Lucene search
K

9 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.2 views

Astra Linux – Vulnerability in Chromium

The inappropriate implementation of Picture In Picture in Google Chrome prior to version 139.0.7258.66 allowed a remote attacker who convinced a user to perform certain UI gestures to carry out UI spoofing through a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.5AI score0.00225EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability in Chromium

Inappropriate implementation in PictureInPicture in Google Chrome prior to 145.0.7632.45 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.5AI score0.00225EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/11 10:4 p.m.27 views

CVE-2026-3927

Incorrect security UI in PictureInPicture in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

0.00177EPSS
Exploits0References2
OSV
OSV
added 2025/08/07 2:15 a.m.5 views

CVE-2025-8577

Inappropriate implementation in Picture In Picture in Google Chrome prior to 139.0.7258.66 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS5.3AI score
Exploits0References2
OSV
OSV
added 2025/08/07 2:15 a.m.5 views

CVE-2025-8579

Inappropriate implementation in Picture In Picture in Google Chrome prior to 139.0.7258.66 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.3AI score
Exploits0References2
Cvelist
Cvelist
added 2025/08/07 1:30 a.m.9 views

CVE-2025-8577

Inappropriate implementation in Picture In Picture in Google Chrome prior to 139.0.7258.66 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

0.00225EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2024/05/04 2:24 a.m.2 views

SUSE CVE-2024-4331

Use after free in Picture In Picture in Google Chrome prior to 124.0.6367.118 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS9.2AI score0.01228EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2023/05/30 9:31 p.m.16 views

CVE-2023-2938

Inappropriate implementation in Picture In Picture in Google Chrome prior to 114.0.5735.90 allowed a remote attacker who had compromised the renderer process to spoof the contents of the Omnibox URL bar via a crafted HTML page. Chromium security severity: Medium...

3.6AI score0.00906EPSS
Exploits0References5
OSV
OSV
added 2023/05/03 12:15 a.m.3 views

DEBIAN-CVE-2023-2468

Inappropriate implementation in PictureInPicture in Google Chrome prior to 113.0.5672.63 allowed a remote attacker who had compromised the renderer process to obfuscate the security UI via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.5AI score0.00801EPSS
Exploits0References1
Rows per page
Query Builder