Lucene search
K

60 matches found

Cvelist
Cvelist
added 2026/06/04 11:4 p.m.43 views

CVE-2026-11007

Insufficient validation of untrusted input in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

0.00308EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.12 views

PT-2026-46608

Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 149.0.7827.53 Description A use after free issue in WebView allows a remote attacker to potentially exploit heap corruption, which occurs when a program continues to use a pointer after it has been...

9.6CVSS5.8AI score0.00985EPSS
Exploits0References436
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.7 views

PT-2026-46625

Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 149.0.7827.53 Description An inappropriate implementation in WebView allows a remote attacker to leak cross-origin data, which is information from a different origin than the one that initiated the...

9.6CVSS5.9AI score0.00985EPSS
Exploits0References437
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.7 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a security vulnerability. This vulnerability stemmed from insufficient execution of WebView policies on Android, which could allow remote attackers to leak cross-source data through...

4.3CVSS5.6AI score0.00152EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/29 12:38 a.m.9 views

EUVD-2026-33183

Use after free in WebView in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

5.8AI score0.00214EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/05/28 10:25 p.m.9 views

CVE-2026-9888

Use after free in WebView in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

8.3CVSS5.8AI score0.00214EPSS
Exploits0
Cvelist
Cvelist
added 2026/04/28 10:36 p.m.36 views

CVE-2026-7342

Use after free in WebView in Google Chrome on Android prior to 147.0.7727.138 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

0.00399EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2026/04/28 10:36 p.m.6 views

CVE-2026-7342

Use after free in WebView in Google Chrome on Android prior to 147.0.7727.138 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00399EPSS
Exploits0
NVD
NVD
added 2026/04/01 5:16 a.m.10 views

CVE-2026-5288

Use after free in WebView in Google Chrome on Android prior to 146.0.7680.178 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

9.6CVSS0.00248EPSS
Exploits0References2
CVE
CVE
added 2026/04/01 4:41 a.m.72 views

CVE-2026-5288

CVE-2026-5288 describes a use-after-free in WebView within Google Chrome on Android prior to 146.0.7680.178 that could allow a renderer-compromised attacker to potentially escape the sandbox via a crafted HTML page. The connected sources show Chromium/CEF/chromium package updates around version 1...

9.6CVSS5.9AI score0.00248EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2026/03/11 10:16 p.m.2 views

CVE-2026-3936

Use after free in WebView in Google Chrome on Android prior to 146.0.7680.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS0.00277EPSS
Exploits0References2
OSV
OSV
added 2026/03/11 10:16 p.m.10 views

CVE-2026-3936

Use after free in WebView in Google Chrome on Android prior to 146.0.7680.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS5.8AI score
Exploits0References2
OSV
OSV
added 2026/03/11 10:16 p.m.3 views

DEBIAN-CVE-2026-3936

Use after free in WebView in Google Chrome on Android prior to 146.0.7680.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS5.5AI score0.00277EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/06 12:0 a.m.4 views

PT-2026-1549

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 143.0.7499.192 Description Insufficient policy enforcement in the WebView tag allows a remote attacker to inject scripts or HTML into privileged pages via a crafted Chrome extension. This issue can be exploited ...

10CVSS6AI score0.06545EPSS
Exploits2References112
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2012-2631

Malware in sbrugna...

4.3CVSS6.4AI score0.01204EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-8831

Malware in sbrugna...

8.8CVSS6.1AI score0.04006EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2012-3961

Malware in sbrugna...

4.3CVSS6.4AI score0.01191EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2012-6636

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Android API before 17 does not properly restrict the WebView.addJavascriptInterface method, which allows remote attackers to execute arbitrary methods of Ja...

6.8CVSS8.3AI score0.4136EPSS
Exploits8References2
Vulnrichment
Vulnrichment
added 2023/10/19 10:8 p.m.11 views

CVE-2023-41898 Arbitrary URL load in Android WebView in `MyActivity.kt` in Home Assistant Companion for Android

Home assistant is an open source home automation. The Home Assistant Companion for Android app up to version 2023.8.2 is vulnerable to arbitrary URL loading in a WebView. This enables all sorts of attacks, including arbitrary JavaScript execution, limited native code execution, and credential...

8.6CVSS6.9AI score0.00164EPSS
Exploits0References1
CNVD
CNVD
added 2020/10/28 12:0 a.m.4 views

Microsoft Xamarin.Forms Spoofing Vulnerability

Microsoft Windows is a series of operating systems released by the American company Microsoft. A spoofing vulnerability exists in Microsoft Xamarin.Forms. The vulnerability stems from a default setting in Android WebView versions prior to 83.0.4103.106. An attacker can exploit the vulnerability t...

8.8CVSS7.3AI score0.04006EPSS
Exploits0References1
Rows per page
Query Builder