Lucene search
K

70 matches found

NVD
NVD
added 2026/04/08 10:16 p.m.4 views

CVE-2026-5901

Insufficient policy enforcement in DevTools in Google Chrome prior to 147.0.7727.55 allowed an attacker who convinced a user to install a malicious extension to bypass enterprise host restrictions for cookie modification via a crafted Chrome Extension. Chromium security severity: Low...

6.5CVSS0.00139EPSS
Exploits0References2
CVE
CVE
added 2026/04/08 9:20 p.m.27 views

CVE-2026-5901

CVE-2026-5901 concerns insufficient policy enforcement in Chrome/Chromium DevTools, enabling a user-assisted attacker who installs a malicious extension to bypass enterprise host restrictions for cookie modification. The issue affects Chrome/Chromium builds prior to version 147.0.7727.55, with ad...

6.5CVSS5.9AI score0.00139EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/08 9:20 p.m.2 views

CVE-2026-5901

Insufficient policy enforcement in DevTools in Google Chrome prior to 147.0.7727.55 allowed an attacker who convinced a user to install a malicious extension to bypass enterprise host restrictions for cookie modification via a crafted Chrome Extension. Chromium security severity: Low...

5.8AI score0.00139EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/07 12:0 a.m.9 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by the American company Google. Versions of Google Chrome prior to 147.0.7727.55 contained a security vulnerability. This vulnerability stemmed from insufficient execution of DevTools policies, which could allow attackers to bypass corporate host...

6.5CVSS7.4AI score0.00139EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2026/03/14 1:20 a.m.5 views

Chromium: CVE-2026-3941 Insufficient policy enforcement in DevTools

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS5.8AI score0.00166EPSS
Exploits0
EUVD
EUVD
added 2026/03/12 12:31 a.m.5 views

EUVD-2026-11470

Insufficient policy enforcement in DevTools in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00163EPSS
Exploits0References3
OSV
OSV
added 2026/03/11 10:16 p.m.12 views

CVE-2026-3941

Insufficient policy enforcement in DevTools in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.8AI score
Exploits0References2
OSV
OSV
added 2026/03/11 10:16 p.m.4 views

DEBIAN-CVE-2026-3941

Insufficient policy enforcement in DevTools in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.3AI score0.00166EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/11 10:4 p.m.31 views

CVE-2026-3941

Insufficient policy enforcement in DevTools in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...

0.00166EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/03/11 10:4 p.m.6 views

CVE-2026-3941

Insufficient policy enforcement in DevTools in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.3AI score0.00166EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/03/11 10:4 p.m.3 views

CVE-2026-3940

Insufficient policy enforcement in DevTools in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00163EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/03/11 10:4 p.m.30 views

CVE-2026-3940

CVE-2026-3940 affects Google Chrome/Chromium DevTools and is caused by insufficient policy enforcement that allowed navigation restrictions bypass via a crafted HTML page. Affected versions were Chrome/Chromium prior to 146.0.7680.71. Remediation is to upgrade to version 146.0.7680.71 or later; D...

5.3CVSS5.8AI score0.00163EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/11 10:4 p.m.4 views

CVE-2026-3940

Insufficient policy enforcement in DevTools in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00163EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/10 12:0 a.m.9 views

Google Chrome 安全漏洞

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a security bypass vulnerability caused by insufficient policy enforcement in DevTools, which can be exploited by an attacker to bypass navigation restrictions via specially crafted HTML pages...

5.3CVSS6AI score0.00163EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2025/11/01 10:54 a.m.7 views

Astra Linux – Vulnerability in Chromium

Insufficient policy enforcement in Devtools in Google Chrome prior to 140.0.7339.80 allowed a remote attacker to leak cross-origin data via Devtools. Chromium security severity: Low...

5.3CVSS5.5AI score0.00191EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2024/01/25 2:48 a.m.5 views

SUSE CVE-2024-0810

Insufficient policy enforcement in DevTools in Google Chrome prior to 121.0.6167.85 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. Chromium security severity: Medium...

4.3CVSS8.7AI score0.0035EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/01/23 12:0 a.m.10 views

PT-2024-1385 · Google +4 · Google Chrome +4

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 121.0.6167.85 Description: The issue is related to insufficient policy enforcement in DevTools, which can allow an attacker to leak cross-origin data via a crafted Chrome Extension if a user is convinced to...

9.8CVSS6.5AI score0.99735EPSS
Exploits128References1099
SUSE CVE
SUSE CVE
added 2023/02/15 4:31 a.m.3 views

SUSE CVE-2018-6035

Insufficient policy enforcement in DevTools in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially leak user local file data via a crafted Chrome Extension...

8.8CVSS8.5AI score0.01533EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:31 a.m.2 views

SUSE CVE-2018-6045

Insufficient policy enforcement in DevTools in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially leak user local file data via a crafted Chrome Extension...

6.5CVSS8.5AI score0.01537EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 3:42 a.m.2 views

SUSE CVE-2021-30571

Insufficient policy enforcement in DevTools in Google Chrome prior to 92.0.4515.107 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted HTML page...

9.6CVSS8.8AI score0.01189EPSS
Exploits1References4
Rows per page
Query Builder