Lucene search
K

721 matches found

CVE
CVE
added yesterday4 views

CVE-2026-45203

The CVE-2026-45203 issue concerns kernel software running in a Host VM that can send improper commands to the GPU firmware, potentially triggering a memory write outside the host kernel’s permitted range. The root cause is a TOCTOU condition in the GPU DDK path (rgxfw_hwperf_ufo()) where a malici...

6.1AI score
Exploits0References1
CVE
CVE
added yesterday6 views

CVE-2026-45196

GPU DDK vulnerability (CVE-2026-45196) arises from unsanitized pointers in host-kernel interactions with rgxfw_hwperf_hw, allowing kernel software in a Host VM to issue improper commands to GPU Firmware and trigger an arbitrary GPU register write, potentially enabling privilege escalation. The de...

6.1AI score
Exploits0References1
EUVD
EUVD
added yesterday6 views

EUVD-2026-43039

Kernel software installed and running inside a Host VM may post improper commands to the GPU Firmware to trigger a GPU register access which can lead to privilege escalation...

6.1AI score
Exploits0References1
CVE
CVE
added yesterday4 views

CVE-2026-41154

The CVE-2026-41154 entry describes a GPU DDK issue where software run as a non-privileged user can trigger out-of-bounds (OOB) kernel memory reads/writes via GPU API calls. The root cause is an incorrect buffer/index calculation in the page freeing logic for the sparse memory implementation when ...

6.1AI score
Exploits0References1
EUVD
EUVD
added 2026/07/01 12:34 a.m.7 views

EUVD-2026-40638

Uninitialized Use in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

5.3CVSS5.8AI score0.0029EPSS
Exploits0References3
EUVD
EUVD
added 2026/07/01 12:34 a.m.7 views

EUVD-2026-40561

Insufficient validation of untrusted input in GPU in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

5.3CVSS5.8AI score0.00281EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/07/01 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-13831

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Out of bounds read and write in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to execute...

7.5CVSS6.4AI score0.0031EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/07/01 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-14049

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to obtain...

5.3CVSS6AI score0.00205EPSS
Exploits0References2
OSV
OSV
added 2026/06/30 11:17 p.m.4 views

DEBIAN-CVE-2026-14049

Inappropriate implementation in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Low...

5.3CVSS5.8AI score0.00205EPSS
Exploits0References1
NVD
NVD
added 2026/06/30 11:17 p.m.5 views

CVE-2026-13950

Uninitialized Use in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

5.3CVSS0.0029EPSS
Exploits0References2
NVD
NVD
added 2026/06/30 11:17 p.m.5 views

CVE-2026-13875

Insufficient validation of untrusted input in GPU in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

5.3CVSS0.00281EPSS
Exploits0References2
OSV
OSV
added 2026/06/30 11:16 p.m.6 views

DEBIAN-CVE-2026-13831

Out of bounds read and write in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

7.5CVSS6.2AI score0.0031EPSS
Exploits0References1
NVD
NVD
added 2026/06/30 11:16 p.m.5 views

CVE-2026-13831

Out of bounds read and write in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

7.5CVSS0.0031EPSS
Exploits0References2
NVD
NVD
added 2026/06/30 11:16 p.m.5 views

CVE-2026-13789

Use after free in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

9.6CVSS0.00316EPSS
Exploits0References2
CVE
CVE
added 2026/06/30 10:39 p.m.149 views

CVE-2026-14049

CVE-2026-14049 affects Google Chrome versions with an inappropriate GPU implementation prior to 150.0.7871.47. A remote attacker who has compromised the renderer process can obtain potentially sensitive information from process memory via a crafted HTML page. Impact is described as Low severity; ...

5.3CVSS5.8AI score0.00205EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2026/06/30 10:39 p.m.4 views

CVE-2026-14049

Inappropriate implementation in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Low...

5.3CVSS5.8AI score0.00205EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/30 10:38 p.m.5 views

CVE-2026-13875

Insufficient validation of untrusted input in GPU in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

5.3CVSS5.8AI score0.00281EPSS
Exploits0
CVE
CVE
added 2026/06/30 10:37 p.m.16 views

CVE-2026-13831

The CVE-2026-13831 entry relates to an Out-of-bounds read/write in Chrome’s GPU/renderer path. Affects Google Chrome prior to version 150.0.7871.47, enabling a remote attacker who has compromised the renderer process to run arbitrary code inside the sandbox via a crafted HTML page. Root cause is ...

7.5CVSS6.2AI score0.0031EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2026/06/30 10:37 p.m.7 views

CVE-2026-13789

Use after free in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

9.6CVSS5.8AI score0.00316EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/06/30 12:0 a.m.9 views

PT-2026-54324

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description An inappropriate implementation in the GPU component allows a remote attacker who has already compromised the renderer process to obtain potentially sensitive information from process...

9.6CVSS6AI score0.00413EPSS
Exploits0References438
Rows per page
Query Builder