Lucene search
K

23 matches found

EUVD
EUVD
added 7 hours ago2 views

EUVD-2026-40840

Inappropriate implementation in Glic in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

5.8AI score
Exploits0References3
EUVD
EUVD
added 7 hours ago4 views

EUVD-2026-40581

Inappropriate implementation in Autofill in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.2CVSS5.8AI score
Exploits0References3
NVD
NVD
added yesterday2 views

CVE-2026-14137

Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.2CVSS
Exploits0References2
Cvelist
Cvelist
added yesterday8 views

CVE-2026-14138

Inappropriate implementation in WebAppInstalls in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

Exploits0References2
CVE
CVE
added yesterday6 views

CVE-2026-13802

CVE-2026-13802 : Use-after-free in Chrome’s Views (Chromium) allows remote code execution via a crafted HTML page when a user performs specific UI gestures. Affected product: Google Chrome. Root cause: Use-after-free in Views. Vulnerable version: prior to 150.0.7871.47. Remediation: Chrome 150.0....

6.2AI score
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/04 11:5 p.m.6 views

CVE-2026-11228

Inappropriate implementation in File Input in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00154EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/04 11:5 p.m.5 views

CVE-2026-11228

Inappropriate implementation in File Input in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

5.5AI score0.00154EPSS
Exploits0References2
CVE
CVE
added 2026/05/28 10:25 p.m.32 views

CVE-2026-9963

Uninitialized Use in iOS Google Chrome (on iOS) prior to version 148.0.7778.216 allows a remote attacker to trigger arbitrary code execution inside the Chrome sandbox via a crafted HTML page after convincing a user to perform specific UI gestures. Affected product: Google Chrome on iOS; root caus...

7.5CVSS6.2AI score0.00278EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2026/05/14 8:17 p.m.9 views

CVE-2026-8515

Use after free in HID in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

8.3CVSS0.00207EPSS
Exploits0References2
NVD
NVD
added 2026/02/11 7:15 p.m.3 views

CVE-2026-2318

Inappropriate implementation in PictureInPicture in Google Chrome prior to 145.0.7632.45 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.00225EPSS
Exploits0References2
NVD
NVD
added 2025/11/10 8:15 p.m.4 views

CVE-2025-12444

Incorrect security UI in Fullscreen UI in Google Chrome prior to 142.0.7444.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.2CVSS0.00156EPSS
Exploits0References2
CVE
CVE
added 2025/11/10 8:0 p.m.13 views

CVE-2025-12434

CVE-2025-12434 affects Google Chrome/Chromium on Windows with a race in Storage that allows UI spoofing when a user performs specific UI gestures on a crafted HTML page. The issue is fixed in Chromium/Chrome updates (e.g., Chromium 142.0.7444.162+; Chrome 142.0.7444.59+ in some channels). Impact ...

4.2CVSS5.5AI score0.0016EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/11/10 8:0 p.m.9 views

CVE-2025-12434

Race in Storage in Google Chrome on Windows prior to 142.0.7444.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

0.0016EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2025/11/06 10:8 p.m.4 views

CVE-2025-11208

Inappropriate implementation in Media in Google Chrome prior to 141.0.7390.54 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

6.3CVSS7AI score0.00192EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/10/31 12:34 a.m.2 views

SUSE CVE-2025-12434

Race in Storage in Google Chrome on Windows prior to 142.0.7444.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.2CVSS6.5AI score0.0016EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/10/31 12:34 a.m.3 views

SUSE CVE-2025-12440

Inappropriate implementation in Autofill in Google Chrome prior to 142.0.7444.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Low...

5.3CVSS6.2AI score0.00181EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/04/02 1:29 p.m.2 views

SUSE CVE-2025-3073

Inappropriate implementation in Autofill in Google Chrome prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

5.4CVSS6.4AI score0.0025EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/01/16 3:48 a.m.3 views

SUSE CVE-2025-0439

Race in Frames in Google Chrome prior to 132.0.6834.83 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS6.5AI score0.00268EPSS
Exploits1References5
OSV
OSV
added 2025/01/15 11:15 a.m.0 views

DEBIAN-CVE-2025-0442

Inappropriate implementation in Payments in Google Chrome prior to 132.0.6834.83 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS6.3AI score0.00333EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2024/04/18 2:31 a.m.4 views

SUSE CVE-2024-3846

Inappropriate implementation in Prompts in Google Chrome prior to 124.0.6367.60 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.3CVSS6.4AI score0.00717EPSS
Exploits1References6
Rows per page
Query Builder