Lucene search
K

62 matches found

NVD
NVD
added 6 days ago7 views

CVE-2026-15193

A vulnerability was determined in AidanPark openclaw-android up to 0.4.0. The affected element is an unknown function of the file android/app/src/main/java/com/openclaw/android/JsBridge.kt of the component Android WebView Bridge. This manipulation causes os command injection. The attack can only ...

5.3CVSS0.00683EPSS
Exploits0References7
EUVD
EUVD
added 6 days ago8 views

EUVD-2026-42626

A vulnerability was determined in AidanPark openclaw-android up to 0.4.0. The affected element is an unknown function of the file android/app/src/main/java/com/openclaw/android/JsBridge.kt of the component Android WebView Bridge. This manipulation causes os command injection. The attack can only ...

5.3CVSS5.7AI score0.00683EPSS
Exploits0References7
OSV
OSV
added 6 days ago2 views

CVE-2026-15193 AidanPark openclaw-android Android WebView Bridge JsBridge.kt os command injection

A vulnerability was determined in AidanPark openclaw-android up to 0.4.0. The affected element is an unknown function of the file android/app/src/main/java/com/openclaw/android/JsBridge.kt of the component Android WebView Bridge. This manipulation causes os command injection. The attack can only ...

4.8CVSS5.7AI score0.00683EPSS
Exploits0References9
CVE
CVE
added 2026/06/30 10:38 p.m.20 views

CVE-2026-13964

CVE-2026-13964 affects WebView in Google Chrome on Android. The vulnerability is due to insufficient policy enforcement that allowed bypassing navigation restrictions via a crafted HTML page. Impact is a medium severity remote issue. The documented fix is Chrome version 150.0.7871.47 or later; up...

6.5CVSS5.8AI score0.00277EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2026/06/30 10:38 p.m.8 views

CVE-2026-13924

Insufficient validation of untrusted input in WebView in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.8AI score0.00319EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/06/24 6:43 p.m.5 views

CVE-2026-13037

Use after free in WebView in Google Chrome on Android prior to 149.0.7827.197 allowed a local attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

7.8CVSS6.2AI score0.00105EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/06/24 6:43 p.m.43 views

CVE-2026-13037

Use after free in WebView in Google Chrome on Android prior to 149.0.7827.197 allowed a local attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

0.00105EPSS
Exploits0References2
CVE
CVE
added 2026/06/17 1:38 a.m.51 views

CVE-2026-12448

CVE-2026-12448 affects WebView in Google Chrome on Android prior to 149.0.7827.155. The issue is an inappropriate implementation in WebView that allows a remote attacker to escalate privileges via a crafted HTML page. The vulnerability is tied to Chromium WebView behavior and is rated High severi...

8.8CVSS5.4AI score0.00255EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/17 1:38 a.m.28 views

CVE-2026-12438

The CVE-2026-12438 entry corresponds to an issue in WebView for Google Chrome on Android, where an attacker who compromised the renderer process could escape the browser sandbox via a crafted HTML page. Affected product/vector: Android WebView in Chrome; root cause: inappropriate implementation i...

8.3CVSS5.4AI score0.00207EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2026/06/17 1:38 a.m.11 views

CVE-2026-12438

Inappropriate implementation in WebView in Google Chrome on Android prior to 149.0.7827.155 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

8.3CVSS5.4AI score0.00207EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/06/17 12:0 a.m.17 views

PT-2026-50198

Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 149.0.7827.155 Description An inappropriate implementation in the WebView component allows a remote attacker to perform privilege escalation by using a crafted HTML page. Recommendations Update Google...

9.6CVSS5.9AI score0.00601EPSS
Exploits0References39
SUSE CVE
SUSE CVE
added 2026/06/07 4:43 a.m.8 views

SUSE CVE-2026-11167

Inappropriate implementation in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

9.6CVSS5.5AI score0.00234EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/05 12:31 a.m.12 views

EUVD-2026-34756

Inappropriate implementation in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform privilege escalation via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00206EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/05 12:31 a.m.15 views

EUVD-2026-34639

Insufficient policy enforcement in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00152EPSS
Exploits0References3
OSV
OSV
added 2026/06/04 11:17 p.m.8 views

DEBIAN-CVE-2026-11072

Use after free in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to execute arbitrary code via a malicious file. Chromium security severity: Medium...

7.8CVSS6AI score0.00107EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/04 11:6 p.m.8 views

CVE-2026-11295

Inappropriate implementation in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform privilege escalation via a crafted HTML page. Chromium security severity: Low...

8.8CVSS5.5AI score0.00206EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/06/04 11:6 p.m.50 views

CVE-2026-11290

Integer overflow in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to cause a denial of service via a malicious file. Chromium security severity: Low...

0.00066EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/06/04 11:6 p.m.10 views

CVE-2026-11290

Integer overflow in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to cause a denial of service via a malicious file. Chromium security severity: Low...

5CVSS5.5AI score0.00066EPSS
Exploits0
CVE
CVE
added 2026/06/04 11:6 p.m.58 views

CVE-2026-11290

CVE-2026-11290 describes an integer overflow in Android WebView used by Google Chrome, affecting Chrome on Android up to version before 149.0.7827.53. The vulnerability allows a local attacker to trigger a denial of service by processing a malicious file. The available description states the issu...

5CVSS5.9AI score0.00066EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/04 11:4 p.m.8 views

CVE-2026-11097

Inappropriate implementation in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.5AI score0.00229EPSS
Exploits0References2
Rows per page
Query Builder