Lucene search
K

21 matches found

Debian CVE
Debian CVE
added 2026/06/30 10:39 p.m.5 views

CVE-2026-14052

Insufficient policy enforcement in FileSystem in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass discretionary access control via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.8AI score0.00221EPSS
Exploits0
Cvelist
Cvelist
added 2026/06/30 10:39 p.m.26 views

CVE-2026-14052

Insufficient policy enforcement in FileSystem in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass discretionary access control via a crafted HTML page. Chromium security severity: Low...

0.00221EPSS
Exploits0References2
CVE
CVE
added 2026/06/30 10:39 p.m.23 views

CVE-2026-14052

CVE-2026-14052 describes insufficient policy enforcement in Google Chrome’s FileSystem, before version 150.0.7871.47, allowing a remote attacker to bypass discretionary access control via a crafted HTML page. Root cause is improper FileSystem permission enforcement. Impact per the documents is a ...

4.3CVSS5.8AI score0.00221EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/06/05 12:31 a.m.10 views

EUVD-2026-34526

Inappropriate implementation in FileSystem in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00201EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/05 12:31 a.m.11 views

EUVD-2026-34549

Use after free in FileSystem in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

9.6CVSS5.8AI score0.00345EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/06/04 11:4 p.m.7 views

CVE-2026-11078

Inappropriate implementation in FileSystem in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.5AI score0.00201EPSS
Exploits0
CVE
CVE
added 2026/06/04 11:3 p.m.32 views

CVE-2026-10886

CVE-2026-10886: In Google Chrome, a use-after-free in the FileSystem component can allow a remote attacker to perform a sandbox escape via a crafted HTML page. The vulnerability affects Chrome builds prior to 149.0.7827.53. The Chrome Stable update 149.0.7827.53 (Linux/Windows/macOS) includes fix...

9.6CVSS5.8AI score0.00345EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/02 12:0 a.m.16 views

PT-2026-46460

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.53 Description A use after free issue in FileSystem allows a remote attacker to potentially perform a sandbox escape by using a crafted HTML page. Use after free is a memory corruption flaw that occur...

9.6CVSS5.8AI score0.00985EPSS
Exploits0References434
Positive Technologies
Positive Technologies
added 2026/06/02 12:0 a.m.12 views

PT-2026-46415

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.53 Description A use after free issue in FileSystem allows a remote attacker to potentially perform a sandbox escape by using a crafted HTML page. Use after free is a memory corruption flaw that occur...

9.6CVSS5.5AI score0.00345EPSS
Exploits0References5
NVD
NVD
added 2026/05/14 8:17 p.m.12 views

CVE-2026-8543

Out of bounds read in FileSystem in Google Chrome on Mac prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

5.3CVSS0.00255EPSS
Exploits0References2
NVD
NVD
added 2026/05/14 8:17 p.m.8 views

CVE-2026-8512

Use after free in FileSystem in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

8.3CVSS0.00207EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/14 7:52 p.m.11 views

CVE-2026-8543

Out of bounds read in FileSystem in Google Chrome on Mac prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

5.3CVSS5.8AI score0.00255EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/05/14 7:52 p.m.24 views

CVE-2026-8543

CVE-2026-8543 describes an out-of-bounds read in the FileSystem component of Google Chrome on macOS. The issue exists before Chrome 148.0.7778.168 and can be triggered when a user is convinced to perform specific UI gestures on a crafted HTML page, potentially allowing access to sensitive data fr...

5.3CVSS5.8AI score0.00255EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2026/05/14 7:52 p.m.10 views

CVE-2026-8543

Out of bounds read in FileSystem in Google Chrome on Mac prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

5.3CVSS5.8AI score0.00255EPSS
Exploits0
EUVD
EUVD
added 2026/05/06 9:31 p.m.9 views

EUVD-2026-28031

Insufficient validation of untrusted input in FileSystem in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to perform arbitrary read/write via a crafted HTML page. Chromium security severity: Medium...

4.2CVSS6AI score0.00176EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/06 6:12 p.m.10 views

CVE-2026-7964

Insufficient validation of untrusted input in FileSystem in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to perform arbitrary read/write via a crafted HTML page. Chromium security severity: Medium...

6AI score0.00176EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/06 6:12 p.m.36 views

CVE-2026-7964

Insufficient validation of untrusted input in FileSystem in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to perform arbitrary read/write via a crafted HTML page. Chromium security severity: Medium...

0.00176EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/04/15 7:4 p.m.18 views

CVE-2026-6360

Use after free in FileSystem in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. Chromium security severity: High...

0.00253EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/04/15 7:4 p.m.8 views

CVE-2026-6360

Use after free in FileSystem in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.5AI score0.00253EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/04/15 7:4 p.m.4 views

CVE-2026-6360

Use after free in FileSystem in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.8AI score0.00253EPSS
Exploits0
Rows per page
Query Builder