Lucene search
+L

26 matches found

ptsecurity
ptsecurity
added 2 days ago6 views

PT-2026-58737

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.125 Description A use after free issue in Skia allows a remote attacker who has compromised the renderer process to potentially perform a sandbox escape. This is achieved by using a crafted HTML page...

8.3CVSS6.1AI score0.00244EPSS
Exploits0References4
nessus
nessus
added 2026/07/02 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-14410

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in Skia in Google Chrome prior to 150.0.7871.46 allowed a remote attacker who had compromised the renderer process to perform UI...

4.3CVSS6.2AI score0.0019EPSS
Exploits0References3
cve
cve
added 2026/07/01 10:21 p.m.38 views

CVE-2026-14414

CVE-2026-14414 — Insufficient validation of untrusted input in Skia within Google Chrome prior to 150.0.7871.46 allows a remote attacker who has already compromised the renderer process to exfiltrate potentially sensitive data from process memory via a crafted HTML page. The issue is tied to Skia...

5.3CVSS5.8AI score0.00235EPSS
Exploits0References2Affected Software1
nessus
nessus
added 2026/07/01 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-13971

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Uninitialized Use in Skia in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to obtain potentially...

5.3CVSS6.2AI score0.00271EPSS
Exploits0References3
cve
cve
added 2026/06/30 10:37 p.m.38 views

CVE-2026-13781

CVE-2026-13781 concerns an issue in Skia used by Google Chrome before 150.0.7871.47. The vulnerability stems from insufficient validation of untrusted input, which could enable a remote attacker who has already compromised the renderer process to potentially escape the browser sandbox via a craft...

9.6CVSS5.8AI score0.00314EPSS
Exploits0References2Affected Software1
astralinux
astralinux
added 2026/06/24 3:11 p.m.7 views

Astra Linux – Vulnerability in Chromium

In Skia, a vulnerability existed before version 147.0.7727.101 that allowed a remote attacker to obtain potentially sensitive information from process memory through a crafted file. Chromium security severity: Medium...

6.5CVSS6.6AI score0.00234EPSS
Exploits0References3
susecve
susecve
added 2026/06/07 4:49 a.m.14 views

SUSE CVE-2026-10977

Uninitialized Use in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

6.5CVSS5.5AI score0.00336EPSS
Exploits0References2
nessus
nessus
added 2026/06/05 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-10985

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Out of bounds read in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium securit...

6.5CVSS5.5AI score0.00308EPSS
Exploits0References2
cnnvd
cnnvd
added 2026/06/02 12:0 a.m.8 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a security vulnerability. This vulnerability stemmed from the improper initialization of Skia. A remote attacker could exploit this vulnerability to leak cross-source data through...

4.3CVSS5.4AI score0.00204EPSS
Exploits0References3
nessus
nessus
added 2026/05/29 12:0 a.m.14 views

Linux Distros Unpatched Vulnerability : CVE-2026-9981

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to obtain potentially sensitive information from process...

6.5CVSS5.4AI score0.00191EPSS
Exploits0References3
nvd
nvd
added 2026/05/28 11:16 p.m.10 views

CVE-2026-10020

Insufficient validation of untrusted input in Skia in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

8.3CVSS0.00198EPSS
Exploits0References2
nvd
nvd
added 2026/05/28 11:16 p.m.12 views

CVE-2026-10011

Inappropriate implementation in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

3.1CVSS0.00164EPSS
Exploits0References2
osv
osv
added 2026/05/28 11:16 p.m.10 views

UBUNTU-CVE-2026-10011

Inappropriate implementation in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

3.1CVSS5.8AI score0.00164EPSS
Exploits0References4
vulnrichment
vulnrichment
added 2026/05/28 10:25 p.m.9 views

CVE-2026-10011

Inappropriate implementation in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00164EPSS
Exploits0References2
alpinelinux
alpinelinux
added 2026/05/28 10:25 p.m.7 views

CVE-2026-10011

Inappropriate implementation in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

3.1CVSS5.5AI score0.00164EPSS
Exploits0
vulnrichment
vulnrichment
added 2026/05/28 10:25 p.m.8 views

CVE-2026-9981

Inappropriate implementation in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00191EPSS
Exploits0References2
debiancve
debiancve
added 2026/05/28 10:25 p.m.7 views

CVE-2026-9981

Inappropriate implementation in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

6.5CVSS5.8AI score0.00191EPSS
Exploits0
ptsecurity
ptsecurity
added 2026/05/27 12:0 a.m.13 views

PT-2026-44567

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.216 Description An inappropriate implementation in Skia allows a remote attacker who has compromised the renderer process to leak cross-origin data through the use of a crafted HTML page...

9.6CVSS5.8AI score0.00383EPSS
Exploits0References158
ptsecurity
ptsecurity
added 2026/05/27 12:0 a.m.18 views

PT-2026-44689

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.216 Description An inappropriate implementation in Skia allows a remote attacker to obtain potentially sensitive information from process memory by using a crafted HTML page. Recommendations Update to...

9.6CVSS5.8AI score0.00368EPSS
Exploits0References157
cve
cve
added 2026/05/06 6:12 p.m.18 views

CVE-2026-7923

CVE-2026-7923: Out of bounds write in Skia used by Google Chrome prior to 148.0.7778.96 allowed a renderer-compromised attacker to potentially escape the sandbox via a crafted HTML page. The vulnerability is described as a high-severity issue affecting Chrome’s Skia component with the fix shipped...

8.3CVSS5.8AI score0.00206EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder