13 matches found
DEBIAN-CVE-2026-13836
Inappropriate implementation in CSS in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: High...
CVE-2026-13951
CVE-2026-13951 concerns Google Chrome where insufficient policy enforcement in USB handling within the renderer can enable a sandbox escape via a crafted HTML page if the renderer is compromised. Affected product: Chrome/Chromium ecosystem; vulnerable component is the USB policy enforcement in th...
CVE-2026-13915
CVE-2026-13915 affects Chrome for iOS (Google Chrome on iOS) prior to version 150.0.7871.47. The vulnerability is described as a use-after-free that could lead to heap corruption when a remote attacker convinces a user to perform specific UI gestures on a crafted HTML page. Impact details in the ...
CVE-2026-13909
Insufficient policy enforcement in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-12463
Inappropriate implementation in Views in Google Chrome on Linux prior to 149.0.7827.155 allowed a remote attacker who had compromised the renderer process to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: High...
SUSE CVE-2026-11178
Insufficient policy enforcement in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-8585
Inappropriate implementation in Media in Google Chrome on iOS prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory read via a crafted HTML page. Chromium security severity: Medium...
Google Chrome 安全漏洞
Google Chrome is a web browser from Google, an American company. A post-release reuse vulnerability exists in versions prior to Google Chrome 130.0.6723.58, which can be exploited by an attacker to potentially exploit a heap corruption vulnerability via a crafted HTML page...
DEBIAN-CVE-2022-1869
Type Confusion in V8 in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
MS15-022: Description of the security update for SharePoint Foundation 2013: March 10, 2015
MS15-022: Description of the security update for SharePoint Foundation 2013: March 10, 2015 Introduction This security update resolves vulnerabilities in Microsoft Office server and productivity software that could allow remote code execution if an authenticated attacker sends specially crafted...
CVE-2014-1813
CVE-2014-1813 affects Microsoft Office Web Apps / Web Applications 2010 (SP1 and SP2). The vulnerability allows remote authenticated attackers to execute arbitrary code via crafted page content in the vulnerable Web Applications component, with network-based access and single authentication requi...
CVE-2014-1813
Microsoft Web Applications 2010 SP1 and SP2 allows remote authenticated users to execute arbitrary code via crafted page content, aka "Web Applications Page Content Vulnerability."...
MS14-022: Description of the security update for SharePoint Server 2013: May 13, 2014
Resolves vulnerabilities in Microsoft Office server and productivity software that could allow remote code execution if an authenticated attacker sends specially crafted page content to a target SharePoint server.IntroductionThis update resolves vulnerabilities in Microsoft SharePoint Designer 20...