Lucene search
+L

20 matches found

NVD
NVD
added 2026/06/30 11:17 p.m.7 views

CVE-2026-14005

Use after free in Omnibox in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS0.00253EPSS
Exploits0References2
OSV
OSV
added 2026/06/30 11:17 p.m.4 views

DEBIAN-CVE-2026-14005

Use after free in Omnibox in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS5.8AI score0.00253EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/11 8:42 p.m.3 views

CVE-2025-12728

Inappropriate implementation in Omnibox in Google Chrome on Android prior to 142.0.7444.137 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.2CVSS4.8AI score0.00198EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/10 9:30 p.m.3 views

EUVD-2025-50784

Inappropriate implementation in Omnibox in Google Chrome on Android prior to 142.0.7444.137 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.2CVSS5.5AI score0.00176EPSS
Exploits0References3
CVE
CVE
added 2025/11/10 8:0 p.m.29 views

CVE-2025-12728

CVE-2025-12728 concerns Google Chrome on Android before 142.0.7444.137, where an inappropriate Omnibox implementation allows UI spoofing via a crafted HTML page after user interaction. The issue is tied to the Chromium Omnibox UI flow and affects the browser’s ability to render certain UI gesture...

4.2CVSS5.5AI score0.00198EPSS
Exploits0References2Affected Software1
SUSE CVE
SUSE CVE
added 2025/11/07 12:35 a.m.3 views

SUSE CVE-2025-12729

Inappropriate implementation in Omnibox in Google Chrome on Android prior to 142.0.7444.137 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.2CVSS6.5AI score0.00176EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/11/06 10:8 p.m.8 views

CVE-2025-11213

Inappropriate implementation in Omnibox in Google Chrome on Android prior to 141.0.7390.54 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform domain spoofing via a crafted HTML page. Chromium security severity: Medium...

0.00213EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2025/11/06 10:8 p.m.8 views

CVE-2025-11213

Inappropriate implementation in Omnibox in Google Chrome on Android prior to 141.0.7390.54 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform domain spoofing via a crafted HTML page. Chromium security severity: Medium...

6.3CVSS8.4AI score0.00213EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/10/16 12:0 a.m.5 views

PT-2025-45463

Name of the Vulnerable Software and Affected Versions Google Chrome affected versions not specified Description A flaw exists in the Google Chrome Omnibox component related to improper control flow management. Successful exploitation could allow a remote attacker to disclose protected information...

8.8CVSS5.4AI score0.06776EPSS
Exploits2References83
Tenable Nessus
Tenable Nessus
added 2025/08/20 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2017-5089

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient Policy Enforcement in Omnibox in Google Chrome prior to 59.0.3071.104 for Mac allowed a remote attacker to perform domain spoofing via a crafted...

6.5CVSS7.4AI score0.01285EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:51 a.m.2 views

SUSE CVE-2017-5060

Insufficient Policy Enforcement in Omnibox in Google Chrome prior to 58.0.3029.81 for Mac, Windows, and Linux, and 58.0.3029.83 for Android, allowed a remote attacker to perform domain spoofing via IDN homographs in a crafted domain name...

6.5CVSS8.8AI score0.01327EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:51 a.m.5 views

SUSE CVE-2017-5072

Inappropriate implementation in Omnibox in Google Chrome prior to 59.0.3071.92 for Android allowed a remote attacker to perform domain spoofing with RTL characters via a crafted URL page...

6.5CVSS8.7AI score0.01213EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:38 a.m.3 views

SUSE CVE-2017-15424

Insufficient policy enforcement in Omnibox in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to perform domain spoofing via IDN homographs in a crafted domain name...

6.5CVSS8.8AI score0.01193EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:2 a.m.4 views

SUSE CVE-2020-6441

Insufficient policy enforcement in omnibox in Google Chrome prior to 81.0.4044.92 allowed a remote attacker to bypass security UI via a crafted HTML page...

4.3CVSS5.9AI score0.01724EPSS
Exploits0References5
OSV
OSV
added 2020/04/13 6:15 p.m.2 views

DEBIAN-CVE-2020-6441

Insufficient policy enforcement in omnibox in Google Chrome prior to 81.0.4044.92 allowed a remote attacker to bypass security UI via a crafted HTML page...

4.3CVSS6.5AI score0.01724EPSS
Exploits0References1
CNVD
CNVD
added 2020/02/12 12:0 a.m.2 views

Google Chrome Domain Spoofing Vulnerability (CNVD-2020-05131)

Chrome is a simple and efficiently designed web browsing tool developed by Google that is characterized by its simplicity and speed. A domain spoofing vulnerability exists in Google Chrome versions prior to 80.0.3987.87. The vulnerability stems from insufficient validation of untrusted input by...

5.8CVSS8.4AI score0.01396EPSS
Exploits0References1
OSV
OSV
added 2020/02/11 3:15 p.m.1 views

DEBIAN-CVE-2020-6409

Inappropriate implementation in Omnibox in Google Chrome prior to 80.0.3987.87 allowed a remote attacker who convinced the user to enter a URI to bypass navigation restrictions via a crafted domain name...

8.8CVSS7AI score0.01742EPSS
Exploits0References1
OSV
OSV
added 2019/11/25 3:15 p.m.3 views

UBUNTU-CVE-2019-13718

Insufficient data validation in Omnibox in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name...

4.3CVSS7.2AI score0.00882EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/04/24 12:0 a.m.70 views

Google Chrome < 58.0.3029.81 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 58.0.3029.81. It is, therefore, affected by multiple vulnerabilities as referenced in the 201704stable-channel-update-for-desktop advisory. - Incorrect handling of DOM changes in Blink in Google Chrome prior to...

8.8CVSS7.7AI score0.03362EPSS
Exploits1References26
Tenable Nessus
Tenable Nessus
added 2017/03/10 12:0 a.m.35 views

Google Chrome < 59.0.3071.104 Multiple Vulnerabilities

Binary data 700135.pasl...

8.8CVSS7.8AI score0.01478EPSS
Exploits0References2
Rows per page
Query Builder