Lucene search
K

986 matches found

CVE
CVE
added 2026/07/03 8:35 p.m.18 views

CVE-2026-58293

CVE-2026-58293 affects Microsoft Edge (Chromium-based). It describes external control of a file name or path that allows an unauthenticated attacker to execute code over the network. The CVSSv3.1 base score is 8.1 (High) with attack vector Network, attack complexity High, privileges required None...

8.1CVSS6.1AI score0.00438EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/07/03 8:35 p.m.7 views

CVE-2026-58284 Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

...

8.3CVSS5.9AI score0.00405EPSS
Exploits0References1
EUVD
EUVD
added 2026/07/01 12:34 a.m.9 views

EUVD-2026-40523

Inappropriate implementation in CSS in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00245EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/07/01 12:0 a.m.8 views

Google Chrome < 150.0.7871.46 Multiple Vulnerabilities

The version of Google Chrome installed on the remote macOS host is prior to 150.0.7871.46. It is, therefore, affected by multiple vulnerabilities as referenced in the 202606stable-channel-update-for-desktop0175352312 advisory. - Use after free in V8 in Google Chrome prior to 150.0.7871.46 allowed...

10CVSS6.5AI score0.00479EPSS
Exploits0References867
Cvelist
Cvelist
added 2026/06/30 10:39 p.m.25 views

CVE-2026-14077

Inappropriate implementation in Select in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page. Chromium security severity: Low...

0.00169EPSS
Exploits0References2
CVE
CVE
added 2026/06/30 10:38 p.m.25 views

CVE-2026-14023

Google Chrome (Chromium) SanitizerAPI in affected builds is vulnerable due to insufficient validation of untrusted input, allowing a remote attacker to bypass the same-origin policy via a crafted HTML page. Affected version range is prior to 150.0.7871.47; vendor/chromium references indicate the ...

6.5CVSS5.8AI score0.00319EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/30 10:38 p.m.17 views

CVE-2026-13903

CVE-2026-13903 affects Google Chrome’s Bluetooth implementation. The connected records describe insufficient policy enforcement in Chrome prior to version 150.0.7871.47, enabling privilege escalation via a crafted HTML page. There is no explicit exploitation detail or confirmed in-the-wild use in...

8.8CVSS5.8AI score0.00345EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2026/06/29 5:37 a.m.5 views

CVE-2026-13027

An use after free flaw was found in the FileSystem component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=520543781...

8.8CVSS5.7AI score0.00195EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/06/25 5:41 p.m.6 views

CVE-2026-54092

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Prior to 2.63.6, unchecked passwords maximums allow for an arbitrarily large password to be passed into the login API. This spikes CPU and memory, and after...

6.5CVSS5.9AI score0.00484EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/06/25 5:40 p.m.32 views

CVE-2026-54097 File Browser: Cross-user unauthorized share-link deletion via unbounded prefix match in DeleteWithPathPrefix

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Prior to 2.63.6, a low-privileged authenticated user of filebrowser with create + delete permissions in their own isolated scope can silently destroy share-link...

7.2CVSS0.00411EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2026/06/19 2:0 p.m.8 views

Chromium: CVE-2026-12464 Use after free in Browser

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.3CVSS5.8AI score0.00222EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/06/17 8:3 p.m.8 views

CVE-2026-12328

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bugs present in Firefox ESR 115.36, Firefox ESR 140.11, Thunderbird ESR 140.11, Firefox 151 and Thunderbird 151. Some of these bugs showed evidence of memory...

8.1CVSS5.7AI score0.00476EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/06/17 4:28 p.m.24 views

CVE-2026-20178

A vulnerability in the browser-based version of Cisco Webex App could have allowed an unauthenticated, remote attacker to redirect users to a malicious webpage. Cisco has addressed this vulnerability in the Cisco Webex App, and no customer action is needed. This vulnerability existed due to...

4.3CVSS0.00202EPSS
Exploits0References1
OSV
OSV
added 2026/06/11 10:16 p.m.4 views

DEBIAN-CVE-2026-12014

Use after free in Cast in Google Chrome prior to 149.0.7827.115 allowed an attacker on the local network segment to potentially perform a sandbox escape via malicious network traffic. Chromium security severity: High...

8.3CVSS5.3AI score0.00174EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2026/06/09 2:0 p.m.13 views

Chromium: CVE-2026-11172 Incorrect security UI in Contact Picker

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS5.4AI score0.00234EPSS
Exploits0
OSV
OSV
added 2026/06/09 12:16 a.m.5 views

DEBIAN-CVE-2026-11656

Use after free in ServiceWorker in Google Chrome prior to 149.0.7827.103 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted Chrome Extension. Chromium security severity: High...

8.3CVSS5.4AI score0.00169EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/08 11:27 p.m.52 views

CVE-2026-11649

Use after free in V8 in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

0.00314EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/07 5:12 a.m.12 views

CVE-2026-11208

An use after free flaw was found in the Codecs component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=506387278...

6.5CVSS5.4AI score0.00229EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/06/07 5:8 a.m.11 views

CVE-2026-11174

An insufficient policy enforcement flaw was found in the Site Isolation component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=502348223...

7.9CVSS5.4AI score0.00207EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/06/07 4:48 a.m.11 views

CVE-2026-11028

An use after free flaw was found in the Media component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=497627277...

9.6CVSS5.4AI score0.00361EPSS
Exploits0References5
Rows per page
Query Builder