Lucene search
+L

108 matches found

euvd
euvd
added 2026/07/01 12:34 a.m.7 views

EUVD-2026-40761

Side-channel information leakage in WebAuthentication in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00276EPSS
Exploits0References3
nessus
nessus
added 2026/07/01 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-14074

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Side-channel information leakage in WebAuthentication in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a...

6.5CVSS6.2AI score0.00276EPSS
Exploits0References2
nvd
nvd
added 2026/06/30 11:17 p.m.8 views

CVE-2026-14074

Side-channel information leakage in WebAuthentication in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

6.5CVSS0.00276EPSS
Exploits0References2
nvd
nvd
added 2026/06/30 11:17 p.m.6 views

CVE-2026-13889

Side-channel information leakage in WebAuthentication in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.00296EPSS
Exploits0References2
debiancve
debiancve
added 2026/06/30 10:38 p.m.5 views

CVE-2026-13889

Side-channel information leakage in WebAuthentication in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.8AI score0.00296EPSS
Exploits0
cve
cve
added 2026/06/30 10:38 p.m.19 views

CVE-2026-13889

Consolidated analysis for CVE-2026-13889: A side-channel information leakage in WebAuthentication on Google Chrome for iOS (Chromium-based) affects the WebAuthentication component. The vulnerability allows a remote attacker to leak cross-origin data through a crafted HTML page. Affected product/a...

6.5CVSS5.8AI score0.00296EPSS
Exploits0References2Affected Software1
ptsecurity
ptsecurity
added 2026/06/30 12:0 a.m.16 views

PT-2026-54349

Name of the Vulnerable Software and Affected Versions Google Chrome on iOS versions prior to 150.0.7871.47 Description Side-channel information leakage in WebAuthentication allows a remote attacker to leak cross-origin data through the use of a crafted HTML page. Recommendations Update Google...

9.8CVSS6AI score0.00413EPSS
Exploits0References447
mscve
mscve
added 2026/06/09 2:0 p.m.10 views

Chromium: CVE-2026-11263 Insufficient policy enforcement in WebAuthentication

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.5CVSS5.4AI score0.00256EPSS
Exploits0
redhatcve
redhatcve
added 2026/06/07 5:18 a.m.13 views

CVE-2026-11263

An insufficient policy enforcement flaw was found in the WebAuthentication component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=500044225...

6.8CVSS5.4AI score0.00256EPSS
Exploits0References5
redhatcve
redhatcve
added 2026/06/07 4:33 a.m.14 views

CVE-2026-10906

An use after free flaw was found in the WebAuthentication component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=503420438...

8.8CVSS5.4AI score0.00326EPSS
Exploits0References5
euvd
euvd
added 2026/06/05 12:31 a.m.12 views

EUVD-2026-34724

Insufficient policy enforcement in WebAuthentication in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00256EPSS
Exploits0References3
euvd
euvd
added 2026/06/05 12:31 a.m.11 views

EUVD-2026-34705

Insufficient validation of untrusted input in WebAuthentication in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00207EPSS
Exploits0References3
osv
osv
added 2026/06/05 12:17 a.m.7 views

DEBIAN-CVE-2026-11263

Insufficient policy enforcement in WebAuthentication in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

6.5CVSS5.5AI score0.00256EPSS
Exploits0References1
nessus
nessus
added 2026/06/05 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-10906

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in WebAuthentication in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to...

7.5CVSS5.6AI score0.00326EPSS
Exploits0References2
nvd
nvd
added 2026/06/04 11:16 p.m.9 views

CVE-2026-10906

Use after free in WebAuthentication in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

7.5CVSS0.00326EPSS
Exploits0References2
osv
osv
added 2026/06/04 11:16 p.m.5 views

DEBIAN-CVE-2026-10906

Use after free in WebAuthentication in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

7.5CVSS5.5AI score0.00326EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/06/04 11:6 p.m.7 views

CVE-2026-11263

Insufficient policy enforcement in WebAuthentication in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

6.5CVSS5.5AI score0.00256EPSS
Exploits0References3Affected Software1
vulnrichment
vulnrichment
added 2026/06/04 11:6 p.m.7 views

CVE-2026-11263

Insufficient policy enforcement in WebAuthentication in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

5.5AI score0.00256EPSS
Exploits0References2
cvelist
cvelist
added 2026/06/04 11:6 p.m.50 views

CVE-2026-11263

Insufficient policy enforcement in WebAuthentication in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

0.00256EPSS
Exploits0References2
cve
cve
added 2026/06/04 11:5 p.m.46 views

CVE-2026-11244

The CVE-2026-11244 entry concerns Google Chrome’s WebAuthentication input validation. Affected component: WebAuthentication in Chrome (prior to 149.0.7827.53). Root cause: insufficient validation of untrusted input, enabling a remote attacker who compromised a renderer process to bypass the same-...

3.1CVSS5.8AI score0.00207EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder