Lucene search
K

34 matches found

ATTACKERKB
ATTACKERKB
added 2026/06/04 11:6 p.m.7 views

CVE-2026-11292

Insufficient policy enforcement in Blink in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass content security policy via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.5AI score0.00186EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/04 11:5 p.m.5 views

CVE-2026-11171

Integer overflow in Blink in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6.3AI score0.0028EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/05/06 6:12 p.m.24 views

CVE-2026-7896

CVE-2026-7896 is a Chrome/Blink vulnerability due to an integer overflow that can lead to heap corruption on a crafted HTML page. The vulnerability affects Blink in Google Chrome versions before 148.0.7778.96. The Chrome 148 stable update lists “Critical CVE-2026-7896: Integer overflow in Blink” ...

8.8CVSS5.9AI score0.00281EPSS
Exploits0References2Affected Software1
SUSE CVE
SUSE CVE
added 2026/04/09 11:30 p.m.9 views

SUSE CVE-2026-5872

Use after free in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

7.7AI score0.00303EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/04/09 11:30 p.m.2 views

SUSE CVE-2026-5875

Policy bypass in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS7.3AI score0.00189EPSS
Exploits0References3
CVE
CVE
added 2026/04/08 9:21 p.m.14 views

CVE-2026-5913

CVE-2026-5913 concerns Blink in Google Chrome/Chromium, where an out-of-bounds memory read could be triggered by a crafted HTML page. The issue is described across multiple sources as an out-of-bounds read in Blink with a Chromium/Chrome context. Public fixes exist: Debian reports the security up...

8.1CVSS5.9AI score0.00205EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/08 9:20 p.m.3 views

CVE-2026-5875

Policy bypass in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00189EPSS
Exploits0References2
CVE
CVE
added 2026/03/20 1:34 a.m.27 views

CVE-2026-4462

CVE-2026-4462 is an out-of-bounds read in Blink of Google Chrome, affecting versions prior to 146.0.7680.153. The vulnerability allows a remote attacker to trigger an out-of-bounds memory read via a crafted HTML page. Current connected documents consistently describe this Chrome/Blink issue with ...

8.8CVSS5.8AI score0.00253EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/21 4:22 a.m.5 views

CVE-2026-0901

Inappropriate implementation in Blink in Google Chrome on Android prior to 144.0.7559.59 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: High...

5.4CVSS5.5AI score0.00187EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2025/06/02 11:36 p.m.4 views

CVE-2025-5068

Use after free in Blink in Google Chrome prior to 137.0.7151.68 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS7.4AI score0.02614EPSS
Exploits0
OSV
OSV
added 2024/02/21 4:15 a.m.2 views

DEBIAN-CVE-2024-1669

Out of bounds memory access in Blink in Google Chrome prior to 122.0.6261.57 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.6AI score0.00953EPSS
Exploits1References1
OSV
OSV
added 2023/07/29 12:15 a.m.2 views

DEBIAN-CVE-2022-4920

Heap buffer overflow in Blink in Google Chrome prior to 101.0.4951.41 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

9.6CVSS8.8AI score0.00615EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2023/02/15 5:7 a.m.3 views

SUSE CVE-2016-1675

Blink, as used in Google Chrome before 51.0.2704.63, allows remote attackers to bypass the Same Origin Policy by leveraging the mishandling of Document reattachment during destruction, related to FrameLoader.cpp and LocalFrame.cpp...

8.8CVSS9.1AI score0.01534EPSS
Exploits1References6
SUSE CVE
SUSE CVE
added 2023/02/15 5:1 a.m.2 views

SUSE CVE-2016-5147

Blink, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, mishandles deferred page loads, which allows remote attackers to inject arbitrary web script or HTML via a crafted web site, aka "Universal XSS UXSS."...

6.1CVSS8.1AI score0.01134EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 5:1 a.m.3 views

SUSE CVE-2016-5209

Bad casting in bitmap manipulation in Blink in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS8.9AI score0.01314EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:31 a.m.5 views

SUSE CVE-2018-6052

Lack of support for a non standard no-referrer policy value in Blink in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to obtain referrer details from a web page that had thought it had opted out of sending referrer data...

4.3CVSS8.8AI score0.01349EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:30 a.m.5 views

SUSE CVE-2018-6099

A lack of CORS checks in Blink in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to leak limited cross-origin data via a crafted HTML page...

6.5CVSS8.5AI score0.01597EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:30 a.m.3 views

SUSE CVE-2018-6114

Incorrect enforcement of CSP for tags in Blink in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to bypass content security policy via a crafted HTML page...

6.5CVSS8.6AI score0.01462EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:30 a.m.4 views

SUSE CVE-2018-6121

Insufficient validation of input in Blink in Google Chrome prior to 66.0.3359.170 allowed a remote attacker to perform privilege escalation via a crafted HTML page...

8.8CVSS8.8AI score0.00861EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:2 a.m.2 views

SUSE CVE-2020-6552

Use after free in Blink in Google Chrome prior to 84.0.4147.125 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS8.9AI score0.01521EPSS
Exploits0References8
Rows per page
Query Builder