Lucene search
+L

8 matches found

euvd
euvd
added 2026/07/01 12:34 a.m.7 views

EUVD-2026-40607

Insufficient validation of untrusted input in DeviceBoundSessionCredentials in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00319EPSS
Exploits0References3
nvd
nvd
added 2026/06/30 11:17 p.m.6 views

CVE-2026-13921

Insufficient validation of untrusted input in DeviceBoundSessionCredentials in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.00319EPSS
Exploits0References2
osv
osv
added 2026/06/30 11:17 p.m.4 views

DEBIAN-CVE-2026-13921

Insufficient validation of untrusted input in DeviceBoundSessionCredentials in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.8AI score0.00319EPSS
Exploits0References1
cvelist
cvelist
added 2026/06/30 10:38 p.m.27 views

CVE-2026-13921

Insufficient validation of untrusted input in DeviceBoundSessionCredentials in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: Medium...

0.00319EPSS
Exploits0References2
cve
cve
added 2026/06/30 10:38 p.m.20 views

CVE-2026-13921

The set of connected records confirms CVE-2026-13921 affects Google Chrome (Chromium-based) via the DeviceBoundSessionCredentials component where insufficient validation of untrusted input enables a remote bypass of the same-origin policy through a crafted HTML page. The vulnerability is describe...

6.5CVSS5.8AI score0.00319EPSS
Exploits0References2Affected Software1
osv
osv
added 2026/06/24 7:17 p.m.4 views

DEBIAN-CVE-2026-13021

Inappropriate implementation in DeviceBoundSessionCredentials in Google Chrome prior to 149.0.7827.197 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: High...

4.3CVSS5.9AI score0.00143EPSS
Exploits0References1
cve
cve
added 2026/06/24 6:43 p.m.114 views

CVE-2026-13021

Google Chrome prior to 149.0.7827.197 contains an inappropriate implementation in DeviceBoundSessionCredentials that can allow a remote attacker to bypass the same-origin policy via a crafted HTML page. The CVE description notes a Chromium-based issue with High severity; updates to Chrome are ref...

4.3CVSS5.9AI score0.00143EPSS
Exploits0References2Affected Software1
euvd
euvd
added 2026/06/24 6:43 p.m.7 views

EUVD-2026-39036

Inappropriate implementation in DeviceBoundSessionCredentials in Google Chrome prior to 149.0.7827.197 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: High...

4.3CVSS5.9AI score0.00143EPSS
Exploits0References2
Rows per page
Query Builder