Fedora 43 : chromium (2025-fade46c641)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-fade46c641 advisory. Update to 140.0.7339.127 CVE-2025-10200: Use after free in Serviceworker CVE-2025-10201: Inappropriate implementation in Mojo Tenable has extracted...

Linux Distros Unpatched Vulnerability : CVE-2025-10200

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in Serviceworker in Google Chrome on Desktop prior to 140.0.7339.127 allowed a remote attacker to potentially exploit heap corruption via a craft...

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2025:0344-1 Rating: important References: 1249388 Cross-References: CVE-2025-10200 CVE-2025-10201 Affected Products: openSUSE Backports SLE-15-SP6 An update that fixes two vulnerabilities is now available...

Fedora 42 : chromium (2025-c73675b464)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-c73675b464 advisory. Update to 140.0.7339.127 CVE-2025-10200: Use after free in Serviceworker CVE-2025-10201: Inappropriate implementation in Mojo Tenable has extracted...

Chromium: CVE-2025-10200 Use after free in Serviceworker

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

SUSE CVE-2025-10200

Use after free in Serviceworker in Google Chrome on Desktop prior to 140.0.7339.127 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

Use After Free

Overview Affected versions of this package are vulnerable to Use After Free via the Serviceworker process. An attacker can achieve heap corruption and potentially execute arbitrary code by enticing a user to visit a specially crafted HTML page. Remediation Upgrade chromium to version 140.0.7339.1...

CVE-2025-10200

Use after free in Serviceworker in Google Chrome on Desktop prior to 140.0.7339.127 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

CVE-2025-10200

Use after free in Serviceworker in Google Chrome on Desktop prior to 140.0.7339.127 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

CVE-2025-10200

Use after free in Serviceworker in Google Chrome on Desktop prior to 140.0.7339.127 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

CVE-2025-10200

CVE-2025-10200 corresponds to a use-after-free in Chrome’s ServiceWorker on Desktop before 140.0.7339.127, enabling heap corruption via a crafted HTML page. Affected product: Google Chrome (Desktop). Root cause: use-after-free in ServiceWorker. Impact: potential remote exploitation with heap corr...

Google Chrome < 140.0.7339.132 Multiple Vulnerabilities

The version of Google Chrome installed on the remote macOS host is prior to 140.0.7339.132. It is, therefore, affected by multiple vulnerabilities as referenced in the 202509stable-channel-update-for-desktop9 advisory. - Inappropriate implementation in Mojo in Google Chrome on Android, Linux,...

Google Chrome < 140.0.7339.127 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 140.0.7339.127. It is, therefore, affected by multiple vulnerabilities as referenced in the 202509stable-channel-update-for-desktop9 advisory. - Inappropriate implementation in Mojo in Google Chrome on Android, Linux,...

KLA87439 Multiple vulnerabilities in Google Chrome

Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Serviceworker can be exploited to cause denial of service or...

chromium -- multiple security fixes

Chrome Releases reports: This update includes 2 security fixes: 440454442 Critical CVE-2025-10200: Use after free in Serviceworker. Reported by Looben Yang on 2025-08-22 439305148 High CVE-2025-10201: Inappropriate implementation in Mojo. Reported by Sahan Fernando & Anon on 2025-08-18...

Linux Distros Unpatched Vulnerability : CVE-2018-6150

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incorrect handling of CORS in ServiceWorker in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

Linux Distros Unpatched Vulnerability : CVE-2020-26958

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Firefox did not block execution of scripts with incorrect MIME types when the response was intercepted and cached through a ServiceWorker. This could lead to a...

The vulnerability of the Application Programming Interface ServiceWorker implementation in Google Chrome browsers allows a perpetrator to compromise data integrity.

The vulnerability of the ServiceWorker application interface of Google Chrome browser is related to improper security checks for standard elements. Exploiting this vulnerability allows a malicious actor to compromise data integrity through a specially created HTML page...

CVE-2023-25750

Under certain circumstances, a ServiceWorker's offline cache may have leaked to the file system when using private browsing mode. This vulnerability affects Firefox 111...

CVE-2023-25750

Under certain circumstances, a ServiceWorker's offline cache may have leaked to the file system when using private browsing mode. This vulnerability affects Firefox 111...