13 matches found
DEBIAN-CVE-2026-10899
Use after free in Ozone in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...
CVE-2026-11194
CVE-2026-11194 concerns Google Chrome’s network stack: an inappropriate implementation enables a remote attacker to leak cross-origin data via a crafted HTML page. Affected software is Chrome prior to 149.0.7827.53. The vulnerability stems from the Network component/root cause described in the co...
CVE-2026-8015
Inappropriate implementation in Media in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...
CVE-2026-7943
Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to perform arbitrary read/write via a crafted HTML page. Chromium security severity: Medium...
Linux Distros Unpatched Vulnerability : CVE-2017-5115
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Type confusion in V8 in Google Chrome prior to 61.0.3163.79 for Windows allowed a remote attacker to potentially exploit object corruption via a crafted HTML...
The vulnerability of Google Chrome’s WebRTC component allows attackers to compromise the confidentiality, integrity, and accessibility of data.
The vulnerability of the WebRTC component in Google Chrome browser relates to the use of memory after deallocation. Exploiting this vulnerability allows a remote attacker to compromise the confidentiality, integrity, and accessibility of data through a specially crafted HTML page...
The vulnerability of the WebRTC technology implementation in Google Chrome allows a hacker to execute arbitrary code.
The vulnerability of the WebRTC technology implementation in Google Chrome browser is related to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
SUSE CVE-2018-16075
Insufficient file type enforcement in Blink in Google Chrome prior to 69.0.3497.81 allowed a remote attacker to obtain local file data via a crafted HTML page...
SUSE CVE-2021-30539
Insufficient policy enforcement in content security policy in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to bypass content security policy via a crafted HTML page...
The vulnerability in the implementation of the application programming interface for Google Chrome and Microsoft Edge browsers allows a hacker to bypass security restrictions.
The vulnerability of the application programming interface for Google Chrome and Microsoft Edge browsers relates to improper security checks for standard elements. Exploiting this vulnerability allows a malicious actor to circumvent security restrictions through a specially created HTML page...
The vulnerability in the V8 browser kernel of Google Chrome allows a hacker to gain access to confidential data, compromise its integrity, and cause service failures.
The vulnerability in the V8 browser kernel of Google Chrome is related to incorrect calculations of array positions. Exploiting this vulnerability can allow a remote attacker to access confidential data, compromise its integrity, and cause service failures...
The vulnerability of the Google Chrome browser, related to improper data processing, allows a hacker to replace the content in the Omnibox (URL).
The vulnerability of the Google Chrome browser is related to incorrect data processing. Exploiting this vulnerability allows a malicious actor to replace the content in the Omnibox URL bar using IDN homographs...
The vulnerability of Google Chrome browser allows a perpetrator to trigger a service failure.
The vulnerability of the V8 component in Google Chrome browsers arises from an operation that occurs outside the buffer in memory. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause a service failure through a specially created HTML page...