Lucene search
K

198 matches found

OSV
OSV
added 6 days ago3 views

DEBIAN-CVE-2026-13885

Use after free in Skia in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6.2AI score0.00379EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.10 views

Astra Linux – Vulnerability in Chromium

A out-of-bounds read in Skia using Google Chrome before version 146.0.7680.153 allowed a remote attacker to perform an out-of-bounds memory read through a crafted HTML page. Chromium security severity: High...

8.8CVSS5.8AI score0.00253EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2026/06/05 2:0 p.m.10 views

Chromium: CVE-2026-11057 Uninitialized Use in Skia

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.5CVSS5.4AI score0.0025EPSS
Exploits0
Cvelist
Cvelist
added 2026/06/04 11:4 p.m.37 views

CVE-2026-11024

Stack buffer overflow in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially exploit stack corruption via a crafted HTML page. Chromium security severity: Medium...

0.00352EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2026/05/29 11:21 p.m.18 views

Chromium: CVE-2026-9998 Integer overflow in Skia

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.3CVSS5.8AI score0.00173EPSS
Exploits0
OSV
OSV
added 2026/05/28 11:16 p.m.13 views

DEBIAN-CVE-2026-9983

Type Confusion in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.2AI score0.00255EPSS
Exploits0References1
OSV
OSV
added 2026/05/28 11:16 p.m.8 views

UBUNTU-CVE-2026-9923

Use after free in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.8AI score0.00253EPSS
Exploits0References4
NVD
NVD
added 2026/05/06 7:16 p.m.8 views

CVE-2026-7949

Out of bounds read in Skia in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted Chrome Extension. Chromium security severity: Medium...

3.1CVSS0.00179EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/05/06 7:16 p.m.7 views

CVE-2026-7949

Out of bounds read in Skia in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted Chrome Extension. Chromium security severity: Medium...

3.1CVSS5.8AI score0.00179EPSS
Exploits0References1
CVE
CVE
added 2026/05/06 6:12 p.m.90 views

CVE-2026-7949

CVE-2026-7949 : Out-of-bounds read in Skia used by Google Chrome before 148.0.7778.96 allows a remote attacker who has compromised the renderer process to leak cross-origin data via a crafted Chrome Extension. Affected: Google Chrome/Skia stack; Root cause: out-of-bounds read in Skia. Impact: pot...

3.1CVSS5.8AI score0.00179EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/15 7:4 p.m.3 views

CVE-2026-6364

Out of bounds read in Skia in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted file. Chromium security severity: Medium...

5.8AI score0.00234EPSS
Exploits0References3Affected Software1
NCSC
NCSC
added 2026/03/13 8:33 a.m.6 views

Vulnerabilities fixed in Google Chrome

Google has fixed vulnerabilities in Google Chrome versions before 146.0.7680.75. The vulnerabilities are in Google Chrome's V8 engine and Skia graphics library. The vulnerability in the V8 engine allows a malicious person to execute arbitrary code within the browser's sandboxed environment via a...

8.8CVSS6.1AI score0.02EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/11/18 12:0 a.m.4 views

Mozilla Thunderbird < 60.4

The version of Thunderbird installed on the remote Windows host is prior to 60.4. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2018-31 advisory. - A potential vulnerability leading to an integer overflow can occur during buffer size calculations for images when ...

9.8CVSS8AI score0.09646EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/11/18 12:0 a.m.3 views

Mozilla Firefox ESR < 60.0.2

The version of Firefox ESR installed on the remote Windows host is prior to 60.0.2. It is, therefore, affected by a vulnerability as referenced in the mfsa2018-14 advisory. - A heap buffer overflow can occur in the Skia library when rasterizing paths using a maliciously crafted SVG file with...

8.8CVSS8.7AI score0.07666EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2012-2864

Malware in sbrugna...

5CVSS9.3AI score0.01089EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-16968

Malware in sbrugna...

9.8CVSS9.2AI score0.0318EPSS
Exploits0References22
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-16881

Malware in sbrugna...

9.8CVSS9.2AI score0.04265EPSS
Exploits0References18
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-4345

Malware in sbrugna...

8.8CVSS9.2AI score0.01446EPSS
Exploits1References10
BDU FSTEC
BDU FSTEC
added 2025/01/27 12:0 a.m.7 views

The vulnerability of the Skia graphic library used by Google Chrome and Microsoft Edge allows attackers to perform cross-site scripting attacks.

The vulnerability of the Skia graphic library in Google Chrome and Microsoft Edge is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks using a specially created HTML page...

10CVSS7AI score0.00396EPSS
Exploits1References11Affected Software8
Positive Technologies
Positive Technologies
added 2025/01/14 12:0 a.m.9 views

PT-2025-1266 · Google +4 · Google Chrome +5

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 132.0.6834.83 Description: The issue is related to an integer overflow in the Skia library of Google Chrome, which could allow a remote attacker to potentially exploit heap corruption via a crafted HTML page. T...

10CVSS6.9AI score0.19272EPSS
Exploits27References269
Rows per page
Query Builder