Lucene search
K

203 matches found

Positive Technologies
Positive Technologies
added 2026/06/30 12:0 a.m.8 views

PT-2026-54187

Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 150.0.7871.47 Description Insufficient policy enforcement in WebXR allows a remote attacker to leak cross-origin data through a crafted HTML page. WebXR is an API that enables the creation of virtual...

9.6CVSS6AI score0.00413EPSS
Exploits0References437
Positive Technologies
Positive Technologies
added 2026/06/30 12:0 a.m.9 views

PT-2026-54296

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description Insufficient validation of untrusted input in WebXR allows a remote attacker who has compromised the renderer process to perform UI spoofing through a crafted HTML page. UI spoofing is ...

9.6CVSS6AI score0.00413EPSS
Exploits0References438
Positive Technologies
Positive Technologies
added 2026/06/30 12:0 a.m.7 views

PT-2026-54284

Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 150.0.7871.47 Description An uninitialized use in WebXR allows a remote attacker to obtain potentially sensitive information from process memory by using a crafted HTML page. Recommendations Update...

9.6CVSS6AI score0.00413EPSS
Exploits0References438
Positive Technologies
Positive Technologies
added 2026/06/30 12:0 a.m.8 views

PT-2026-54309

Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 150.0.7871.47 Description An inappropriate implementation in WebXR allows a remote attacker to bypass navigation restrictions by using a crafted HTML page. Recommendations Update Google Chrome on...

9.6CVSS6AI score0.00413EPSS
Exploits0References437
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Chromium

The use of after-free in WebXR in Google Chrome before version 114.0.5735.133 allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: High...

8.8CVSS7.3AI score0.13309EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/06/07 4:49 a.m.11 views

SUSE CVE-2026-10982

Use after free in WebXR in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00456EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/07 4:43 a.m.10 views

CVE-2026-10982

An use after free flaw was found in the WebXR component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=513774197...

8.8CVSS5.4AI score0.00456EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2026/06/05 2:0 p.m.17 views

Chromium: CVE-2026-10982 Use after free in WebXR

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS5.4AI score0.00456EPSS
Exploits0
EUVD
EUVD
added 2026/06/05 12:31 a.m.11 views

EUVD-2026-34431

Use after free in WebXR in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.2AI score0.00456EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/05 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-10982

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in WebXR in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page...

8.8CVSS5.8AI score0.00456EPSS
Exploits0References2
NVD
NVD
added 2026/06/04 11:17 p.m.8 views

CVE-2026-10982

Use after free in WebXR in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS0.00456EPSS
Exploits0References2
OSV
OSV
added 2026/06/04 11:17 p.m.6 views

DEBIAN-CVE-2026-10982

Use after free in WebXR in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00456EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/04 11:4 p.m.9 views

CVE-2026-10982

Use after free in WebXR in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

6.2AI score0.00456EPSS
Exploits0References2
CVE
CVE
added 2026/06/04 11:4 p.m.24 views

CVE-2026-10982

CVE-2026-10982 : A use-after-free in WebXR within Google Chrome before 149.0.7827.53 allows remote code execution via a crafted HTML page in a sandbox. Affected component is WebXR in Chrome/Chromium; root cause is use-after-free. Impact is high (arbitrary code execution, sandbox break). No exploi...

8.8CVSS6.2AI score0.00456EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2026/06/04 11:4 p.m.11 views

CVE-2026-10982

Use after free in WebXR in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00456EPSS
Exploits0
Cvelist
Cvelist
added 2026/06/04 11:4 p.m.35 views

CVE-2026-10982

Use after free in WebXR in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

0.00456EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/02 12:0 a.m.11 views

PT-2026-46511

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.53 Description A use after free issue exists in WebXR, which allows a remote attacker to execute arbitrary code within a sandbox by utilizing a specially crafted HTML page. Use after free is a memory...

9.6CVSS6.4AI score0.00456EPSS
Exploits0References437
SUSE CVE
SUSE CVE
added 2026/05/30 2:16 a.m.10 views

SUSE CVE-2026-9995

Use after free in WebXR in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.2AI score0.00296EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2026/05/29 11:21 p.m.14 views

Chromium: CVE-2026-9995 Use after free in WebXR

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS5.8AI score0.00296EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/05/29 12:19 a.m.15 views

CVE-2026-9995

An use after free flaw was found in the WebXR component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=513256572...

8.8CVSS5.7AI score0.00296EPSS
Exploits0References5
Rows per page
Query Builder