Lucene search
+L

305 matches found

nvd
nvd
added 2026/05/20 8:16 p.m.20 views

CVE-2026-9116

Insufficient policy enforcement in ServiceWorker in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

4.3CVSS0.00218EPSS
Exploits0References2
ubuntucve
ubuntucve
added 2026/05/20 8:16 p.m.14 views

CVE-2026-9116

Insufficient policy enforcement in ServiceWorker in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

4.3CVSS5.8AI score0.00218EPSS
Exploits0References3
attackerkb
attackerkb
added 2026/05/20 7:12 p.m.9 views

CVE-2026-9116

Insufficient policy enforcement in ServiceWorker in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

4.3CVSS5.8AI score0.00218EPSS
Exploits0References3Affected Software1
euvd
euvd
added 2026/05/20 7:12 p.m.11 views

EUVD-2026-31166

Insufficient policy enforcement in ServiceWorker in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

4.3CVSS5.8AI score0.00218EPSS
Exploits0References2
cve
cve
added 2026/05/20 7:12 p.m.188 views

CVE-2026-9116

CVE-2026-9116: In Google Chrome, insufficient policy enforcement in ServiceWorker before version 148.0.7778.179 allows a remote attacker to leak cross-origin data via a crafted HTML page. Affects Chrome’s ServiceWorker component; impact stated as Confidentiality impact (partial) with a CVSS v3.1 ...

4.3CVSS5.8AI score0.00218EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2026/05/20 7:12 p.m.35 views

CVE-2026-9116

Insufficient policy enforcement in ServiceWorker in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

0.00218EPSS
Exploits0References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Chromium

The use of after-free in Serviceworker in Google Chrome on desktops before version 140.0.7339.127 allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: Critical...

8.8CVSS5.9AI score0.00589EPSS
Exploits0References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Chromium

Type Confusion in the ServiceWorker API of Google Chrome prior to version 109.0.5414.119 allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: Medium...

8.8CVSS7.3AI score0.00678EPSS
Exploits0References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in Firefox and Thunderbird

When a ServiceWorker intercepted a request using FetchEvent, the origin of the request was lost after the ServiceWorker took control of it. This caused the SameSite cookie protections to be negated. This issue was addressed in the specifications, and later in various browsers. This vulnerability...

6.5CVSS6.7AI score0.00744EPSS
Exploits0References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability in Firefox

Under certain circumstances, the offline cache of a ServiceWorker may have been leaked to the file system when using private browsing mode. This vulnerability affects Firefox versions earlier than 111...

4.3CVSS6.5AI score0.00456EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/05/19 12:0 a.m.20 views

PT-2026-42236

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.179 Description Insufficient policy enforcement in ServiceWorker allows a remote attacker to leak cross-origin data through the use of a crafted HTML page. A ServiceWorker is a script that the browser...

4.3CVSS5.8AI score0.00218EPSS
Exploits0References23
cnnvd
cnnvd
added 2026/05/19 12:0 a.m.11 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.179 contained a security vulnerability. This vulnerability stemmed from insufficient execution of the ServiceWorker strategy, which could allow remote attackers to leak cross-source data through...

4.3CVSS5.9AI score0.00218EPSS
Exploits0References3
redhatcve
redhatcve
added 2026/05/08 10:34 p.m.9 views

CVE-2026-7963

An inappropriate implementation flaw was found in the ServiceWorker component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=497250399...

8.3CVSS5.7AI score0.00222EPSS
Exploits0References5
redhatcve
redhatcve
added 2026/05/08 10:34 p.m.9 views

CVE-2026-7958

An inappropriate implementation flaw was found in the ServiceWorker component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=496632973...

6.6CVSS5.7AI score0.00142EPSS
Exploits0References5
susecve
susecve
added 2026/05/08 2:27 a.m.12 views

SUSE CVE-2026-7909

Inappropriate implementation in ServiceWorker in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Chromium security severity: High...

3.1CVSS5.7AI score0.00187EPSS
Exploits0References3
susecve
susecve
added 2026/05/08 2:27 a.m.13 views

SUSE CVE-2026-7922

Use after free in ServiceWorker in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS5.8AI score0.00206EPSS
Exploits0References3
mscve
mscve
added 2026/05/07 2:0 p.m.10 views

Chromium: CVE-2026-7922 Use after free in ServiceWorker

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.3CVSS5.8AI score0.00206EPSS
Exploits0
mscve
mscve
added 2026/05/07 2:0 p.m.11 views

Chromium: CVE-2026-7958 Inappropriate implementation in ServiceWorker

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

5.4CVSS5.8AI score0.00142EPSS
Exploits0
mscve
mscve
added 2026/05/07 2:0 p.m.10 views

Chromium: CVE-2026-7963 Inappropriate implementation in ServiceWorker

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.3CVSS5.8AI score0.00222EPSS
Exploits0
nessus
nessus
added 2026/05/07 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2026-7963

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in ServiceWorker in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to...

8.3CVSS5.8AI score0.00222EPSS
Exploits0References2
Rows per page
Query Builder