26 matches found
PT-2026-58737
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.125 Description A use after free issue in Skia allows a remote attacker who has compromised the renderer process to potentially perform a sandbox escape. This is achieved by using a crafted HTML page...
Linux Distros Unpatched Vulnerability : CVE-2026-14410
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in Skia in Google Chrome prior to 150.0.7871.46 allowed a remote attacker who had compromised the renderer process to perform UI...
CVE-2026-14414
CVE-2026-14414 — Insufficient validation of untrusted input in Skia within Google Chrome prior to 150.0.7871.46 allows a remote attacker who has already compromised the renderer process to exfiltrate potentially sensitive data from process memory via a crafted HTML page. The issue is tied to Skia...
Linux Distros Unpatched Vulnerability : CVE-2026-13971
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Uninitialized Use in Skia in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to obtain potentially...
CVE-2026-13781
CVE-2026-13781 concerns an issue in Skia used by Google Chrome before 150.0.7871.47. The vulnerability stems from insufficient validation of untrusted input, which could enable a remote attacker who has already compromised the renderer process to potentially escape the browser sandbox via a craft...
Astra Linux – Vulnerability in Chromium
In Skia, a vulnerability existed before version 147.0.7727.101 that allowed a remote attacker to obtain potentially sensitive information from process memory through a crafted file. Chromium security severity: Medium...
SUSE CVE-2026-10977
Uninitialized Use in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: High...
Linux Distros Unpatched Vulnerability : CVE-2026-10985
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Out of bounds read in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium securit...
Google Chrome 安全漏洞
Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a security vulnerability. This vulnerability stemmed from the improper initialization of Skia. A remote attacker could exploit this vulnerability to leak cross-source data through...
Linux Distros Unpatched Vulnerability : CVE-2026-9981
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to obtain potentially sensitive information from process...
CVE-2026-10020
Insufficient validation of untrusted input in Skia in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-10011
Inappropriate implementation in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: High...
UBUNTU-CVE-2026-10011
Inappropriate implementation in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: High...
CVE-2026-10011
Inappropriate implementation in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: High...
CVE-2026-10011
Inappropriate implementation in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: High...
CVE-2026-9981
Inappropriate implementation in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...
CVE-2026-9981
Inappropriate implementation in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...
PT-2026-44567
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.216 Description An inappropriate implementation in Skia allows a remote attacker who has compromised the renderer process to leak cross-origin data through the use of a crafted HTML page...
PT-2026-44689
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.216 Description An inappropriate implementation in Skia allows a remote attacker to obtain potentially sensitive information from process memory by using a crafted HTML page. Recommendations Update to...
CVE-2026-7923
CVE-2026-7923: Out of bounds write in Skia used by Google Chrome prior to 148.0.7778.96 allowed a renderer-compromised attacker to potentially escape the sandbox via a crafted HTML page. The vulnerability is described as a high-severity issue affecting Chrome’s Skia component with the fix shipped...