Lucene search
K

20 matches found

OSV
OSV
added 2026/06/17 1:19 p.m.4 views

DEBIAN-CVE-2026-12446

Inappropriate implementation in Passwords in Google Chrome prior to 149.0.7827.155 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

4.3CVSS5.3AI score0.00194EPSS
Exploits0References1
CVE
CVE
added 2026/06/04 11:6 p.m.19 views

CVE-2026-11292

CVE-2026-11292 : A CSP bypass vulnerability in Blink used by Google Chrome prior to 149.0.7827.53 allows remote attackers to bypass content security policy through a crafted HTML page. Affected component is Blink in Chrome/Chromium; exploitation is possible over the network with user interaction ...

4.3CVSS5.8AI score0.00186EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.6 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.53 contained a security vulnerability. This vulnerability stemmed from improper implementations in the Canvas library, which could allow remote attackers to bypass the same-origin policy through...

6.5CVSS5.4AI score0.00165EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2026/05/28 10:25 p.m.5 views

CVE-2026-10009

Integer overflow in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

7.5CVSS6.1AI score0.00221EPSS
Exploits0
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.9 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.168 contained a security vulnerability, which was caused by an object lifecycle issue in the WebShare component. This vulnerability could allow remote attackers to execute arbitrary code by...

8.8CVSS6.2AI score0.00498EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/08 2:25 a.m.11 views

SUSE CVE-2026-7991

Use after free in UI in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6.2AI score0.00223EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/09/18 12:0 a.m.2 views

PT-2024-7781 · Google +4 · Google Chrome +4

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 130.0.6723.58 Microsoft Edge affected versions not specified Description: The issue is related to a use-after-free vulnerability in the Artificial Intelligence AI technology of Google Chrome and Microsoft Edge...

10CVSS9AI score0.06295EPSS
Exploits4References116
SUSE CVE
SUSE CVE
added 2023/02/15 4:51 a.m.3 views

SUSE CVE-2017-5110

Inappropriate implementation of the web payments API on blob: and data: schemes in Web Payments in Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux, and Android allowed a remote attacker to spoof the contents of the Omnibox via a crafted HTML page...

6.5CVSS8.5AI score0.01395EPSS
Exploits0References5
CNNVD
CNNVD
added 2020/11/18 12:0 a.m.6 views

Google Chrome Security Vulnerability

Google Chrome is a web browser from Google, Inc. in the United States. A security vulnerability exists in versions prior to Google chrome 87.0.4280.66, which stems from an improper implementation in cryptohome...

8.8CVSS7.3AI score0.00858EPSS
Exploits0References7
CNVD
CNVD
added 2020/07/15 12:0 a.m.2 views

Google Chrome Buffer Overflow Vulnerability (CNVD-2020-41201)

Chrome is a simple and efficiently designed web browsing tool developed by Google that is characterized by its simplicity and speed. A heap buffer overflow vulnerability exists in WebAudio in versions prior to Google Chrome 84.0.4147.89, no detailed vulnerability details are available at this tim...

9.3CVSS9.4AI score0.02882EPSS
Exploits0References1
CNVD
CNVD
added 2020/02/17 12:0 a.m.2 views

Google Chrome Content Security Policy Bypass Vulnerability (CNVD-2020-10252)

Chrome is a web browsing tool developed by Google. A content security policy bypass vulnerability exists in Google Chrome versions prior to 80.0.3987.87. The vulnerability stems from insufficient validation of untrusted input by Blink in Chrome. An attacker can exploit the vulnerability to bypass...

4.3CVSS8.3AI score0.01331EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2019/12/16 9:9 a.m.6 views

chromium-browser: Use after free in WebSockets

Use-after-free in WebSockets in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.4AI score0.01457EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2019/04/30 12:0 a.m.3 views

PT-2019-4829 · Google +2 · Google Chrome +2

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 73.0.3683.86 Description: The issue is related to an out of bounds write in JavaScript, which can potentially lead to heap corruption. A remote attacker could exploit this via a crafted HTML page, potentially...

9.6CVSS6.8AI score0.55925EPSS
Exploits9References226
CNVD
CNVD
added 2019/04/26 12:0 a.m.2 views

Google Chrome Uninitialized Variable Value Vulnerability

Google Chrome is a web browser from Google, an American company. An uninitialized variable value vulnerability exists in versions of Google Chrome prior to 74.0.3729.108. A remote attacker can exploit this vulnerability by tricking a user into visiting a specially crafted website to bypass securi...

6.5CVSS8.7AI score0.01614EPSS
Exploits0References1
CNVD
CNVD
added 2018/09/06 12:0 a.m.3 views

Google Chrome Skia heap buffer overflow vulnerability (CNVD-2018-22399)

Google Chrome is a web browser developed by Google, Inc. Skia is an open source 2D graphics library that provides common APIs that work on a variety of hardware and software platforms. A heap buffer overflow vulnerability exists in Skia in versions prior to Google Chrome 63.0.3239.84. A remote...

8.8CVSS9.1AI score0.01625EPSS
Exploits0References1
OSV
OSV
added 2018/01/09 4:29 p.m.7 views

UBUNTU-CVE-2015-1290

The Google V8 engine, as used in Google Chrome before 44.0.2403.89 and QtWebEngineCore in Qt before 5.5.1, allows remote attackers to cause a denial of service memory corruption or execute arbitrary code via a crafted web site...

8.8CVSS7.6AI score0.03296EPSS
Exploits0References8
OSV
OSV
added 2017/04/24 11:59 p.m.2 views

CVE-2017-5036

A use after free in PDFium in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed a remote attacker to have an unspecified impact via a crafted PDF file...

7.8CVSS7.4AI score0.00982EPSS
Exploits0References6
OSV
OSV
added 2017/04/24 11:59 p.m.3 views

CVE-2017-5042

Cast in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android sent cookies to sites discovered via SSDP, which allowed an attacker on the local network segment to initiate connections to arbitrary URLs and observe any plaintext cookies sent...

5.7CVSS7.4AI score0.00357EPSS
Exploits0References6
CNVD
CNVD
added 2016/04/18 12:0 a.m.4 views

Google Chrome Cross-Site Scripting Vulnerability (CNVD-2016-02450)

Google Chrome is a web browser developed by the American company Google Google. A cross-site scripting vulnerability exists in Google Chrome versions prior to 50.0.2661.75, which stems from an error in the extension binding. A remote attacker can exploit this vulnerability to inject arbitrary web...

6.1CVSS8.4AI score0.01064EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2012/03/22 4:55 p.m.3 views

CVE-2011-3051

Use-after-free vulnerability in the Cascading Style Sheets CSS implementation in Google Chrome before 17.0.963.83 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the cross-fade function...

6.8CVSS8.6AI score0.01766EPSS
Exploits0References12
Rows per page
Query Builder