Lucene search
K

13 matches found

OSV
OSV
added 5 days ago2 views

DEBIAN-CVE-2026-13836

Inappropriate implementation in CSS in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: High...

6.1CVSS6AI score0.0022EPSS
Exploits0References1
CVE
CVE
added 5 days ago12 views

CVE-2026-13951

CVE-2026-13951 concerns Google Chrome where insufficient policy enforcement in USB handling within the renderer can enable a sandbox escape via a crafted HTML page if the renderer is compromised. Affected product: Chrome/Chromium ecosystem; vulnerable component is the USB policy enforcement in th...

8.3CVSS5.8AI score0.00278EPSS
Exploits0References2Affected Software1
CVE
CVE
added 5 days ago8 views

CVE-2026-13915

CVE-2026-13915 affects Chrome for iOS (Google Chrome on iOS) prior to version 150.0.7871.47. The vulnerability is described as a use-after-free that could lead to heap corruption when a remote attacker convinces a user to perform specific UI gestures on a crafted HTML page. Impact details in the ...

8.8CVSS5.8AI score0.0028EPSS
Exploits0References2
Cvelist
Cvelist
added 5 days ago21 views

CVE-2026-13909

Insufficient policy enforcement in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

0.00316EPSS
Exploits0References2
NVD
NVD
added 2026/06/17 1:20 p.m.9 views

CVE-2026-12463

Inappropriate implementation in Views in Google Chrome on Linux prior to 149.0.7827.155 allowed a remote attacker who had compromised the renderer process to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: High...

4.7CVSS0.00133EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/06/07 4:42 a.m.7 views

SUSE CVE-2026-11178

Insufficient policy enforcement in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS5.5AI score0.00152EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/05/14 7:52 p.m.8 views

CVE-2026-8585

Inappropriate implementation in Media in Google Chrome on iOS prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory read via a crafted HTML page. Chromium security severity: Medium...

7.5CVSS5.8AI score0.00176EPSS
Exploits0
CNNVD
CNNVD
added 2024/10/15 12:0 a.m.4 views

Google Chrome 安全漏洞

Google Chrome is a web browser from Google, an American company. A post-release reuse vulnerability exists in versions prior to Google Chrome 130.0.6723.58, which can be exploited by an attacker to potentially exploit a heap corruption vulnerability via a crafted HTML page...

8.8CVSS6.8AI score0.00377EPSS
Exploits1References5
OSV
OSV
added 2022/07/27 10:15 p.m.0 views

DEBIAN-CVE-2022-1869

Type Confusion in V8 in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

6.5CVSS7.1AI score0.0078EPSS
Exploits0References1
Microsoft KB
Microsoft KB
added 2020/04/13 12:0 a.m.20 views

MS15-022: Description of the security update for SharePoint Foundation 2013: March 10, 2015

MS15-022: Description of the security update for SharePoint Foundation 2013: March 10, 2015 Introduction This security update resolves vulnerabilities in Microsoft Office server and productivity software that could allow remote code execution if an authenticated attacker sends specially crafted...

7.2AI score
Exploits0
CVE
CVE
added 2014/05/14 10:0 a.m.85 views

CVE-2014-1813

CVE-2014-1813 affects Microsoft Office Web Apps / Web Applications 2010 (SP1 and SP2). The vulnerability allows remote authenticated attackers to execute arbitrary code via crafted page content in the vulnerable Web Applications component, with network-based access and single authentication requi...

8.5CVSS7.3AI score0.1038EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2014/05/14 10:0 a.m.24 views

CVE-2014-1813

Microsoft Web Applications 2010 SP1 and SP2 allows remote authenticated users to execute arbitrary code via crafted page content, aka "Web Applications Page Content Vulnerability."...

7.1AI score0.1038EPSS
Exploits0References2
Microsoft KB
Microsoft KB
added 2014/05/13 12:0 a.m.38 views

MS14-022: Description of the security update for SharePoint Server 2013: May 13, 2014

Resolves vulnerabilities in Microsoft Office server and productivity software that could allow remote code execution if an authenticated attacker sends specially crafted page content to a target SharePoint server.IntroductionThis update resolves vulnerabilities in Microsoft SharePoint Designer 20...

7.4AI score
Exploits0
Rows per page
Query Builder