Lucene search
+L

15 matches found

astralinux
astralinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Chromium

The use of after free in Extensions in Google Chrome before version 139.0.7258.66 allowed a remote attacker to potentially exploit heap corruption through a crafted Chrome Extension. Chromium security severity: Medium...

8.8CVSS5.5AI score0.00313EPSS
Exploits0References2
cnvd
cnvd
added 2025/12/10 12:0 a.m.11 views

Google Chrome Information Disclosure Vulnerability (CNVD-2025-3038304)

Google Chrome is a web browser from Google, an American company. An information disclosure vulnerability exists in versions of Google Chrome prior to 139.0.7258.66, which stems from the disclosure of side-channel information during navigation and loading, and can be exploited by an attacker to...

4.7CVSS6.1AI score0.00168EPSS
Exploits0References1
susecve
susecve
added 2025/12/05 12:42 a.m.6 views

SUSE CVE-2025-13992

Side-channel information leakage in Navigation and Loading in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to bypass site isolation via a crafted HTML page. Chromium security severity: Medium...

4.7CVSS6.3AI score0.00168EPSS
Exploits0References3
euvd
euvd
added 2025/12/03 9:31 p.m.6 views

EUVD-2025-201092

Side-channel information leakage in Navigation and Loading in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to bypass site isolation via a crafted HTML page. Chromium security severity: Medium...

4.7CVSS5.7AI score0.00168EPSS
Exploits0References3
cve
cve
added 2025/12/03 7:9 p.m.28 views

CVE-2025-13992

CVE-2025-13992 affects Google Chrome (Chrome/Chromium) prior to version 139.0.7258.66, involving a side-channel information leakage during Navigation and Loading that could allow a remote attacker to bypass site isolation via a crafted HTML page. Affected component/behavior is described in public...

4.7CVSS5.8AI score0.00168EPSS
Exploits0References2Affected Software1
astralinux
astralinux
added 2025/11/01 10:54 a.m.4 views

Astra Linux – Vulnerability in Chromium

Inappropriate implementation in Permissions in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.5AI score0.00217EPSS
Exploits0References3
nessus
nessus
added 2025/08/09 12:0 a.m.6 views

Fedora 42 : chromium (2025-04158e05ef)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-04158e05ef advisory. Updated to 139.0.7258.66 CVE-2025-8576: Use after free in Extensions CVE-2025-8578: Use after free in Cast CVE-2025-8579: Inappropriate implementati...

8.8CVSS5.8AI score0.00326EPSS
Exploits0References9
osv
osv
added 2025/08/07 2:15 a.m.2 views

DEBIAN-CVE-2025-8580

Inappropriate implementation in Filesystems in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.3CVSS4.9AI score0.00234EPSS
Exploits0References1
osv
osv
added 2025/08/07 2:15 a.m.1 views

DEBIAN-CVE-2025-8583

Inappropriate implementation in Permissions in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.3CVSS4.9AI score0.00217EPSS
Exploits0References1
osv
osv
added 2025/08/07 2:15 a.m.1 views

DEBIAN-CVE-2025-8576

Use after free in Extensions in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to potentially exploit heap corruption via a crafted Chrome Extension. Chromium security severity: Medium...

8.8CVSS8.2AI score0.00313EPSS
Exploits0References1
osv
osv
added 2025/08/07 2:15 a.m.1 views

DEBIAN-CVE-2025-8577

Inappropriate implementation in Picture In Picture in Google Chrome prior to 139.0.7258.66 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS4.9AI score0.00234EPSS
Exploits0References1
attackerkb
attackerkb
added 2025/08/07 1:30 a.m.3 views

CVE-2025-8576

Use after free in Extensions in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to potentially exploit heap corruption via a crafted Chrome Extension. Chromium security severity: Medium...

8.8CVSS7.3AI score0.00313EPSS
Exploits0References3Affected Software1
alpinelinux
alpinelinux
added 2025/08/07 1:30 a.m.5 views

CVE-2025-8576

Use after free in Extensions in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to potentially exploit heap corruption via a crafted Chrome Extension. Chromium security severity: Medium...

8.8CVSS7.2AI score0.00313EPSS
Exploits0
susecve
susecve
added 2025/08/06 11:25 p.m.2 views

SUSE CVE-2025-8582

Insufficient validation of untrusted input in Core in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page. Chromium security severity: Low...

4.3CVSS6.5AI score0.00232EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2025/08/05 12:0 a.m.4 views

PT-2025-48984

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 139.0.7258.66 Description A flaw exists in Google Chrome’s Navigation and Loading functionality that allows a remote attacker to bypass site isolation. This is due to side-channel information leakage. The issue...

8.8CVSS6.1AI score0.00326EPSS
Exploits0References28
Rows per page
Query Builder