Lucene search
K

12 matches found

Positive Technologies
Positive Technologies
added 2026/06/30 12:0 a.m.9 views

PT-2026-54196

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description Insufficient policy enforcement in Extensions allows a remote attacker who has compromised the renderer process to bypass site isolation by using a crafted HTML page. Site isolation is ...

9.6CVSS5.9AI score0.00413EPSS
Exploits0References438
EUVD
EUVD
added 2026/06/05 12:31 a.m.9 views

EUVD-2026-34658

Insufficient policy enforcement in Workers in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00201EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/05/14 8:17 p.m.8 views

CVE-2026-8572

Insufficient policy enforcement in Network in Google Chrome on Android prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

3.1CVSS5.8AI score0.0016EPSS
Exploits0References3
CVE
CVE
added 2026/05/06 6:13 p.m.24 views

CVE-2026-8019

CVE-2026-8019 describes insufficient policy enforcement in the Chrome WebApp, allowing a remote attacker to trigger UI spoofing through a crafted HTML page in Chrome versions before 148.0.7778.96. The root cause is restricted policy enforcement within WebApp handling. Impact is UI spoofing; no ex...

5.4CVSS5.8AI score0.00159EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/04/08 9:20 p.m.16 views

CVE-2026-5880

CVE-2026-5880 involves Google Chrome prior to 147.0.7727.55, where insufficient policy enforcement in the browser UI allowed a remote attacker who had compromised the renderer process to spoof the Omnibox (URL bar) contents via a crafted HTML page. The vulnerability affects the Chrome/Chromium UI...

4.3CVSS5.9AI score0.00191EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-6879

Malware in sbrugna...

6.1CVSS7.8AI score0.00856EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2023/02/15 3:31 a.m.4 views

SUSE CVE-2022-3308

Insufficient policy enforcement in developer tools in Google Chrome prior to 106.0.5249.62 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

7.4CVSS7.9AI score0.006EPSS
Exploits1References5
CNNVD
CNNVD
added 2021/01/20 12:0 a.m.7 views

Google Chromium Security Vulnerability

Google Chromium is an open-source web browser from Google, USA. A security vulnerability previously existed in Google Chromium version 88.0.4324.96, which stemmed from the discovery of insufficient security for policy enforcement in the program extension component...

8.8CVSS7.3AI score0.05878EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2019/12/16 9:9 a.m.3 views

chromium-browser: Insufficient policy enforcement in developer tools

Insufficient policy enforcement in developer tools in Google Chrome prior to 79.0.3945.79 allowed a local attacker to obtain potentially sensitive information from process memory via a crafted HTML page...

6.5CVSS7.3AI score0.01075EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2019/10/29 9:30 a.m.5 views

chromium-browser: Extensions can read some local files

Insufficient policy enforcement in extensions in Google Chrome prior to 77.0.3865.75 allowed an attacker who convinced a user to install a malicious extension to read local files via a crafted Chrome Extension...

6.5CVSS7.3AI score0.00593EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2019/10/29 9:30 a.m.4 views

chromium-browser: CSP bypass

Insufficient policy enforcement in navigations in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to bypass content security policy via a crafted HTML page...

6.5CVSS7.4AI score0.00732EPSS
Exploits0References5
CNVD
CNVD
added 2019/01/31 12:0 a.m.4 views

Google Chrome Insufficient Policy Enforcement Vulnerability

Chrome is a web browsing tool developed by Google. A policy enforcement insufficiency vulnerability exists in Canvas in versions of Google Chrome prior to 72.0.3626.81. An attacker can exploit this vulnerability to leak cross-origin data via a crafted HTML page...

6.5CVSS8.5AI score0.01632EPSS
Exploits0References1
Rows per page
Query Builder