Lucene search
+L

75 matches found

EUVD
EUVD
added 2026/06/05 12:31 a.m.13 views

EUVD-2026-34469

Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted XML file. Chromium security severity: Medium...

5.8AI score0.00221EPSS
Exploits0References3
NVD
NVD
added 2026/06/04 11:17 p.m.9 views

CVE-2026-11153

Side-channel information leakage in Forms in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

9.1CVSS0.00264EPSS
Exploits0References2
OSV
OSV
added 2026/06/04 11:17 p.m.5 views

DEBIAN-CVE-2026-11121

Insufficient validation of untrusted input in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.5AI score0.00229EPSS
Exploits0References1
OSV
OSV
added 2026/06/04 11:17 p.m.7 views

DEBIAN-CVE-2026-11106

Inappropriate implementation in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.5AI score0.00187EPSS
Exploits0References1
NVD
NVD
added 2026/06/04 11:17 p.m.10 views

CVE-2026-11020

Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted XML file. Chromium security severity: Medium...

6.5CVSS0.00221EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/04 11:5 p.m.7 views

CVE-2026-11156

Inappropriate implementation in CSS in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00152EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/04 11:5 p.m.10 views

CVE-2026-11138

Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.5AI score0.0025EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/06/04 11:5 p.m.10 views

CVE-2026-11134

Inappropriate implementation in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.5AI score0.00176EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/06/04 11:4 p.m.11 views

CVE-2026-11066

Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

9.6CVSS5.5AI score0.00253EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/04 11:4 p.m.11 views

CVE-2026-11044

Integer overflow in ANGLE in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.5AI score0.00285EPSS
Exploits0
CVE
CVE
added 2026/06/04 11:4 p.m.25 views

CVE-2026-11040

Summary : CVE-2026-11040 describes a use-after-free in ANGLE used by Google Chrome/Chromium prior to 149.0.7827.53. If a renderer process is compromised, an attacker could potentially escape the sandbox by loading a crafted HTML page. The vulnerability is categorized with a Chromium security seve...

8.3CVSS5.8AI score0.00222EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.17 views

PT-2026-46536

Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 149.0.7827.53 Description Insufficient validation of untrusted input in WebView allows a remote attacker who has compromised the renderer process to leak cross-origin data through a crafted HTML page...

9.6CVSS5.9AI score0.00411EPSS
Exploits0References436
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.16 views

PT-2026-46654

Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 149.0.7827.53 Description An inappropriate implementation in WebAPKs allows a remote attacker to perform domain spoofing through the use of a crafted WebAPK. Domain spoofing is a technique where an...

9.6CVSS5.9AI score0.00493EPSS
Exploits0References437
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.12 views

Astra Linux – Vulnerability in Chromium

The use of “after free” in QUIC in Google Chrome before version 124.0.6367.60 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6.7AI score0.0094EPSS
Exploits0References2
NVD
NVD
added 2026/05/14 8:17 p.m.18 views

CVE-2026-8570

Type Confusion in V8 in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.0025EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/14 7:52 p.m.10 views

EUVD-2026-30382

Integer overflow in ANGLE in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS5.9AI score0.00183EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/05/08 2:26 a.m.9 views

SUSE CVE-2026-7962

Insufficient policy enforcement in DirectSockets in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to perform arbitrary read/write via a crafted Chrome Extension. Chromium security severity: Medium...

5.4CVSS5.9AI score0.00171EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/06 9:31 p.m.5 views

EUVD-2026-28059

Inappropriate implementation in Companion in Google Chrome on Mac prior to 148.0.7778.96 allowed a remote attacker to perform OS-level privilege escalation via malicious network traffic. Chromium security severity: Medium...

8.1CVSS5.8AI score0.00237EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/06 6:13 p.m.7 views

CVE-2026-7993

Insufficient validation of untrusted input in Payments in Google Chrome on Android prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to spoof the contents of the Omnibox URL bar via a crafted HTML page. Chromium security severity: Medium...

4.2CVSS5.8AI score0.00186EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/05/06 6:13 p.m.38 views

CVE-2026-7994

Inappropriate implementation in Chromoting in Google Chrome on Windows prior to 148.0.7778.96 allowed a local attacker to perform OS-level privilege escalation via a malicious file. Chromium security severity: Medium...

0.00108EPSS
Exploits0References2
Rows per page
Query Builder