Lucene search
K

18 matches found

EUVD
EUVD
added 4 days ago6 views

EUVD-2026-40686

Incorrect security UI in File Input in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.2CVSS5.8AI score0.00154EPSS
Exploits0References3
Cvelist
Cvelist
added 5 days ago22 views

CVE-2026-13998

Incorrect security UI in File Input in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

0.00154EPSS
Exploits0References2
Debian CVE
Debian CVE
added 5 days ago3 views

CVE-2026-13992

Inappropriate implementation in UI in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.2CVSS5.8AI score0.00186EPSS
Exploits0
EUVD
EUVD
added 2026/06/12 12:31 a.m.7 views

EUVD-2026-36330

Insufficient validation of untrusted input in Accessibility in Google Chrome on Mac prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

8.3CVSS5.5AI score0.00246EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/06/10 2:31 a.m.7 views

SUSE CVE-2026-11654

Use after free in CameraCapture in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

9.6CVSS5.5AI score0.00252EPSS
Exploits0References3
OSV
OSV
added 2026/06/09 12:16 a.m.7 views

DEBIAN-CVE-2026-11687

Use after free in Dawn in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.6AI score0.00203EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/05 12:31 a.m.9 views

EUVD-2026-34561

Use after free in File Input in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00255EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/30 2:19 a.m.17 views

SUSE CVE-2026-9885

Insufficient validation of untrusted input in UI in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

8.3CVSS5.8AI score0.00228EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/30 2:15 a.m.17 views

SUSE CVE-2026-10005

Use after free in WebAppInstalls in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

7.5CVSS6.2AI score0.00261EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/29 12:38 a.m.16 views

EUVD-2026-33106

Use after free in Bluetooth in Google Chrome on Mac prior to 148.0.7778.216 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension. Chromium security severity: High...

6.2AI score0.00233EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/14 7:52 p.m.6 views

CVE-2026-8536

Insufficient validation of untrusted input in ReadingMode in Google Chrome on Mac prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to bypass site Isolation via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00186EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/14 12:0 a.m.8 views

PT-2026-41054

Name of the Vulnerable Software and Affected Versions Google Chrome on Mac versions prior to 148.0.7778.168 Description A heap buffer overflow in ANGLE allows a remote attacker to potentially perform a sandbox escape by using a crafted HTML page. A heap buffer overflow occurs when a program write...

8.8CVSS6.1AI score0.00498EPSS
Exploits0References84
Vulnrichment
Vulnrichment
added 2026/04/08 9:20 p.m.2 views

CVE-2026-5879

Insufficient validation of untrusted input in ANGLE in Google Chrome on Mac prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

7.7AI score0.00303EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/12/02 7:0 p.m.6 views

CVE-2025-13631

Inappropriate implementation in Google Updater in Google Chrome on Mac prior to 143.0.7499.41 allowed a remote attacker to perform privilege escalation via a crafted file. Chromium security severity: High...

0.00303EPSS
Exploits0References2
CVE
CVE
added 2025/12/02 7:0 p.m.31 views

CVE-2025-13631

CVE-2025-13631 affects Google Chrome on macOS due to an inappropriate implementation in Google Updater, allowing a remote attacker to escalate privileges via a crafted file. Affected version set is Chrome/Chromium prior to 143.0.7499.41; the issue is mitigated by updating to 143.0.7499.41 or late...

8.8CVSS6.4AI score0.00303EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2025/11/14 2:29 a.m.424 views

CVE-2024-11920

CVE-2024-11920 affects Google Chrome on macOS, specifically the Dawn component. The issue is an out-of-bounds memory access in Dawn, exploitable via a crafted HTML page on Chrome versions prior to 130.0.6723.92. The vulnerability was fixed in Chrome 130.0.6723.92 (and related builds), per multipl...

4.3CVSS6.2AI score0.00201EPSS
Exploits1References2Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 4:51 a.m.2 views

SUSE CVE-2017-5104

Inappropriate implementation in interstitials in Google Chrome prior to 60.0.3112.78 for Mac allowed a remote attacker to spoof the contents of the omnibox via a crafted HTML page...

6.5CVSS8.4AI score0.01433EPSS
Exploits0References5
OSV
OSV
added 2017/10/27 5:29 a.m.6 views

UBUNTU-CVE-2017-5099

Insufficient validation of untrusted input in PPAPI Plugins in Google Chrome prior to 60.0.3112.78 for Mac allowed a remote attacker to potentially gain privilege elevation via a crafted HTML page...

8.8CVSS7.3AI score0.01474EPSS
Exploits0References3
Rows per page
Query Builder