Lucene search
K

20 matches found

Microsoft CVE
Microsoft CVE
added 2026/06/09 2:0 p.m.10 views

Chromium: CVE-2026-11034 Insufficient validation of untrusted input in Tab Group Sync

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.1CVSS5.4AI score0.00182EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/06/07 4:48 a.m.9 views

CVE-2026-11034

An insufficient validation of untrusted input flaw was found in the Tab Group Sync component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=497934980...

8.1CVSS5.4AI score0.00182EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2026/06/07 4:47 a.m.8 views

SUSE CVE-2026-11034

Insufficient validation of untrusted input in Tab Group Sync in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via malicious network traffic. Chromium security severity: Medium...

6.1CVSS5.6AI score0.00182EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/05 12:31 a.m.8 views

EUVD-2026-34483

Insufficient validation of untrusted input in Tab Group Sync in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via malicious network traffic. Chromium security severity: Medium...

6AI score0.00182EPSS
Exploits0References3
OSV
OSV
added 2026/06/04 11:17 p.m.6 views

DEBIAN-CVE-2026-11034

Insufficient validation of untrusted input in Tab Group Sync in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via malicious network traffic. Chromium security severity: Medium...

6.1CVSS5.6AI score0.00182EPSS
Exploits0References1
NVD
NVD
added 2026/06/04 11:17 p.m.6 views

CVE-2026-11034

Insufficient validation of untrusted input in Tab Group Sync in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via malicious network traffic. Chromium security severity: Medium...

6.1CVSS0.00182EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/06/04 11:4 p.m.6 views

CVE-2026-11034

Insufficient validation of untrusted input in Tab Group Sync in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via malicious network traffic. Chromium security severity: Medium...

5.6AI score0.00182EPSS
Exploits0References2
CVE
CVE
added 2026/06/04 11:4 p.m.20 views

CVE-2026-11034

The CVE-2026-11034 entry affects Google Chrome on Android, specifically the Tab Group Sync feature. The issue is insufficient validation of untrusted input, allowing a remote attacker to inject arbitrary scripts or HTML (UXSS) via malicious network traffic. Affects Chrome versions before 149.0.78...

6.1CVSS6AI score0.00182EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/06/04 11:4 p.m.30 views

CVE-2026-11034

Insufficient validation of untrusted input in Tab Group Sync in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via malicious network traffic. Chromium security severity: Medium...

0.00182EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/06/04 11:4 p.m.7 views

CVE-2026-11034

Insufficient validation of untrusted input in Tab Group Sync in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via malicious network traffic. Chromium security severity: Medium...

6.1CVSS5.6AI score0.00182EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.14 views

PT-2026-46563

Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 149.0.7827.53 Description Insufficient validation of untrusted input in Tab Group Sync allows a remote attacker to inject arbitrary scripts or HTML, leading to Universal Cross-Site Scripting UXSS, via...

9.6CVSS6AI score0.00493EPSS
Exploits0References437
CNNVD
CNNVD
added 2024/02/23 12:0 a.m.5 views

Limbas SQL Injection Vulnerability

Limbas is a database framework written in PHP by the German company Limbas. It is used to create database-driven business applications. A SQL injection vulnerability exists in Limbas version 5.2.14, which stems from the fact that incorrect manipulation of the parameter tabgroup can lead to sql...

6.6CVSS8.3AI score0.00686EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2024/02/22 12:0 a.m.5 views

PT-2024-18303 · Limbas · Limbas

Name of the Vulnerable Software and Affected Versions: Limbas version 5.2.14 Description: A vulnerability was found in an unknown functionality of the file main admin.php. The manipulation of the tab group argument leads to sql injection. The complexity of an attack is rather high, and the...

6.6CVSS7.3AI score0.00686EPSS
Exploits1References7
BDU FSTEC
BDU FSTEC
added 2022/04/13 12:0 a.m.3 views

The vulnerability in the implementation of the “Google Chrome Tab Group” extension allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the “Google Chrome Tab Group” extension relates to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information through a specially created web page...

7.8CVSS7AI score0.00733EPSS
Exploits1References9Affected Software5
CNNVD
CNNVD
added 2022/04/11 12:0 a.m.4 views

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser from Google, Inc.V8 is an open source JavaScript engine. Google Chrome suffers from a resource management error vulnerability that stems from the presence of post-release reuse in the Software tab group...

8.8CVSS7.5AI score0.00733EPSS
Exploits1References9
CNNVD
CNNVD
added 2022/04/11 12:0 a.m.5 views

Google Chrome 安全漏洞

Google Chrome is a web browser from Google, Inc. and V8 is an open source JavaScript engine. A security vulnerability exists in Google Chrome that originates from the presence of post-release reuse in the Software tab group...

8.8CVSS7.5AI score0.00787EPSS
Exploits1References9
BDU FSTEC
BDU FSTEC
added 2021/08/10 12:0 a.m.4 views

The vulnerability of the Tab Group component in Google Chrome and Microsoft Edge allows a hacker to execute arbitrary code.

The vulnerability of Tab Group components in Google Chrome and Microsoft Edge stems from the operation of processing unreliable HTML content within the data buffer, which allows operations to be performed beyond the allowed limits. Exploiting this vulnerability can enable a remote attacker to...

10CVSS7.2AI score0.02002EPSS
Exploits1References8Affected Software3
BDU FSTEC
BDU FSTEC
added 2021/07/13 12:0 a.m.6 views

The vulnerability in the implementation of the “Tabs Group” extension for the Google Chrome browser allows a hacker to trigger a service failure.

The vulnerability of the “Google Chrome Tab Group” extension relates to the use of memory after it is freed. Exploiting this vulnerability could allow a malicious actor, operating remotely, to cause a service failure through a specially created HTML page...

8.8CVSS7.6AI score0.11747EPSS
Exploits0References16Affected Software7
OpenVAS
OpenVAS
added 2021/05/17 12:0 a.m.23 views

openSUSE: Security Advisory for chromium (openSUSE-SU-2021:0742-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS8.8AI score0.02517EPSS
Exploits14References2
BDU FSTEC
BDU FSTEC
added 2021/03/30 12:0 a.m.4 views

The vulnerability in the implementation of the “Tabs Group” extension for the Google Chrome browser allows a hacker to trigger a service failure.

The vulnerability of the “Google Chrome Tab Group” extension is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause a service failure through a specially created HTML page...

7.3CVSS8AI score0.01475EPSS
Exploits1References10Affected Software6
Rows per page
Query Builder