Lucene search
K

51 matches found

EUVD
EUVD
added 5 days ago8 views

EUVD-2026-42748

Zen is a firefox-based browser. Prior to 1.21.5b, Zen's glance and split-view context-menu actions, Open link in glance and Split link in new tab, load a page-controlled link URL with the System principal instead of the originating page's principal, allowing a malicious web page to place a link t...

6AI score0.0029EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 5 days ago7 views

PT-2026-57005

Name of the Vulnerable Software and Affected Versions Zen versions prior to 1.21.5b Description In the glance and split-view context-menu actions, specifically Open link in glance and Split link in new tab, the browser loads a page-controlled link URL using the System principal instead of the...

6.1AI score0.0029EPSS
Exploits0References5
EUVD
EUVD
added 2026/07/01 12:34 a.m.7 views

EUVD-2026-40641

Inappropriate implementation in SplitView in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00262EPSS
Exploits0References3
NVD
NVD
added 2026/06/30 11:17 p.m.5 views

CVE-2026-14072

Inappropriate implementation in SplitView in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.3CVSS0.0019EPSS
Exploits0References2
NVD
NVD
added 2026/06/30 11:17 p.m.5 views

CVE-2026-14026

Incorrect security UI in SplitView in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.2CVSS0.00154EPSS
Exploits0References2
OSV
OSV
added 2026/06/30 11:17 p.m.3 views

DEBIAN-CVE-2026-13953

Inappropriate implementation in SplitView in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.8AI score0.00262EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/30 10:39 p.m.28 views

CVE-2026-14072

Inappropriate implementation in SplitView in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

0.0019EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/06/30 10:38 p.m.8 views

CVE-2026-13953

Inappropriate implementation in SplitView in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.8AI score0.00262EPSS
Exploits0
CVE
CVE
added 2026/06/30 10:38 p.m.19 views

CVE-2026-13953

Summary: CVE-2026-13953 affects Google Chrome’s SplitView implementation in Chromium. An insecure/incorrect SplitView behavior allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page. This is rated Medium (CVSSv3.1 base score 6....

6.5CVSS5.8AI score0.00262EPSS
Exploits0References2Affected Software1
AstraLinux
AstraLinux
added 2026/06/23 11:48 a.m.7 views

Astra Linux – Vulnerability in Chromium

The incorrect security UI in Split View in Google Chrome prior to version 144.0.7559.59 allowed a remote attacker to perform UI spoofing through a crafted HTML page. Chromium security severity: Low...

9.8CVSS5.5AI score0.00246EPSS
Exploits0References3
Redos
Redos
added 2026/03/10 12:0 a.m.7 views

ROS-20260310-73-0014

A vulnerability in the Split View component of Google Chrome browser is related to information presentation errors in the user interface. Exploitation of the vulnerability could allow a remote attacker to conduct spoofing attacks...

9.8CVSS5.8AI score0.00246EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/02/01 12:0 a.m.7 views

Fedora 43 : cef (2026-c5295ae3b9)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-c5295ae3b9 advisory. Update to cef-144.0.11+ge135be2 + chromium 144.0.7559.96 rhbz2432335 CVE-2026-1220: Race in V8 CVE-2026-0899: Out of bounds memory access in V8...

9.8CVSS5.5AI score0.00382EPSS
Exploits1References12
Redos
Redos
added 2026/01/22 12:0 a.m.6 views

ROS-20260122-73-0017

A vulnerability in the Split View component of Google Chrome browser is related to authentication bypass via spoofing. Exploitation of the vulnerability could allow a remote attacker to spoof the user interface using a specially crafted domain name...

4.3CVSS5.7AI score0.00174EPSS
Exploits0
NVD
NVD
added 2026/01/20 5:16 a.m.4 views

CVE-2026-0907

Incorrect security UI in Split View in Google Chrome prior to 144.0.7559.59 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

9.8CVSS0.00246EPSS
Exploits0References2
OSV
OSV
added 2026/01/20 5:16 a.m.6 views

CVE-2026-0907

Incorrect security UI in Split View in Google Chrome prior to 144.0.7559.59 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

9.8CVSS5.8AI score
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/01/20 4:14 a.m.4 views

CVE-2026-0907

Incorrect security UI in Split View in Google Chrome prior to 144.0.7559.59 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

5.4AI score0.00246EPSS
Exploits0References2
CVE
CVE
added 2026/01/20 4:14 a.m.30 views

CVE-2026-0907

CVE-2026-0907 affects Google Chrome/Chromium Split View UI, allowing UI spoofing via a crafted HTML page before version 144.0.7559.59. Connected documents confirm related Chromium/CEF updates in the 144.0.7559.x series across Fedora and ChromeOS advisories, indicating a patched release beyond 144...

9.8CVSS5.5AI score0.00246EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/01/20 4:14 a.m.17 views

CVE-2026-0907

Incorrect security UI in Split View in Google Chrome prior to 144.0.7559.59 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

0.00246EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/01/20 4:14 a.m.4 views

CVE-2026-0907

Incorrect security UI in Split View in Google Chrome prior to 144.0.7559.59 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

9.8CVSS5.5AI score0.00246EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2026/01/20 4:14 a.m.4 views

CVE-2026-0907

Incorrect security UI in Split View in Google Chrome prior to 144.0.7559.59 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

9.8CVSS5.3AI score0.00246EPSS
Exploits0
Rows per page
Query Builder