Lucene search
K

70 matches found

EUVD
EUVD
added 16 hours ago5 views

EUVD-2026-40706

Use after free in Updater in Google Chrome on Windows prior to 150.0.7871.47 allowed a local attacker to perform OS-level privilege escalation via a malicious file. Chromium security severity: Medium...

5.8AI score
Exploits0References3
EUVD
EUVD
added 16 hours ago5 views

EUVD-2026-40605

Insufficient policy enforcement in Extensions in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Chromium security severity: Medium...

5.7AI score
Exploits0References3
NVD
NVD
added yesterday4 views

CVE-2026-13964

Insufficient policy enforcement in WebView in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

Exploits0References2
NVD
NVD
added yesterday3 views

CVE-2026-13944

Inappropriate implementation in DataTransfer in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

Exploits0References2
CVE
CVE
added yesterday4 views

CVE-2026-14014

Inappropriate implementation in Paint in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

5.8AI score
Exploits0References2
CVE
CVE
added yesterday5 views

CVE-2026-13977

CVE-2026-13977 describes an inappropriate implementation in Chrome’s HTMLParser that allows a remote attacker to perform UXSS (script/HTML injection) via a crafted HTML page, affecting Chrome versions prior to 150.0.7871.47. The vulnerability is driven by the HTMLParser handling vulnerabilities i...

6AI score
Exploits0References2
CVE
CVE
added yesterday4 views

CVE-2026-13922

CVE-2026-13922 : Side-channel information leakage in Paint in Google Chrome before 150.0.7871.47 allows a remote attacker to exfiltrate cross-origin data via a crafted HTML page. Affected software is Google Chrome (Paint component); root cause details are not fully enumerated in the provided docu...

5.8AI score
Exploits0References2
CVE
CVE
added yesterday3 views

CVE-2026-13865

Insufficient validation of untrusted input in Enterprise in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS5.8AI score
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.8 views

Astra Linux – Vulnerability in Chromium

The use of “after free” in QUIC in Google Chrome before version 124.0.6367.60 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6.7AI score0.0094EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability in Chromium

A heap buffer overflow in Media in Google Chrome prior to version 145.0.7632.109 allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: Medium...

8.8CVSS8.3AI score0.00493EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/06/07 4:46 a.m.7 views

SUSE CVE-2026-11077

Bad cast in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6AI score0.0028EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/06/07 4:45 a.m.9 views

SUSE CVE-2026-11092

Insufficient policy enforcement in DevTools in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to perform privilege escalation via a crafted Chrome Extension. Chromium security severity: Medium...

8.8CVSS5.4AI score0.00179EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/06/07 4:45 a.m.8 views

SUSE CVE-2026-11110

Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.5AI score0.0025EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/06/07 4:44 a.m.6 views

SUSE CVE-2026-11127

Inappropriate implementation in WebAPKs in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform domain spoofing via a crafted WebAPK. Chromium security severity: Medium...

6.5CVSS5.5AI score0.00168EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/05 12:31 a.m.9 views

EUVD-2026-34616

Inappropriate implementation in CSS in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00152EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/05 12:31 a.m.10 views

EUVD-2026-34469

Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted XML file. Chromium security severity: Medium...

5.8AI score0.00221EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/05 12:31 a.m.11 views

EUVD-2026-34466

Inappropriate implementation in Link Preview in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.0027EPSS
Exploits0References3
NVD
NVD
added 2026/06/04 11:17 p.m.6 views

CVE-2026-11153

Side-channel information leakage in Forms in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

9.1CVSS0.00264EPSS
Exploits0References2
OSV
OSV
added 2026/06/04 11:17 p.m.4 views

DEBIAN-CVE-2026-11121

Insufficient validation of untrusted input in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.5AI score0.00229EPSS
Exploits0References1
OSV
OSV
added 2026/06/04 11:17 p.m.5 views

DEBIAN-CVE-2026-11106

Inappropriate implementation in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.5AI score0.00187EPSS
Exploits0References1
Rows per page
Query Builder