Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

134 matches found

EUVD
EUVDadded 7 hours ago5 views

EUVD-2026-34739

Inappropriate implementation in CustomTabs in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

5.8AI score
Exploits0References3
EUVD
EUVDadded 7 hours ago3 views

EUVD-2026-34708

Insufficient policy enforcement in CustomTabs in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

5.8AI score
Exploits0References3
EUVD
EUVDadded 7 hours ago3 views

EUVD-2026-34484

Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to perform privilege escalation via a crafted XML file. Chromium security severity: Medium...

5.8AI score
Exploits0References3
NVD
NVDadded yesterday2 views

CVE-2026-11035

Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to perform privilege escalation via a crafted XML file. Chromium security severity: Medium...

Exploits0References2
CVE
CVEadded yesterday5 views

CVE-2026-11278

CVE-2026-11278: In Google Chrome on Android, the CustomTabs implementation has an inappropriate implementation flaw prior to version 149.0.7827.53 that can allow a local attacker to leak cross-origin data through a crafted HTML page. Impact is described as low severity. Practical effect is cross-...

5.8AI score
Exploits0References2
CVE
CVEadded yesterday6 views

CVE-2026-11035

This CVE concerns Google Chrome on Android via a flawed implementation in Custom Tabs. Prior to version 149.0.7827.53, an attacker could achieve local privilege escalation by supplying a crafted XML file. Affected component: Custom Tabs in Chrome for Android; root cause: inappropriate/incorrect i...

5.8AI score
Exploits0References2
Cvelist
Cvelistadded yesterday8 views

CVE-2026-11035

Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to perform privilege escalation via a crafted XML file. Chromium security severity: Medium...

Exploits0References2
Positive Technologies
Positive Technologiesadded yesterday7 views

PT-2026-46564

Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to perform privilege escalation via a crafted XML file. Chromium security severity: Medium...

5.8AI score
Exploits0References3
AstraLinux
AstraLinuxadded 2026/05/03 11:59 p.m.1 views

Astra Linux - уязвимость в chromium

Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 128.0.6613.84 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.3CVSS6.5AI score0.00368EPSS
Exploits0References2
AstraLinux
AstraLinuxadded 2026/05/03 11:59 p.m.6 views

Astra Linux - уязвимость в chromium

Inappropriate implementation in Custom Tabs in Google Chrome prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

5.4CVSS6.4AI score0.00071EPSS
Exploits0References2
AstraLinux
AstraLinuxadded 2026/05/03 11:59 p.m.3 views

Astra Linux - уязвимость в chromium

Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 106.0.5249.119 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page. Chromium security severity: High...

4.3CVSS6.5AI score0.00176EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/10/15 12:41 p.m.1 views

CVE-2025-11720

The Firefox and Firefox Focus UI for the Android custom tab feature only showed the "site" that was loaded, not the full hostname. User supplied content hosted on a subdomain of a site could have been used to fool a user into thinking it was content from a different subdomain of that site. This...

8.1CVSS5.7AI score0.00047EPSS
Exploits0References1
OSV
OSVadded 2025/10/14 1:15 p.m.0 views

UBUNTU-CVE-2025-11720

The Firefox and Firefox Focus UI for the Android custom tab feature only showed the "site" that was loaded, not the full hostname. User supplied content hosted on a subdomain of a site could have been used to fool a user into thinking it was content from a different subdomain of that site. This...

8.1CVSS5.8AI score0.00047EPSS
Exploits0References6
Vulnrichment
Vulnrichmentadded 2025/10/14 12:27 p.m.1 views

CVE-2025-11720 Spoofing risk in Android custom tabs

The Firefox and Firefox Focus UI for the Android custom tab feature only showed the "site" that was loaded, not the full hostname. User supplied content hosted on a subdomain of a site could have been used to fool a user into thinking it was content from a different subdomain of that site. This...

5.7AI score0.00047EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2025-6162

Malicious code in bioql PyPI...

3.9CVSS6.9AI score0.00178EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2025-9505

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.00071EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2025/08/30 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-3072

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in Custom Tabs in Google Chrome prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI...

5.4CVSS5.9AI score0.00071EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/08/27 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-3067

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in...

8.8CVSS8.2AI score0.00156EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/08/11 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-1939

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Android apps can load web pages using the Custom Tabs feature. This feature supports a transition animation that could have been used to trick a user into...

3.9CVSS7.2AI score0.00178EPSS
Exploits0References3
Mageia
Mageiaadded 2025/04/17 11:34 p.m.31 views

Updated chromium-browser-stable packages fix security vulnerabilities

Use after free in Site Isolation. CVE-2025-3066 Inappropriate implementation in Custom Tabs. CVE-2025-3067 Inappropriate implementation in Intents. CVE-2025-3068 Inappropriate implementation in Extensions. CVE-2025-3069 Insufficient validation of untrusted input in Extensions. CVE-2025-3070...

8.8CVSS7.5AI score0.00156EPSS
Exploits0References3
Rows per page
Query Builder