Lucene search
K

21 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.2 views

Astra Linux – Vulnerability in Chromium

Before version 141.0.7390.54, reading media content in Google Chrome allowed a remote attacker to potentially perform out-of-bounds memory access through a crafted HTML page. Chromium security severity: Medium...

7.5CVSS8.3AI score0.00356EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/01/13 2:1 p.m.4 views

Astra Linux – Vulnerability in Chromium

Side-channel information leakage in the Tab component of Google Chrome prior to version 141.0.7390.54 allowed a remote attacker who convinced a user to perform certain UI gestures to perform UI spoofing through a crafted HTML page. Chromium security severity: Medium...

5.4CVSS7.8AI score0.00219EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/11/11 1:45 p.m.2 views

CVE-2025-11209

Inappropriate implementation in Omnibox in Google Chrome on Android prior to 141.0.7390.54 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page. Chromium security severity: Medium...

8.2CVSS8.1AI score0.00243EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/11 1:45 p.m.4 views

CVE-2025-11213

Inappropriate implementation in Omnibox in Google Chrome on Android prior to 141.0.7390.54 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform domain spoofing via a crafted HTML page. Chromium security severity: Medium...

6.3CVSS8.2AI score0.00213EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/11 1:41 p.m.3 views

CVE-2025-11211

Out of bounds read in Media in Google Chrome prior to 141.0.7390.54 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. Chromium security severity: Medium...

7.5CVSS8.4AI score0.00356EPSS
Exploits0References6
NVD
NVD
added 2025/11/06 10:15 p.m.7 views

CVE-2025-11207

Side-channel information leakage in Storage in Google Chrome prior to 141.0.7390.54 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.00243EPSS
Exploits0References2
OSV
OSV
added 2025/11/06 10:15 p.m.5 views

CVE-2025-11207

Side-channel information leakage in Storage in Google Chrome prior to 141.0.7390.54 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.9AI score
Exploits0References2
NVD
NVD
added 2025/11/06 10:15 p.m.3 views

CVE-2025-11209

Inappropriate implementation in Omnibox in Google Chrome on Android prior to 141.0.7390.54 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page. Chromium security severity: Medium...

8.2CVSS0.00243EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/11/06 10:8 p.m.8 views

CVE-2025-11219

Use after free in V8 in Google Chrome prior to 141.0.7390.54 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. Chromium security severity: Low...

0.00257EPSS
Exploits0References2
CVE
CVE
added 2025/11/06 10:8 p.m.26 views

CVE-2025-11215

CVE-2025-11215 refers to an off-by-one error in the V8 engine of Google Chrome/Chromium that allows a remote attacker to cause an out-of-bounds memory read via a crafted HTML page. The documented impact is a medium severity (CVSS 3.1: 4.3) with network attack vector, no privileges, and user inter...

4.3CVSS5.8AI score0.00239EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2025/11/06 10:8 p.m.7 views

CVE-2025-11216

Inappropriate implementation in Storage in Google Chrome on Mac prior to 141.0.7390.54 allowed a remote attacker to perform domain spoofing via a crafted video file. Chromium security severity: Low...

6.3CVSS8.4AI score0.00222EPSS
Exploits0
Cvelist
Cvelist
added 2025/11/06 10:8 p.m.7 views

CVE-2025-11211

Out of bounds read in Media in Google Chrome prior to 141.0.7390.54 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. Chromium security severity: Medium...

0.00356EPSS
Exploits0References2
CVE
CVE
added 2025/11/06 10:8 p.m.17 views

CVE-2025-11212

CVE-2025-11212 concerns an inappropriate Media module implementation in Google Chrome on Windows, enabling domain spoofing when a user is induced to perform specific UI gestures on a crafted HTML page. The connected Fedora advisories indicate Chromium-based updates addressing this vulnerability: ...

6.3CVSS5.7AI score0.00198EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2025/11/06 10:8 p.m.4 views

CVE-2025-11208

Inappropriate implementation in Media in Google Chrome prior to 141.0.7390.54 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

6.3CVSS7AI score0.00213EPSS
Exploits0
Cvelist
Cvelist
added 2025/11/06 10:8 p.m.14 views

CVE-2025-11207

Side-channel information leakage in Storage in Google Chrome prior to 141.0.7390.54 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. Chromium security severity: Medium...

0.00243EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2025/11/06 10:8 p.m.4 views

CVE-2025-11206

Heap buffer overflow in Video in Google Chrome prior to 141.0.7390.54 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

7.1CVSS7.8AI score0.00212EPSS
Exploits0
CVE
CVE
added 2025/11/06 10:8 p.m.37 views

CVE-2025-11205

The CVE-2025-11205 entry concerns a heap buffer overflow in WebGPU plumbed through Google Chrome/Chromium before version 141.0.7390.54. The root cause is a WebGPU heap overflow that allows a renderer process compromise to potentially trigger heap corruption via a crafted HTML page. Documented imp...

8.8CVSS6.8AI score0.00311EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/10/09 12:0 a.m.6 views

Fedora 41 : chromium (2025-2d4d91b00a)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-2d4d91b00a advisory. Update to 141.0.7390.54 High CVE-2025-11205: Heap buffer overflow in WebGPU High CVE-2025-11206: Heap buffer overflow in Video Medium CVE-2025-11207...

8.8CVSS8.6AI score0.00356EPSS
Exploits0References13
OpenVAS
OpenVAS
added 2025/10/06 12:0 a.m.4 views

Google Chrome Security Update (stable-channel-update-for-desktop_30-2025-09) - Linux

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...

8.8CVSS7.1AI score0.00356EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/10/01 11:25 p.m.4 views

SUSE CVE-2025-11209

Inappropriate implementation in Omnibox in Google Chrome on Android prior to 141.0.7390.54 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page. Chromium security severity: Medium...

8.2CVSS6.5AI score0.00243EPSS
Exploits0References3
Rows per page
Query Builder