Lucene search
+L

154 matches found

CVE
CVE
added 2026/06/04 11:4 p.m.27 views

CVE-2026-11035

CVE-2026-11035 describes an inappropriate implementation in Google Chrome for Android’s Custom Tabs prior to version 149.0.7827.53, enabling a local attacker to escalate privileges via a crafted XML file. The underlying issue is in the Custom Tabs integration, leading to total impact on confident...

7.3CVSS5.8AI score0.00079EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/04 11:4 p.m.9 views

CVE-2026-11035

Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to perform privilege escalation via a crafted XML file. Chromium security severity: Medium...

5.4AI score0.00079EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/04 11:4 p.m.40 views

CVE-2026-11035

Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to perform privilege escalation via a crafted XML file. Chromium security severity: Medium...

0.00079EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.22 views

PT-2026-46564

Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 149.0.7827.53 Description An inappropriate implementation in Custom Tabs allows a local attacker to perform privilege escalation by using a crafted XML file. Recommendations Update to version...

9.6CVSS5.8AI score0.00985EPSS
Exploits0References436
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.9 views

Google Chrome 输入验证错误漏洞

Google Chrome is a web browser developed by Google Inc. In versions prior to 149.0.7827.53, there was a vulnerability related to input validation. This vulnerability stemmed from improper implementations in custom tabs, which could allow local attackers to escalate privileges through specially...

7.3CVSS5.8AI score0.00079EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.10 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by the American company Google. There is a security vulnerability in Google Chrome, which stems from insufficient execution of the CustomTabs component’s strategy...

3.1CVSS5.5AI score0.00177EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Chromium

Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 106.0.5249.119 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page. Chromium security severity: High...

4.3CVSS6.2AI score0.0054EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/10/15 12:41 p.m.5 views

CVE-2025-11720

The Firefox and Firefox Focus UI for the Android custom tab feature only showed the "site" that was loaded, not the full hostname. User supplied content hosted on a subdomain of a site could have been used to fool a user into thinking it was content from a different subdomain of that site. This...

8.1CVSS5.7AI score0.0025EPSS
Exploits0References1
OSV
OSV
added 2025/10/14 1:15 p.m.6 views

UBUNTU-CVE-2025-11720

The Firefox and Firefox Focus UI for the Android custom tab feature only showed the "site" that was loaded, not the full hostname. User supplied content hosted on a subdomain of a site could have been used to fool a user into thinking it was content from a different subdomain of that site. This...

8.1CVSS5.7AI score0.0025EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/10/14 12:27 p.m.2 views

CVE-2025-11720 Spoofing risk in Android custom tabs

The Firefox and Firefox Focus UI for the Android custom tab feature only showed the "site" that was loaded, not the full hostname. User supplied content hosted on a subdomain of a site could have been used to fool a user into thinking it was content from a different subdomain of that site. This...

5.7AI score0.0025EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-9505

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.00249EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-6162

Malicious code in bioql PyPI...

3.9CVSS6.9AI score0.00175EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-3072

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in Custom Tabs in Google Chrome prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI...

5.4CVSS6.5AI score0.00249EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-3067

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in...

8.8CVSS7.2AI score0.00552EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/11 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-1939

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Android apps can load web pages using the Custom Tabs feature. This feature supports a transition animation that could have been used to trick a user into...

3.9CVSS7.2AI score0.00175EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.8 views

Astra Linux – Vulnerability in Chromium

Inappropriate implementation in Custom Tabs in Google Chrome prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

5.4CVSS6.2AI score0.00249EPSS
Exploits0References3
OSV
OSV
added 2025/04/17 11:34 p.m.18 views

MGASA-2025-0137 Updated chromium-browser-stable packages fix security vulnerabilities

Use after free in Site Isolation. CVE-2025-3066 Inappropriate implementation in Custom Tabs. CVE-2025-3067 Inappropriate implementation in Intents. CVE-2025-3068 Inappropriate implementation in Extensions. CVE-2025-3069 Insufficient validation of untrusted input in Extensions. CVE-2025-3070...

8.8CVSS7.2AI score0.00552EPSS
Exploits0References4
Mageia
Mageia
added 2025/04/17 11:34 p.m.35 views

Updated chromium-browser-stable packages fix security vulnerabilities

Use after free in Site Isolation. CVE-2025-3066 Inappropriate implementation in Custom Tabs. CVE-2025-3067 Inappropriate implementation in Intents. CVE-2025-3068 Inappropriate implementation in Extensions. CVE-2025-3069 Insufficient validation of untrusted input in Extensions. CVE-2025-3070...

8.8CVSS7.5AI score0.00552EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2025/04/17 12:0 a.m.11 views

The vulnerability of the Custom Tabs component in Google Chrome and Microsoft Edge browsers allows a hacker to replace the user interface.

The vulnerability of the Custom Tabs component in Google Chrome and Microsoft Edge is related to information representation errors in the user interface. Exploiting this vulnerability can allow an attacker to replace the user interface with a specially created HTML page...

6.4CVSS6.1AI score0.00249EPSS
Exploits0References15Affected Software7
CNVD
CNVD
added 2025/04/09 12:0 a.m.4 views

Google Chrome Security Bypass Vulnerability (CNVD-2025-10927)

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a security bypass vulnerability that originates from an improper implementation in Custom Tabs. An attacker can exploit the vulnerability to bypass security restrictions...

5.4CVSS6.8AI score0.00249EPSS
Exploits0References1
Rows per page
Query Builder