Lucene search
K

438 matches found

EUVD
EUVD
added 14 hours ago3 views

EUVD-2026-40637

Insufficient policy enforcement in Payments in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.8AI score
Exploits0References3
NVD
NVD
added yesterday4 views

CVE-2026-13974

Integer overflow in Safe Browsing in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker to bypass navigation restrictions via a malicious file. Chromium security severity: Medium...

Exploits0References2
CVE
CVE
added yesterday4 views

CVE-2026-13963

Summary: CVE-2026-13963 involves an inappropriate implementation in Chrome’s DevTools that could leak cross-origin data via a crafted HTML page when a user performs specific UI gestures. Affected software/component: Google Chrome (DevTools). Root cause/technique: Implementational flaw in DevTools...

5.8AI score
Exploits0References2
Cvelist
Cvelist
added yesterday12 views

CVE-2026-13949

Insufficient policy enforcement in Payments in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

Exploits0References2
CVE
CVE
added yesterday4 views

CVE-2026-13871

CVE-2026-13871 affects Google Chrome: Insufficient policy enforcement in GuestView allows a remote attacker, who already compromised the renderer process, to bypass site isolation via a crafted HTML page. Affected: Chrome prior to 150.0.7871.47. Impact: bypass of site isolation; threat scoped to ...

5.7AI score
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.23 views

Astra Linux – Vulnerability in Chromium

The use of “after free” in Accessibility in Google Chrome before version 131.0.6778.69 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: Medium...

8.8CVSS7.7AI score0.00343EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability in Chromium

Inappropriate implementation in the iFrame Sandbox in Google Chrome prior to 107.0.5304.62 allowed a remote attacker to leak cross-origin data through a crafted HTML page. Chromium security severity: Medium...

4.3CVSS5.8AI score0.00538EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2026/06/06 2:53 a.m.9 views

SUSE CVE-2026-11051

Out of bounds read in ANGLE in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.5AI score0.00229EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/05 12:31 a.m.9 views

EUVD-2026-34652

Out of bounds memory access in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00272EPSS
Exploits0References3
NVD
NVD
added 2026/06/04 11:17 p.m.6 views

CVE-2026-11192

Insufficient validation of untrusted input in Password Manager in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via malicious network traffic. Chromium security severity: Medium...

4.3CVSS0.00176EPSS
Exploits0References2
NVD
NVD
added 2026/06/04 11:17 p.m.10 views

CVE-2026-10992

Insufficient data validation in Animation in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.00308EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/06/04 11:5 p.m.7 views

CVE-2026-11182

Inappropriate implementation in SVG in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.5AI score0.00247EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/02 12:0 a.m.18 views

PT-2026-46552

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.53 Description An inappropriate implementation in WebAppInstalls allows a remote attacker who has compromised the renderer process to bypass the same origin policy, which is a security mechanism that...

9.6CVSS5.9AI score0.00985EPSS
Exploits0References437
Cvelist
Cvelist
added 2026/05/28 10:25 p.m.33 views

CVE-2026-10019

Integer overflow in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

0.0019EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/05/20 8:16 p.m.8 views

CVE-2026-9122

Out of bounds read in GPU in Google Chrome on Mac prior to 148.0.7778.179 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.8AI score0.00269EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/05/14 7:52 p.m.9 views

CVE-2026-8563

Insufficient policy enforcement in IFrame Sandbox in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS5.8AI score0.00182EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/14 12:0 a.m.21 views

PT-2026-41108

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.168 Description Insufficient validation of untrusted input in Skia allows a remote attacker who has compromised the renderer process to perform an out of bounds memory write via a crafted print file...

8.8CVSS5.8AI score0.00498EPSS
Exploits0References86
SUSE CVE
SUSE CVE
added 2026/05/08 2:26 a.m.10 views

SUSE CVE-2026-7966

Insufficient validation of untrusted input in SiteIsolation in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Chromium security severity: Medium...

3.1CVSS5.7AI score0.00216EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/06 9:31 p.m.8 views

EUVD-2026-27967

Insufficient policy enforcement in Downloads in Google Chrome prior to 148.0.7778.96 allowed a local attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

4.4CVSS5.8AI score0.00119EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/05/06 6:12 p.m.30 views

CVE-2026-7952

Insufficient policy enforcement in Extensions in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to bypass discretionary access control via a crafted HTML page. Chromium security severity: Medium...

0.00172EPSS
Exploits0References2
Rows per page
Query Builder