Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

52 matches found

AstraLinux
AstraLinuxadded 2026/05/20 5:53 a.m.8 views

Astra Linux - уязвимость в chromium

Inappropriate implementation in PictureInPicture in Google Chrome prior to 113.0.5672.63 allowed a remote attacker who had compromised the renderer process to obfuscate the security UI via a crafted HTML page. Chromium security severity: Low...

4.3CVSS6.5AI score0.00801EPSS
Exploits0References2
Microsoft CVE
Microsoft CVEadded 2026/03/14 1:20 a.m.4 views

Chromium: CVE-2026-3927 Incorrect security UI in PictureInPicture

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS5.8AI score0.00177EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2026/03/13 8:44 a.m.1 views

CVE-2026-3942

An incorrect security ui flaw was found in the PictureInPicture component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=475238879...

4.3CVSS5.7AI score0.00177EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/03/11 10:4 p.m.5 views

CVE-2026-3927

Incorrect security UI in PictureInPicture in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00177EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVEadded 2026/03/11 10:4 p.m.2 views

CVE-2026-3927

Incorrect security UI in PictureInPicture in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS5.3AI score0.00177EPSS
Exploits0
SUSE CVE
SUSE CVEadded 2026/02/13 12:26 a.m.1 views

SUSE CVE-2026-2318

Inappropriate implementation in PictureInPicture in Google Chrome prior to 145.0.7632.45 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.6AI score0.00225EPSS
Exploits0References3
UbuntuCve
UbuntuCveadded 2026/02/11 7:15 p.m.4 views

CVE-2026-2318

Inappropriate implementation in PictureInPicture in Google Chrome prior to 145.0.7632.45 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.9AI score0.00225EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2026/02/11 6:8 p.m.4 views

CVE-2026-2318

Inappropriate implementation in PictureInPicture in Google Chrome prior to 145.0.7632.45 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

5.5AI score0.00225EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologiesadded 2026/01/01 12:0 a.m.4 views

PT-2026-7644

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 145.0.7632.45 Description A flaw exists in the PictureInPicture functionality of Google Chrome. This issue could allow a remote attacker to perform UI spoofing by convincing a user to interact with a specially...

7.8CVSS5.4AI score0.00225EPSS
Exploits0References10
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-33953

Malicious code in bioql PyPI...

4.3CVSS7.3AI score0.00801EPSS
Exploits0References7
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2023-33949

Malicious code in bioql PyPI...

4.3CVSS7.3AI score0.00645EPSS
Exploits0References7
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2024-50240

Malicious code in bioql PyPI...

4.3CVSS4.7AI score0.00286EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2024/11/14 12:0 a.m.18 views

Fedora 41 : chromium (2024-3a6f9ab958)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-3a6f9ab958 advisory. Update to 130.0.6723.58 High CVE-2024-9954: Use after free in AI Medium CVE-2024-9955: Use after free in Web Authentication Medium CVE-2024-9956:...

8.8CVSS6.5AI score0.06295EPSS
Exploits3References14
BDU FSTEC
BDU FSTECadded 2024/10/23 12:0 a.m.4 views

The vulnerability of the PictureInPicture component in Google Chrome and Microsoft Edge browsers allows attackers to perform spoofing attacks.

The vulnerability of the PictureInPicture component in Google Chrome and Microsoft Edge is related to improperly implemented security checks for standard elements. Exploiting this vulnerability allows a malicious actor to carry out spear-phishing attacks using a specially created HTML page...

5CVSS5.5AI score0.00286EPSS
Exploits0References13Affected Software7
OpenVAS
OpenVASadded 2024/10/21 12:0 a.m.13 views

Fedora: Security Advisory (FEDORA-2024-c0b1d26de3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.9AI score0.06295EPSS
Exploits3References16
OpenVAS
OpenVASadded 2024/10/21 12:0 a.m.15 views

Fedora: Security Advisory (FEDORA-2024-4d80983af6)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.9AI score0.06295EPSS
Exploits3References16
OpenVAS
OpenVASadded 2024/10/19 12:0 a.m.19 views

openSUSE Security Advisory (openSUSE-SU-2024:0337-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.3AI score0.06295EPSS
Exploits3References3
Microsoft CVE
Microsoft CVEadded 2024/10/17 7:0 a.m.133 views

Chromium: CVE-2024-9958 Inappropriate implementation in PictureInPicture

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS6.9AI score0.00286EPSS
Exploits0
CNVD
CNVDadded 2024/10/17 12:0 a.m.7 views

Unspecified Vulnerability in Google Chrome (CNVD-2024-44479)

Google Chrome is a web browser from Google, an American company. A security vulnerability exists in Google Chrome prior to version 130.0.6723.58, which stems from an improper implementation of PictureInPicture, and can be exploited by remote attackers to perform UI spoofing via a crafted HTML pag...

4.3CVSS6AI score0.00286EPSS
Exploits0References1
OSV
OSVadded 2024/10/15 9:15 p.m.2 views

DEBIAN-CVE-2024-9958

Inappropriate implementation in PictureInPicture in Google Chrome prior to 130.0.6723.58 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS4.9AI score0.00286EPSS
Exploits0References1
Rows per page
Query Builder