Lucene search
+L

61 matches found

OSV
OSV
added 2026/07/08 11:16 p.m.2 views

DEBIAN-CVE-2026-15130

Insufficient policy enforcement in Navigation in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to bypass site isolation via a crafted HTML page. Chromium security severity: High...

4.3CVSS6AI score0.00172EPSS
Exploits0References1
NVD
NVD
added 2026/07/08 11:16 p.m.6 views

CVE-2026-15130

Insufficient policy enforcement in Navigation in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to bypass site isolation via a crafted HTML page. Chromium security severity: High...

4.3CVSS0.00172EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/07/08 10:36 p.m.37 views

CVE-2026-15130

Insufficient policy enforcement in Navigation in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to bypass site isolation via a crafted HTML page. Chromium security severity: High...

0.00172EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/07/08 10:36 p.m.6 views

CVE-2026-15130

Insufficient policy enforcement in Navigation in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to bypass site isolation via a crafted HTML page. Chromium security severity: High...

4.3CVSS5.8AI score0.00172EPSS
Exploits0
CVE
CVE
added 2026/07/08 10:36 p.m.72 views

CVE-2026-15130

CVE-2026-15130 affects Google Chrome navigation policy enforcement. The vulnerability arises from insufficient policy enforcement in Navigation, enabling a remote attacker to bypass site isolation via a crafted HTML page. A fix is available in the Stable channel: Windows/Mac 150.0.7871.114/115 an...

4.3CVSS5.8AI score0.00172EPSS
Exploits0References2Affected Software1
SUSE CVE
SUSE CVE
added 2026/06/07 4:47 a.m.13 views

SUSE CVE-2026-11025

Insufficient policy enforcement in Navigation in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to bypass content security policy via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.5AI score0.0028EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2026/06/05 2:0 p.m.13 views

Chromium: CVE-2026-11025 Insufficient policy enforcement in Navigation

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.5CVSS5.4AI score0.0028EPSS
Exploits0
EUVD
EUVD
added 2026/06/05 12:31 a.m.12 views

EUVD-2026-34748

Insufficient policy enforcement in Navigation in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00233EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/05 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-11287

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient policy enforcement in Navigation in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer...

6.5CVSS6.2AI score0.00233EPSS
Exploits0References2
NVD
NVD
added 2026/06/04 11:17 p.m.14 views

CVE-2026-11025

Insufficient policy enforcement in Navigation in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to bypass content security policy via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.0028EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/06/04 11:6 p.m.6 views

CVE-2026-11287

Insufficient policy enforcement in Navigation in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...

5.5AI score0.00233EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/04 11:6 p.m.46 views

CVE-2026-11287

Insufficient policy enforcement in Navigation in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...

0.00233EPSS
Exploits0References2
CVE
CVE
added 2026/06/04 11:6 p.m.68 views

CVE-2026-11287

CVE-2026-11287 : Google Chrome on Android is affected (before 149.0.7827.53). The issue is insufficient policy enforcement in Navigation, allowing a renderer-compromised page to bypass navigation restrictions via a crafted HTML page. Root cause: policy enforcement gap in navigation. Impact per CV...

6.5CVSS5.8AI score0.00233EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/04 11:4 p.m.7 views

CVE-2026-11025

Insufficient policy enforcement in Navigation in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to bypass content security policy via a crafted HTML page. Chromium security severity: Medium...

5.5AI score0.0028EPSS
Exploits0References2
CVE
CVE
added 2026/06/04 11:4 p.m.21 views

CVE-2026-11025

CVE-2026-11025 is a Chromium/Google Chrome (Android) vulnerability: insufficient policy enforcement in Navigation allows bypassing the Content Security Policy via a crafted HTML page. The issue affects Chrome versions prior to 149.0.7827.53; multiple connected advisories note fixes in 149.0.7827....

6.5CVSS5.8AI score0.0028EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2026/06/04 11:4 p.m.8 views

CVE-2026-11025

Insufficient policy enforcement in Navigation in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to bypass content security policy via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.5AI score0.0028EPSS
Exploits0
Cvelist
Cvelist
added 2026/06/04 11:4 p.m.40 views

CVE-2026-11025

Insufficient policy enforcement in Navigation in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to bypass content security policy via a crafted HTML page. Chromium security severity: Medium...

0.0028EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.27 views

PT-2026-46814

Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 149.0.7827.53 Description Insufficient policy enforcement in Navigation allows a remote attacker who has compromised the renderer process to bypass navigation restrictions using a crafted HTML page...

9.6CVSS5.5AI score0.00411EPSS
Exploits0References437
EUVD
EUVD
added 2026/05/06 9:31 p.m.10 views

EUVD-2026-28166

OpenClaw before 2026.4.9 contains a file read vulnerability allowing attackers to bypass navigation guards through browser act/evaluate interactions. Attackers can pivot into the local CDP origin and create or read disallowed file:// pages despite direct navigation policy restrictions...

7.1CVSS5.8AI score0.00253EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/06 9:31 p.m.9 views

EUVD-2026-28176

OpenClaw before 2026.4.10 contains a server-side request forgery vulnerability in browser navigation policy that allows attackers to bypass hostname validation through DNS rebinding attacks. Attackers can exploit inconsistent hostname resolution between validation and actual network requests to...

6.3CVSS5.8AI score0.00199EPSS
Exploits0References4
Rows per page
Query Builder