Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

24 matches found

EUVD
EUVDadded 5 days ago8 views

EUVD-2026-33133

Inappropriate implementation in Media in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00025EPSS
Exploits0References3
Debian CVE
Debian CVEadded 6 days ago5 views

CVE-2026-9989

Inappropriate implementation in Media in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to bypass same origin policy via a crafted video file. Chromium security severity: High...

6.3CVSS5.8AI score0.00011EPSS
Exploits0
ATTACKERKB
ATTACKERKBadded 6 days ago3 views

CVE-2026-9989

Inappropriate implementation in Media in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to bypass same origin policy via a crafted video file. Chromium security severity: High...

5.8AI score0.00011EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKBadded 6 days ago3 views

CVE-2026-9991

Inappropriate implementation in Media in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00025EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologiesadded 2026/05/27 12:0 a.m.5 views

PT-2026-44697

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.216 Description An inappropriate implementation in the Media component allows a remote attacker to bypass the same origin policy, which is a security mechanism that restricts how a document or script...

9.6CVSS5.8AI score0.00128EPSS
Exploits0References157
Microsoft CVE
Microsoft CVEadded 2026/05/16 12:21 a.m.5 views

Chromium: CVE-2026-8585 Inappropriate implementation in Media

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

7.5CVSS5.8AI score0.00096EPSS
Exploits0
Vulnrichment
Vulnrichmentadded 2026/05/14 7:52 p.m.3 views

CVE-2026-8585

Inappropriate implementation in Media in Google Chrome on iOS prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory read via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00096EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/05/06 6:13 p.m.1 views

CVE-2026-8015

Inappropriate implementation in Media in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

5.4CVSS5.8AI score0.00073EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2026/05/06 6:13 p.m.26 views

CVE-2026-8015

Inappropriate implementation in Media in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

0.00073EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/05/06 6:12 p.m.1 views

CVE-2026-7979

Inappropriate implementation in Media in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00012EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2026/05/06 6:12 p.m.38 views

CVE-2026-7979

CVE-2026-7979 concerns Google Chrome: an inappropriate implementation in Media allows a remote attacker to leak cross-origin data via a crafted HTML page, before Chrome 148.0.7778.96. Connected sources confirm the vulnerability in Chrome’s Media handling and list the fixed version 148.0.7778.96 (...

4.3CVSS5.8AI score0.00012EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/05/06 6:12 p.m.2 views

CVE-2026-7979

Inappropriate implementation in Media in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00012EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/12/26 12:19 a.m.3 views

CVE-2025-66379

Pexip Infinity before 39.0 has Improper Input Validation in the media implementation, allowing a remote attacker to trigger a software abort via a crafted media stream, resulting in a denial of service...

7.5CVSS6.8AI score0.00063EPSS
Exploits0References1
NVD
NVDadded 2025/12/25 5:16 a.m.2 views

CVE-2025-66379

Pexip Infinity before 39.0 has Improper Input Validation in the media implementation, allowing a remote attacker to trigger a software abort via a crafted media stream, resulting in a denial of service...

7.5CVSS0.00063EPSS
Exploits0References1
CVE
CVEadded 2025/12/25 12:0 a.m.5 views

CVE-2025-66379

Pexip Infinity prior to 39.0 is affected by an improper input validation flaw in the media implementation. A remote attacker can exploit a crafted media stream to trigger a software abort, resulting in a denial of service. Affected product/version: Pexip Infinity

7.5CVSS6.4AI score0.00063EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessusadded 2025/11/11 12:0 a.m.2 views

Fedora 42 : cef (2025-313f6d7702)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-313f6d7702 advisory. Update to 141.0.7390.122 High CVE-2025-12036 chromium: Inappropriate implementation in V8 High CVE-2025-11756: Use after free in Safe Browsing High...

9.1CVSS8.9AI score0.00179EPSS
Exploits1References20
NVD
NVDadded 2025/11/06 10:15 p.m.1 views

CVE-2025-11212

Inappropriate implementation in Media in Google Chrome on Windows prior to 141.0.7390.54 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform domain spoofing via a crafted HTML page. Chromium security severity: Medium...

6.3CVSS0.00116EPSS
Exploits0References2
OSV
OSVadded 2025/11/06 10:15 p.m.2 views

CVE-2025-11212

Inappropriate implementation in Media in Google Chrome on Windows prior to 141.0.7390.54 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform domain spoofing via a crafted HTML page. Chromium security severity: Medium...

6.3CVSS5.8AI score
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/10/09 12:0 a.m.3 views

Fedora 41 : chromium (2025-2d4d91b00a)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-2d4d91b00a advisory. Update to 141.0.7390.54 High CVE-2025-11205: Heap buffer overflow in WebGPU High CVE-2025-11206: Heap buffer overflow in Video Medium CVE-2025-11207...

8.8CVSS8.6AI score0.00116EPSS
Exploits0References13
Tenable Nessus
Tenable Nessusadded 2025/10/08 12:0 a.m.0 views

Linux Distros Unpatched Vulnerability : CVE-2025-11212

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in Media in Google Chrome on Windows prior to 141.0.7390.54 allowed a remote attacker who convinced a user to engage in specific UI...

6.3CVSS8.1AI score0.00116EPSS
Exploits0References2
Rows per page
Query Builder