Lucene search
K

21 matches found

NVD
NVD
added last week5 views

CVE-2026-14086

Insufficient policy enforcement in HID in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Low...

8.8CVSS0.00303EPSS
Exploits0References2
CVE
CVE
added last week14 views

CVE-2026-13858

CVE-2026-13858 involves an out-of-bounds read in FFmpeg when used by Google Chrome prior to version 150.0.7871.47. The vulnerability could allow a remote attacker to read process memory via a crafted video file, with the impact described as high confidentiality risk and no changes to integrity/av...

6.5CVSS5.8AI score0.00276EPSS
Exploits0References2Affected Software1
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability in Chromium

Inappropriate implementation in Downloads in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to potentially execute arbitrary code via a malicious file. Chromium security severity: Medium...

8.8CVSS7.3AI score0.0128EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/06/07 4:47 a.m.12 views

SUSE CVE-2026-11046

Insufficient validation of untrusted input in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6AI score0.00361EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/02 12:0 a.m.16 views

PT-2026-46606

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.53 Description An inappropriate implementation in the FileSystem component allows a remote attacker who has already compromised the renderer process to bypass the same origin policy, which is a securi...

9.6CVSS5.9AI score0.00985EPSS
Exploits1References437
UbuntuCve
UbuntuCve
added 2026/05/29 12:0 a.m.12 views

CVE-2026-10012

Use after free in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS5.8AI score0.00173EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/05/28 10:25 p.m.32 views

CVE-2026-9880

Insufficient validation of untrusted input in WebGL in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

0.00228EPSS
Exploits0References2
CVE
CVE
added 2026/04/08 9:20 p.m.18 views

CVE-2026-5893

CVE-2026-5893 is a race in V8 affecting Google Chrome prior to 147.0.7727.55 that could allow remote attackers to trigger heap corruption via a crafted HTML page. The initial entry lists a Chromium-based web engine race as the root cause with a Medium severity and heap corruption impact, and mult...

6.8CVSS5.9AI score0.0015EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/20 1:34 a.m.4 views

CVE-2026-4459

Out of bounds read and write in WebAudio in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00281EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/03/12 12:0 a.m.9 views

Google Chrome < 146.0.7680.75 Vulnerability

The version of Google Chrome installed on the remote Windows host is prior to 146.0.7680.75. It is, therefore, affected by a vulnerability as referenced in the 202603stable-channel-update-for-desktop12 advisory. - Inappropriate implementation in V8. CVE-2026-3910 Note that Nessus has not tested f...

8.8CVSS6.2AI score0.02EPSS
Exploits0References3
NVD
NVD
added 2026/01/27 9:16 p.m.6 views

CVE-2026-1504

Inappropriate implementation in Background Fetch API in Google Chrome prior to 144.0.7559.110 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

6.5CVSS0.00224EPSS
Exploits1References2
NVD
NVD
added 2025/11/14 3:15 a.m.5 views

CVE-2024-13178

Inappropriate implementation in Fullscreen in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS0.0018EPSS
Exploits1References2
OSV
OSV
added 2025/11/06 10:15 p.m.10 views

AZL-69905 CVE-2025-11215 affecting package nodejs18 18.20.3-11

Off by one error in V8 in Google Chrome prior to 141.0.7390.54 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS7.4AI score0.00239EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/10/29 12:0 a.m.6 views

Google Chrome < 142.0.7444.59 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 142.0.7444.59. It is, therefore, affected by multiple vulnerabilities as referenced in the 202510stable-channel-update-for-desktop28 advisory. - Type Confusion in V8 in Google Chrome prior to 142.0.7444.59 allowed a...

8.8CVSS8.1AI score0.06806EPSS
Exploits2References51
OSV
OSV
added 2025/03/10 9:15 p.m.8 views

AZL-58362 CVE-2025-2137 affecting package nodejs 20.14.0-13

Out of bounds read in V8 in Google Chrome prior to 134.0.6998.88 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS5.8AI score0.00363EPSS
Exploits0References1
OSV
OSV
added 2023/06/13 6:15 p.m.1 views

DEBIAN-CVE-2023-3217

Use after free in WebXR in Google Chrome prior to 114.0.5735.133 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.4AI score0.13309EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/11/09 4:15 a.m.3 views

CVE-2022-3885

Use after free in V8 in Google Chrome prior to 107.0.5304.106 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.4AI score0.00664EPSS
Exploits0References4
OSV
OSV
added 2021/10/08 9:15 p.m.2 views

UBUNTU-CVE-2021-30626

Out of bounds memory access in ANGLE in Google Chrome prior to 93.0.4577.82 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.3AI score0.0098EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2020/04/16 8:49 a.m.3 views

chromium-browser: Inappropriate implementation in extensions

Inappropriate implementation in extensions in Google Chrome prior to 81.0.4044.92 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information via a crafted Chrome Extension...

4.3CVSS7.3AI score0.01153EPSS
Exploits0References5
OSV
OSV
added 2018/11/14 3:29 p.m.4 views

CVE-2018-17476

Incorrect dialog placement in Cast UI in Google Chrome prior to 70.0.3538.67 allowed a remote attacker to obscure the full screen warning via a crafted HTML page...

4.3CVSS7.4AI score0.01346EPSS
Exploits0References6
Rows per page
Query Builder