Lucene search
+L

1070 matches found

CVE
CVE
added 2026/06/04 11:3 p.m.33 views

CVE-2026-10923

CVE-2026-10923 describes a use-after-free vulnerability in the WebAppInstalls component of Google Chrome on Android, affecting versions prior to 149.0.7827.53. The flaw allows a local attacker to execute arbitrary code by interacting with a malicious file, representing a memory corruption issue w...

8.8CVSS6.2AI score0.00351EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.19 views

PT-2026-46452

Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 149.0.7827.53 Description A use after free issue exists in WebAppInstalls, which allows a local attacker to execute arbitrary code by utilizing a malicious file. Use after free is a memory corruption...

9.6CVSS6AI score0.00411EPSS
Exploits0References437
ATTACKERKB
ATTACKERKB
added 2026/06/02 3:57 p.m.10 views

CVE-2024-42206

HCL iReflection Third party vulnerable and outdated components issue was detected in the web application...

3.1CVSS5.8AI score0.00151EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.10 views

Google Chrome 输入验证错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 had a vulnerability related to input validation. This vulnerability originated from an improper implementation in the WebAppInstalls component, which could allow remote attackers with access t...

6.5CVSS5.4AI score0.00225EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/02 12:0 a.m.16 views

PT-2026-46537

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.53 Description Insufficient validation of untrusted input in WebAppInstalls allows a remote attacker who has compromised the renderer process to leak cross-origin data through a crafted HTML page...

9.6CVSS5.8AI score0.00493EPSS
Exploits0References437
Snyk
Snyk
added 2026/06/01 9:0 p.m.26 views

Malicious Package

Overview nottuff8 is a malicious package. This package is part of a malicious npm campaign that abused the registry to distribute ad-supported web proxy applications disguised as educational websites. The package contains web assets intended to bypass network restrictions and generate advertising...

9.8CVSS5.8AI score
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/05/30 2:16 a.m.18 views

SUSE CVE-2026-9987

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 148.0.7778.216 allowed a local attacker to execute arbitrary code via a malicious file. Chromium security severity: High...

7.8CVSS6.2AI score0.00099EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/30 2:16 a.m.17 views

SUSE CVE-2026-9990

Use after free in WebAppInstalls in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

7.5CVSS5.8AI score0.00173EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/29 12:38 a.m.18 views

EUVD-2026-33129

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 148.0.7778.216 allowed a local attacker to execute arbitrary code via a malicious file. Chromium security severity: High...

6.2AI score0.00099EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/29 12:7 a.m.12 views

CVE-2026-10005

An use after free flaw was found in the WebAppInstalls component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=513750089...

9.6CVSS5.7AI score0.00261EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/05/29 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2026-9990

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in WebAppInstalls in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gesture...

7.5CVSS6.2AI score0.00173EPSS
Exploits0References2
NVD
NVD
added 2026/05/28 11:16 p.m.16 views

CVE-2026-9990

Use after free in WebAppInstalls in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

7.5CVSS0.00173EPSS
Exploits0References2
OSV
OSV
added 2026/05/28 11:16 p.m.10 views

DEBIAN-CVE-2026-9990

Use after free in WebAppInstalls in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

7.5CVSS5.8AI score0.00173EPSS
Exploits0References1
NVD
NVD
added 2026/05/28 11:16 p.m.16 views

CVE-2026-9987

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 148.0.7778.216 allowed a local attacker to execute arbitrary code via a malicious file. Chromium security severity: High...

7.8CVSS0.00099EPSS
Exploits0References2
OSV
OSV
added 2026/05/28 11:16 p.m.13 views

DEBIAN-CVE-2026-9987

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 148.0.7778.216 allowed a local attacker to execute arbitrary code via a malicious file. Chromium security severity: High...

7.8CVSS6.2AI score0.00099EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/05/28 10:25 p.m.14 views

CVE-2026-10005

Use after free in WebAppInstalls in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

7.5CVSS6.2AI score0.00261EPSS
Exploits0
CVE
CVE
added 2026/05/28 10:25 p.m.31 views

CVE-2026-10005

Google Chrome on macOS is affected by CVE-2026-10005 via a use-after-free in the WebAppInstalls component. The flaw allows a remote attacker to execute arbitrary code if the user is persuaded to perform certain UI gestures on a crafted HTML page; impact is high. A patch exists in Chrome version 1...

7.5CVSS6.2AI score0.00261EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/05/28 10:25 p.m.27 views

CVE-2026-9990

CVE-2026-9990 affects Google Chrome on macOS in the WebAppInstalls component. The vulnerability is a use-after-free leading to potential heap corruption when a user is persuaded to perform specific UI gestures on a crafted HTML page. The issue is tied to Chromium code (upstream bug 513128608) and...

7.5CVSS5.8AI score0.00173EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2026/05/28 10:25 p.m.13 views

CVE-2026-9990

Use after free in WebAppInstalls in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

7.5CVSS5.8AI score0.00173EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/05/28 10:25 p.m.11 views

CVE-2026-9990

Use after free in WebAppInstalls in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00173EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder