Lucene search
+L

1597 matches found

nvd
nvd
added 2 days ago3 views

CVE-2026-15771

Insufficient validation of untrusted input in Media in Google Chrome on Windows prior to 150.0.7871.125 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

5.3CVSS0.00303EPSS
Exploits0References2
cve
cve
added 2 days ago9 views

CVE-2026-15778

CVE-2026-15778 affects Google Chrome navigation logic prior to version 150.0.7871.125, due to insufficient validation of untrusted input in Navigation. An attacker who compromises the renderer could bypass navigation restrictions via a crafted HTML page. The issue is addressed in Chrome 150.0.787...

6.5CVSS6.1AI score0.00256EPSS
Exploits0References2Affected Software1
cve
cve
added 2 days ago10 views

CVE-2026-15774

CVE-2026-15774 is a Use-after-free in Skia affecting Google Chrome prior to 150.0.7871.125. The issue could allow a remote attacker (with renderer access) to escape the Chrome sandbox via a crafted HTML page. Public references show a Chrome security update (Stable Channel) and list this CVE among...

8.3CVSS6.1AI score0.00244EPSS
Exploits0References2Affected Software1
cve
cve
added 2 days ago5 views

CVE-2026-15772

The CVE-2026-15772 entry describes a Use-After-Free in the GPU component of Google Chrome on Android prior to version 150.0.7871.125, which could allow a remote attacker who already compromised the renderer process to potentially escape the sandbox via a crafted HTML page. The issue is classified...

8.3CVSS6.2AI score0.00244EPSS
Exploits0References2Affected Software1
cve
cve
added 2 days ago6 views

CVE-2026-15769

CVE-2026-15769 concerns insufficient validation of untrusted input in Linux Toolkit Theming in Google Chrome on Linux prior to 150.0.7871.125, potentially allowing a renderer-compromised remote attacker to escape the sandbox via a crafted HTML page. The Chrome update notes roll-out of 150.0.7871....

8.3CVSS6.2AI score0.0026EPSS
Exploits0References2Affected Software1
nvd
nvd
added 2026/07/08 11:16 p.m.8 views

CVE-2026-15122

Insufficient validation of untrusted input in Codecs in Google Chrome on Windows prior to 150.0.7871.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS0.0019EPSS
Exploits0References2
cvelist
cvelist
added 2026/07/08 10:36 p.m.36 views

CVE-2026-15122

Insufficient validation of untrusted input in Codecs in Google Chrome on Windows prior to 150.0.7871.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

0.0019EPSS
Exploits0References2
debiancve
debiancve
added 2026/07/08 10:36 p.m.5 views

CVE-2026-15122

Insufficient validation of untrusted input in Codecs in Google Chrome on Windows prior to 150.0.7871.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS6AI score0.0019EPSS
Exploits0
cve
cve
added 2026/07/08 10:36 p.m.15 views

CVE-2026-15122

CVE-2026-15122 affects Google Chrome on Windows prior to 150.0.7871.115, where insufficient validation of untrusted input in Codecs can allow a renderer process–compromised attacker to attempt a sandbox escape via a crafted HTML page. The CVE is referenced in Chrome’s July 2026 stable update (Win...

8.3CVSS6AI score0.0019EPSS
Exploits0References2Affected Software1
cve
cve
added 2026/07/08 10:36 p.m.20 views

CVE-2026-15120

CVE-2026-15120 affects Google Chrome on Windows (Core). A use-after-free in Core, triggered by a crafted HTML page after renderer compromise, could enable a sandbox escape. Impact is described as high; patch to Chrome 150.0.7871.115 or later (Windows). Exploitation status is not specified in the ...

8.3CVSS6AI score0.00178EPSS
Exploits0References2Affected Software1
debiancve
debiancve
added 2026/07/08 10:36 p.m.7 views

CVE-2026-15119

Race in GetUserMedia in Google Chrome prior to 150.0.7871.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS6AI score0.00147EPSS
Exploits0
ptsecurity
ptsecurity
added 2026/07/08 12:0 a.m.11 views

PT-2026-56639

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.115 Description A use after free issue in the Core component on Windows allows a remote attacker who has already compromised the renderer process to potentially achieve a sandbox escape. This is...

8.8CVSS6AI score0.0026EPSS
Exploits0References36
euvd
euvd
added 2026/07/02 12:31 a.m.9 views

EUVD-2026-41169

Insufficient validation of untrusted input in Skia in Google Chrome prior to 150.0.7871.46 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00235EPSS
Exploits0References3
euvd
euvd
added 2026/07/02 12:31 a.m.6 views

EUVD-2026-41158

Inappropriate implementation in Skia in Google Chrome prior to 150.0.7871.46 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.0019EPSS
Exploits0References3
euvd
euvd
added 2026/07/02 12:31 a.m.7 views

EUVD-2026-41173

Integer overflow in Skia in Google Chrome prior to 150.0.7871.46 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

8.3CVSS5.9AI score0.00242EPSS
Exploits0References3
nvd
nvd
added 2026/07/01 11:16 p.m.6 views

CVE-2026-14414

Insufficient validation of untrusted input in Skia in Google Chrome prior to 150.0.7871.46 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

5.3CVSS0.00235EPSS
Exploits0References2
nvd
nvd
added 2026/07/01 11:16 p.m.8 views

CVE-2026-14401

Insufficient validation of untrusted input in ANGLE in Google Chrome on Android prior to 150.0.7871.46 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS0.00237EPSS
Exploits0References2
nvd
nvd
added 2026/07/01 11:16 p.m.6 views

CVE-2026-14400

Out of bounds write in ANGLE in Google Chrome prior to 150.0.7871.46 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS0.00222EPSS
Exploits0References2
osv
osv
added 2026/07/01 11:16 p.m.4 views

UBUNTU-CVE-2026-14410

Inappropriate implementation in Skia in Google Chrome prior to 150.0.7871.46 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.8AI score0.0019EPSS
Exploits0References4
osv
osv
added 2026/07/01 11:16 p.m.4 views

UBUNTU-CVE-2026-14389

Integer overflow in Skia in Google Chrome prior to 150.0.7871.46 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

8.3CVSS5.9AI score0.00242EPSS
Exploits0References4
Rows per page
Query Builder