Lucene search
K

44309 matches found

OSV
OSV
added 3 days ago3 views

DEBIAN-CVE-2026-14155

Insufficient policy enforcement in StorageAccessAPI in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

6.5CVSS5.8AI score0.00186EPSS
Exploits0References1
NVD
NVD
added 3 days ago3 views

CVE-2026-14153

Inappropriate implementation in Glic in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

5.3CVSS0.00181EPSS
Exploits0References2
OSV
OSV
added 3 days ago2 views

DEBIAN-CVE-2026-14122

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. Chromium security severity: Low...

8.1CVSS6AI score0.00239EPSS
Exploits0References1
NVD
NVD
added 3 days ago5 views

CVE-2026-14117

Insufficient validation of untrusted input in DevTools in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security...

5.3CVSS0.00232EPSS
Exploits0References2
NVD
NVD
added 3 days ago4 views

CVE-2026-14105

Insufficient policy enforcement in Speech in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: Low...

9.6CVSS0.00145EPSS
Exploits0References2
NVD
NVD
added 3 days ago7 views

CVE-2026-14109

Insufficient policy enforcement in Mojo in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Low...

9.6CVSS0.00223EPSS
Exploits0References2
OSV
OSV
added 3 days ago2 views

DEBIAN-CVE-2026-14087

Heap buffer overflow in WebNN in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Low...

8.8CVSS6.1AI score0.00247EPSS
Exploits0References1
OSV
OSV
added 3 days ago2 views

DEBIAN-CVE-2026-14086

Insufficient policy enforcement in HID in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Low...

8.8CVSS6.2AI score0.00303EPSS
Exploits0References1
NVD
NVD
added 3 days ago6 views

CVE-2026-14078

Insufficient validation of untrusted input in WebRTC in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to perform privilege escalation via a crafted HTML page. Chromium security severity: Low...

8.8CVSS0.00253EPSS
Exploits0References2
OSV
OSV
added 3 days ago3 views

DEBIAN-CVE-2026-14066

Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.8AI score0.00244EPSS
Exploits0References1
NVD
NVD
added 3 days ago4 views

CVE-2026-14058

Insufficient policy enforcement in Parser in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass content security policy via a crafted HTML page. Chromium security severity: Low...

4.3CVSS0.00246EPSS
Exploits0References2
OSV
OSV
added 3 days ago2 views

DEBIAN-CVE-2026-14053

Insufficient policy enforcement in Extensions in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.8AI score0.00164EPSS
Exploits0References1
OSV
OSV
added 3 days ago4 views

DEBIAN-CVE-2026-14049

Inappropriate implementation in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Low...

5.3CVSS5.8AI score0.00205EPSS
Exploits0References1
NVD
NVD
added 3 days ago4 views

CVE-2026-14040

Use after free in BrowserTag in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. Chromium security severity: Low...

8.8CVSS0.00186EPSS
Exploits0References2
OSV
OSV
added 3 days ago4 views

DEBIAN-CVE-2026-14030

Inappropriate implementation in SplitView in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to spoof the contents of the Omnibox URL bar via a crafted HTML page. Chromium security severity: Low...

4.2CVSS5.8AI score0.00154EPSS
Exploits0References1
OSV
OSV
added 3 days ago2 views

DEBIAN-CVE-2026-14012

Side-channel information leakage in CSS in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

5.3CVSS5.8AI score0.00205EPSS
Exploits0References1
OSV
OSV
added 3 days ago3 views

DEBIAN-CVE-2026-14015

Race in WebRTC in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.8AI score0.00197EPSS
Exploits0References1
NVD
NVD
added 3 days ago5 views

CVE-2026-14015

Race in WebRTC in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.00197EPSS
Exploits0References2
NVD
NVD
added 3 days ago4 views

CVE-2026-14020

Insufficient validation of untrusted input in WebXR in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS0.0019EPSS
Exploits0References2
NVD
NVD
added 3 days ago5 views

CVE-2026-14002

Inappropriate implementation in Geolocation in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.00218EPSS
Exploits0References2
Rows per page
Query Builder