CVE-2026-11166

An inappropriate implementation flaw was found in the SVG component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=502118936...

CVE-2026-10937

An inappropriate implementation flaw was found in the Passwords component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=502651056...

DEBIAN-CVE-2026-10899

Use after free in Ozone in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

CVE-2026-11194

CVE-2026-11194 concerns Google Chrome’s network stack: an inappropriate implementation enables a remote attacker to leak cross-origin data via a crafted HTML page. Affected software is Chrome prior to 149.0.7827.53. The vulnerability stems from the Network component/root cause described in the co...

Google Chrome和gh 安全漏洞

Google Chrome is a web browser developed by Google Inc. In versions of Google Chrome on iOS prior to 148.0.7778.216, there was a security vulnerability. This vulnerability stemmed from the fact that iOS did not initialize certain functions properly, which could allow remote attackers to induce...

CVE-2026-8576

An inappropriate implementation flaw was found in the CORS component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=496231853...

CVE-2026-8015

Inappropriate implementation in Media in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

CVE-2026-7943

Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to perform arbitrary read/write via a crafted HTML page. Chromium security severity: Medium...

CVE-2026-7336

An use after free flaw was found in the WebRTC component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=500767595...

Linux Distros Unpatched Vulnerability : CVE-2017-2419

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. The issue involves the WebKit component. It allo...

Linux Distros Unpatched Vulnerability : CVE-2017-5115

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Type confusion in V8 in Google Chrome prior to 61.0.3163.79 for Windows allowed a remote attacker to potentially exploit object corruption via a crafted HTML...

The vulnerability of Google Chrome’s WebRTC component allows attackers to compromise the confidentiality, integrity, and accessibility of data.

The vulnerability of the WebRTC component in Google Chrome browser relates to the use of memory after deallocation. Exploiting this vulnerability allows a remote attacker to compromise the confidentiality, integrity, and accessibility of data through a specially crafted HTML page...

The vulnerability of the WebRTC technology implementation in Google Chrome allows a hacker to execute arbitrary code.

The vulnerability of the WebRTC technology implementation in Google Chrome browser is related to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

DEBIAN-CVE-2023-38252

An out-of-bounds read flaw was found in w3m, in the Strnewsize function in Str.c. This issue may allow an attacker to cause a denial of service through a crafted HTML file...

SUSE CVE-2015-6762

The CSSFontFaceSrcValue::fetch function in core/css/CSSFontFaceSrcValue.cpp in the Cascading Style Sheets CSS implementation in Blink, as used in Google Chrome before 46.0.2490.71, does not use the CORS cross-origin request algorithm when a font's URL appears to be a same-origin URL, which allows...

SUSE CVE-2017-7046

An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. tvOS before 10.2.2 is affected. The issue involves the "WebKit" component. It allows remote...

SUSE CVE-2018-16075

Insufficient file type enforcement in Blink in Google Chrome prior to 69.0.3497.81 allowed a remote attacker to obtain local file data via a crafted HTML page...

SUSE CVE-2021-30539

Insufficient policy enforcement in content security policy in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to bypass content security policy via a crafted HTML page...

The vulnerability in the implementation of the application programming interface for Google Chrome and Microsoft Edge browsers allows a hacker to bypass security restrictions.

The vulnerability of the application programming interface for Google Chrome and Microsoft Edge browsers relates to improper security checks for standard elements. Exploiting this vulnerability allows a malicious actor to circumvent security restrictions through a specially created HTML page...

The vulnerabilities of the Firefox browser, Firefox ESR, and the Thunderbird email client allow attackers to bypass the secure context for cookies with prefixes __Host and __Secure, and re-record these cookies.

The vulnerability of Firefox browsers, Firefox ESR, and the email client Thunderbird lies in the use of cookies with prefixes Host and Secure, without validation or verification of their integrity. Exploiting this vulnerability allows an attacker to bypass the security restrictions for cookies wi...