m.5 views

Mozilla Firefox Cross-Site Scripting Vulnerability (CNVD-2016-02671)

Mozilla Firefox is an open source web browser developed by the Mozilla Foundation in the United States. The chrome.tabs.update API in Mozilla Firefox's Web Extension allows the program to navigate to javascript: URLs when the user does not have additional privileges, allowing remote attackers to...

5.4CVSS8.6AI score0.01252EPSS
Exploits0References1
Rows per page
Query Builder