CVE-2026-7908

Use after free in Fullscreen in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

CVE-2026-7908

CVE-2026-7908 describes a use-after-free in Chrome’s Fullscreen handling that could allow a sandbox escape via a crafted HTML page. Affected component is the browser’s Fullscreen code path in Chromium. The issue is tied to Google Chrome before version 148.0.7778.96 (stable release 148); the Chrom...

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.96 contained a resource management vulnerability. This vulnerability stemmed from the reusing of resources after they were released in Fullscreen mode, which could allow remote attackers to execu...

Astra Linux - уязвимость в firefox

Form validation popups may capture escape key presses. Therefore, spamming form validation messages can be used to prevent users from exiting full-screen mode. This vulnerability affects Firefox 128 and Thunderbird 128...

Astra Linux - уязвимость в firefox

A malicious website can enter fullscreen mode while simultaneously triggering a WebAuthn prompt. This could have obscured the fullscreen notification and could have been exploited in a spoofing attack. This vulnerability affects Firefox versions earlier than 119...

CVE-2026-5882

Incorrect security UI in Fullscreen in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

CVE-2026-5882

Incorrect security UI in Fullscreen in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

PT-2026-38110

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.96 Description A use after free issue in Fullscreen on Windows allows a remote attacker who has compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Use...

Chromium: CVE-2025-12444 Incorrect security UI in Fullscreen UI

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

EUVD-2015-7117

Malware in sbrugna...

EUVD-2021-16442

Malware in sbrugna...

EUVD-2017-14498

Malware in sbrugna...

EUVD-2017-16745

Malware in sbrugna...

EUVD-2017-16792

Malware in sbrugna...

EUVD-2021-24958

Malware in sbrugna...

EUVD-2020-27956

Malware in sbrugna...

EUVD-2023-29650

Malicious code in bioql PyPI...

EUVD-2022-48280

Malicious code in bioql PyPI...

CVE-2024-8388

Multiple prompts and panels from both Firefox and the Android OS could be used to obscure the notification announcing the transition to fullscreen mode after the fix for CVE-2023-6870 in Firefox 121. This could lead to spoofing the browser UI if the sudden appearance of the prompt distracted the...

CVE-2021-29983

Firefox for Android could get stuck in fullscreen mode and not exit it even after normal interactions that should cause it to exit. Note: This issue only affected Firefox for Android. Other operating systems are unaffected.. This vulnerability affects Firefox 91...