Lucene search
K

203825 matches found

CVE
CVE
added 4 days ago17 views

CVE-2026-14013

CVE-2026-14013 affects Google Chrome before version 150.0.7871.47, due to an inappropriate SVG implementation that enables UI spoofing via a crafted HTML page. The issue is documented across multiple feeds (NVD, Debian OSV, EUVD) with a Medium severity. The connected references indicate a patch/r...

4.3CVSS5.8AI score0.0019EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 4 days ago23 views

CVE-2026-14012

Side-channel information leakage in CSS in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

0.00205EPSS
Exploits0References2
Cvelist
Cvelist
added 4 days ago21 views

CVE-2026-14010

Uninitialized Use in Codecs in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

0.00302EPSS
Exploits0References2
CVE
CVE
added 4 days ago23 views

CVE-2026-14012

This CVE describes a side-channel information leakage in CSS within Google Chrome (Chromium) prior to version 150.0.7871.47. The vulnerability allows a remote attacker to exfiltrate potentially sensitive data from process memory via a crafted HTML page. The affected component is the CSS handling ...

5.3CVSS5.8AI score0.00205EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 4 days ago22 views

CVE-2026-14005

Use after free in Omnibox in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

0.00253EPSS
Exploits0References2
Cvelist
Cvelist
added 4 days ago20 views

CVE-2026-14004

Inappropriate implementation in CSS in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

0.00299EPSS
Exploits0References2
CVE
CVE
added 4 days ago10 views

CVE-2026-14002

CVE-2026-14002 affects Google Chrome Geolocation in Chromium, prior to 150.0.7871.47. Root cause is an inappropriate Geolocation implementation that lets a remote attacker who has compromised the renderer process perform UI spoofing via a crafted HTML page. Impact is UI spoofing with possible hig...

6.5CVSS5.8AI score0.00218EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 4 days ago21 views

CVE-2026-14001

Inappropriate implementation in Network in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: Medium...

0.00171EPSS
Exploits0References2
Cvelist
Cvelist
added 4 days ago20 views

CVE-2026-13995

Insufficient validation of untrusted input in Autofill in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

0.00204EPSS
Exploits0References2
Debian CVE
Debian CVE
added 4 days ago4 views

CVE-2026-13996

Inappropriate implementation in Permissions in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.8AI score0.00218EPSS
Exploits0
CVE
CVE
added 4 days ago11 views

CVE-2026-13992

The CVE-2026-13992 entry applies to Google Chrome on macOS prior to version 150.0.7871.47 . The issue is an inappropriate UI implementation that enables UI spoofing when a user is persuaded to perform certain UI gestures via a crafted HTML page. The vulnerability is described as a remote, UI-base...

4.2CVSS5.8AI score0.00186EPSS
Exploits0References2Affected Software1
CVE
CVE
added 4 days ago6 views

CVE-2026-13991

CVE-2026-13991 describes insufficient validation of untrusted input in Chrome for iOS / Google Chrome on iOS prior to version 150.0.7871.47 , enabling a remote attacker to perform UI spoofing via a crafted HTML page. The root cause is input validation weaknesses in the iOS Chrome rendering path. ...

4.3CVSS5.8AI score0.00169EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 4 days ago20 views

CVE-2026-13988

Inappropriate implementation in Paint in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

0.00218EPSS
Exploits0References2
CVE
CVE
added 4 days ago6 views

CVE-2026-13986

The vulnerability CVE-2026-13986 affects Google Chrome on ChromeOS (Media UI) and is triggered by a crafted HTML page that enables UI spoofing. The issue is described as an inappropriate implementation in Media UI prior to version 150.0.7871.47. An attacker must convince a user to perform specifi...

4.2CVSS5.8AI score0.00199EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 4 days ago21 views

CVE-2026-13983

Inappropriate implementation in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to spoof the contents of the Omnibox URL bar via a crafted HTML page. Chromium security severity: Medium...

0.00154EPSS
Exploits0References2
Cvelist
Cvelist
added 4 days ago23 views

CVE-2026-13985

Inappropriate implementation in MediaCapture in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

0.00254EPSS
Exploits0References2
Debian CVE
Debian CVE
added 4 days ago3 views

CVE-2026-13985

Inappropriate implementation in MediaCapture in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.8AI score0.00254EPSS
Exploits0
CVE
CVE
added 4 days ago7 views

CVE-2026-13982

Concretely, CVE-2026-13982 affects Google Chrome (Chromium-based) Passwords UI, where incorrect security UI allowed a remote attacker who compromised the renderer process to perform UI spoofing via a crafted HTML page. The vulnerability is tied to rendering context abuse and is exploitable withou...

3.1CVSS5.8AI score0.00205EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 4 days ago4 views

CVE-2026-13982

Incorrect security UI in Passwords in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

3.1CVSS5.8AI score0.00205EPSS
Exploits0
CVE
CVE
added 4 days ago9 views

CVE-2026-13979

The CVE-2026-13979 entry refers to an Inappropriate implementation in Paint in Google Chrome prior to 150.0.7871.47 that allows a remote attacker to perform UI spoofing via a crafted HTML page. Affected software is Google Chrome (Paint component) with the underlying issue described as a UI spoofi...

4.3CVSS5.8AI score0.0023EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder