Lucene search
K

832 matches found

EUVD
EUVD
added 2026/07/09 12:31 a.m.8 views

EUVD-2026-42459

Use after free in IndexedDB in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

6.3AI score0.00242EPSS
Exploits0References3
NVD
NVD
added 2026/07/08 11:16 p.m.7 views

CVE-2026-15107

Use after free in IndexedDB in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS0.00242EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/07/08 10:36 p.m.8 views

CVE-2026-15107

Use after free in IndexedDB in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

6.3AI score0.00242EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/07/08 10:36 p.m.40 views

CVE-2026-15107

CVE-2026-15107 concerns Google's Chrome browser: a use-after-free in IndexedDB allowed via a crafted HTML page to potentially execute arbitrary code inside the sandbox. Affected software is Chrome prior to 150.0.7871.115 (Windows/Mac) with Linux at 150.0.7871.114. The underlying issue is a use-af...

8.8CVSS6.3AI score0.00242EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2026/07/08 10:36 p.m.6 views

CVE-2026-15107

Use after free in IndexedDB in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6.3AI score0.00242EPSS
Exploits0
Cvelist
Cvelist
added 2026/07/08 10:36 p.m.38 views

CVE-2026-15107

Use after free in IndexedDB in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

0.00242EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/07/08 12:0 a.m.9 views

PT-2026-56626

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.115 Description A use after free issue exists in IndexedDB, a low-level API for client-side storage of significant amounts of structured data. This flaw allows a remote attacker to execute arbitrary...

9.6CVSS6.4AI score0.00306EPSS
Exploits0References34
AstraLinux
AstraLinux
added 2026/06/23 11:48 a.m.16 views

Astra Linux – Vulnerability in Firefox

Sandbox escape in the Storage: IndexedDB component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

10CVSS6.1AI score0.00366EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/23 11:48 a.m.7 views

Astra Linux – Vulnerability in Firefox

Use-after-free in the Storage: IndexedDB component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

8.8CVSS6.1AI score0.00419EPSS
Exploits0References2
Redos
Redos
added 2026/06/10 12:0 a.m.9 views

ROS-20260610-73-0014

The vulnerability of the IndexedDB component in browsers such as Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to the exposure of information. Exploiting this vulnerability can allow an attacker to compromise the confidentiality and accessibility of protected informati...

6.5CVSS5.8AI score0.04938EPSS
Exploits1
Redos
Redos
added 2026/06/09 12:0 a.m.10 views

ROS-20260609-73-0001

The vulnerability of the IndexedDB component in browsers such as Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to the exposure of information. Exploiting this vulnerability can allow an attacker to compromise the confidentiality and accessibility of protected informati...

6.5CVSS5.5AI score0.04938EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2026/06/07 5:17 a.m.10 views

CVE-2026-11246

An insufficient validation of untrusted input flaw was found in the IndexedDB component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=497660733...

6.8CVSS5.4AI score0.00202EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2026/06/07 4:40 a.m.10 views

SUSE CVE-2026-11246

Insufficient validation of untrusted input in IndexedDB in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. Chromium security severity: Low...

5.3CVSS5.5AI score0.00202EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2026/06/05 2:0 p.m.11 views

Chromium: CVE-2026-11246 Insufficient validation of untrusted input in IndexedDB

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

5.3CVSS5.4AI score0.00202EPSS
Exploits0
EUVD
EUVD
added 2026/06/05 12:31 a.m.10 views

EUVD-2026-34707

Insufficient validation of untrusted input in IndexedDB in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00202EPSS
Exploits0References3
NVD
NVD
added 2026/06/05 12:17 a.m.9 views

CVE-2026-11246

Insufficient validation of untrusted input in IndexedDB in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. Chromium security severity: Low...

5.3CVSS0.00202EPSS
Exploits0References2
OSV
OSV
added 2026/06/05 12:17 a.m.6 views

DEBIAN-CVE-2026-11246

Insufficient validation of untrusted input in IndexedDB in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. Chromium security severity: Low...

5.3CVSS5.5AI score0.00202EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/06/05 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-11246

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient validation of untrusted input in IndexedDB in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer proce...

5.3CVSS5.5AI score0.00202EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/06/04 11:5 p.m.8 views

CVE-2026-11246

Insufficient validation of untrusted input in IndexedDB in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. Chromium security severity: Low...

5.5AI score0.00202EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/06/04 11:5 p.m.10 views

CVE-2026-11246

Insufficient validation of untrusted input in IndexedDB in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. Chromium security severity: Low...

5.3CVSS5.5AI score0.00202EPSS
Exploits0
Rows per page
Query Builder