Lucene search
K

20 matches found

NVD
NVD
added 2026/01/20 5:16 a.m.6 views

CVE-2026-0901

Inappropriate implementation in Blink in Google Chrome on Android prior to 144.0.7559.59 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: High...

5.4CVSS0.00187EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/01/20 4:14 a.m.3 views

CVE-2026-0901

Inappropriate implementation in Blink in Google Chrome on Android prior to 144.0.7559.59 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: High...

5.4AI score0.00187EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2026-0901

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in Blink in Google Chrome on Android prior to 144.0.7559.59 allowed a remote attacker to perform UI spoofing via a crafted HTML pag...

5.4CVSS5.8AI score0.00187EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/21 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2018-16088

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A missing check for JS-simulated input events in Blink in Google Chrome prior to 69.0.3497.81 allowed a remote attacker to download arbitrary files with no user...

6.5CVSS7.6AI score0.01146EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/20 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2018-16075

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient file type enforcement in Blink in Google Chrome prior to 69.0.3497.81 allowed a remote attacker to obtain local file data via a crafted HTML page...

5.3CVSS6.9AI score0.00889EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2018-6121

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient validation of input in Blink in Google Chrome prior to 66.0.3359.170 allowed a remote attacker to perform privilege escalation via a crafted HTML...

8.8CVSS8AI score0.00861EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2018-6076

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient encoding of URL fragment identifiers in Blink in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to perform a DOM based XSS attack v...

6.1CVSS7.3AI score0.01159EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 5:7 a.m.5 views

SUSE CVE-2016-1630

The ContainerNode::parserRemoveChild function in WebKit/Source/core/dom/ContainerNode.cpp in Blink, as used in Google Chrome before 49.0.2623.75, mishandles widget updates, which makes it easier for remote attackers to bypass the Same Origin Policy via a crafted web site...

8.8CVSS8.7AI score0.01068EPSS
Exploits1References7
SUSE CVE
SUSE CVE
added 2023/02/15 4:17 a.m.3 views

SUSE CVE-2019-5758

Incorrect object lifecycle management in Blink in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS8.7AI score0.01666EPSS
Exploits0References7
OSV
OSV
added 2020/11/03 3:15 a.m.2 views

DEBIAN-CVE-2020-16000

Inappropriate implementation in Blink in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS8.8AI score0.01578EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2020/10/26 8:8 p.m.6 views

chromium-browser: Inappropriate implementation in Blink

Inappropriate implementation in Blink in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.4AI score0.01578EPSS
Exploits0References5
OSV
OSV
added 2020/05/21 4:15 a.m.1 views

DEBIAN-CVE-2020-6473

Insufficient policy enforcement in Blink in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page...

6.5CVSS7.5AI score0.0178EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2020/02/17 9:31 a.m.6 views

chromium-browser: Inappropriate implementation in Blink

Inappropriate implementation in Blink in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.4AI score0.02045EPSS
Exploits5References5
CNVD
CNVD
added 2020/02/12 12:0 a.m.2 views

Google Chrome HTML Validator Bypass Vulnerability

Chrome is a simple and efficiently designed web browsing tool developed by Google that is characterized by its simplicity and speed. An HTML validator bypass vulnerability exists in Google Chrome versions prior to 80.0.3987.87. The vulnerability stems from an improper implementation of Blink in...

8.8CVSS8.3AI score0.01908EPSS
Exploits0References1
Prion
Prion
added 2020/02/11 3:15 p.m.18 views

Design/Logic Flaw

Insufficient policy enforcement in Blink in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to bypass content security policy via a crafted HTML page...

5.8CVSS5.6AI score0.0165EPSS
Exploits1References9Affected Software7
OSV
OSV
added 2019/06/27 5:15 p.m.1 views

DEBIAN-CVE-2019-5814

Insufficient policy enforcement in Blink in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

6.5CVSS7.2AI score0.00926EPSS
Exploits0References1
OSV
OSV
added 2019/06/27 5:15 p.m.2 views

UBUNTU-CVE-2019-5822

Inappropriate implementation in Blink in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to bypass same origin policy via a crafted HTML page...

8.8CVSS6.7AI score0.01872EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2017/12/26 12:0 a.m.7 views

The vulnerability of Google Chrome’s Blink rendering module allows a hacker to read data beyond the memory limit of the application.

The vulnerability of Google Chrome’s Blink engine is related to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to read data beyond the application’s memory boundary using a specially crafted HTML page...

8.8CVSS7.7AI score0.01237EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2016/12/06 12:0 a.m.2 views

UBUNTU-CVE-2016-5207

In Blink in Google Chrome prior to 55.0.2883.75 for Mac, Windows and Linux, and 55.0.2883.84 for Android, corruption of the DOM tree could occur during the removal of a full screen element, which allowed a remote attacker to achieve arbitrary code execution via a crafted HTML page...

6.1CVSS7.5AI score0.01975EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2016/05/02 12:36 p.m.5 views

chromium-browser: out-of-bounds write in blink

Blink, as used in Google Chrome before 50.0.2661.94, mishandles assertions in the WTF::BitArray and WTF::doubleconversion::Vector classes, which allows remote attackers to cause a denial of service out-of-bounds write or possibly have unspecified other impact via a crafted web site...

8.8CVSS7.5AI score0.01128EPSS
Exploits0References5
Rows per page
Query Builder