Lucene search
+L

7 matches found

debiancve
debiancve
added 2026/06/30 10:38 p.m.5 views

CVE-2026-13945

Insufficient policy enforcement in Extensions in Google Chrome on Linux prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malicious extension to perform UI spoofing via a crafted Chrome Extension. Chromium security severity: Medium...

3.1CVSS5.8AI score0.00156EPSS
Exploits0
osv
osv
added 2026/06/04 11:17 p.m.9 views

DEBIAN-CVE-2026-10997

Insufficient policy enforcement in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to bypass discretionary access control via a crafted Chrome Extension. Chromium security severity: Medium...

6.5CVSS5.4AI score0.00241EPSS
Exploits0References1
susecve
susecve
added 2023/02/15 4:10 a.m.3 views

SUSE CVE-2019-13755

Insufficient policy enforcement in extensions in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to disable extensions via a crafted HTML page...

4.3CVSS5.9AI score0.01217EPSS
Exploits0References5
susecve
susecve
added 2023/02/15 3:46 a.m.3 views

SUSE CVE-2021-21228

Insufficient policy enforcement in extensions in Google Chrome prior to 90.0.4430.93 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension...

4.3CVSS6.1AI score0.01063EPSS
Exploits0References5
cnvd
cnvd
added 2020/09/22 12:0 a.m.4 views

Google Chrome Extension Policy Validation Insufficiency Vulnerability

Chrome is a simple and efficiently designed web browsing tool developed by Google that is characterized by its simplicity and speed. An insufficient extension policy validation vulnerability exists in versions of Google Chrome prior to 85.0.4183.121. An attacker can exploit this vulnerability by...

9.6CVSS9.1AI score0.01473EPSS
Exploits1References1
osv
osv
added 2020/02/11 3:15 p.m.1 views

UBUNTU-CVE-2020-6392

Insufficient policy enforcement in extensions in Google Chrome prior to 80.0.3987.87 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension...

4.3CVSS6.5AI score0.01481EPSS
Exploits1References2
osv
osv
added 2020/02/11 3:15 p.m.4 views

UBUNTU-CVE-2020-6380

Insufficient policy enforcement in extensions in Google Chrome prior to 79.0.3945.130 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted Chrome Extension...

8.8CVSS7.1AI score0.01195EPSS
Exploits0References2
Rows per page
Query Builder