Lucene search
+L

14 matches found

NVD
NVD
added 2026/05/28 11:16 p.m.10 views

CVE-2026-9944

Uninitialized Use in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

3.1CVSS0.00197EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in Chromium

Inappropriate implementations of Skia in Google Chrome prior to version 88.0.4324.146 allowed a local attacker to spoof the contents of the Omnibox URL bar through a crafted HTML page...

4.3CVSS6.8AI score0.00845EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/05 12:0 a.m.14 views

PT-2026-38170

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.96 Description An inappropriate implementation in Canvas allows a remote attacker to bypass the same origin policy, which is a security mechanism that restricts how a document or script loaded from on...

9.6CVSS5.8AI score0.00344EPSS
Exploits0References135
OSV
OSV
added 2025/11/18 12:15 a.m.1 views

CVE-2025-13228

Type Confusion in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.8AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/06/29 12:0 a.m.12 views

PT-2023-4179 · Google +3 · Google Chrome +3

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 115.0.5790.170 Description: The issue is related to a use after free in WebRTC, allowing a remote attacker to potentially exploit heap corruption via a crafted WebRTC session. This could lead to arbitrary code...

10CVSS7.8AI score0.99735EPSS
Exploits131References1168
SUSE CVE
SUSE CVE
added 2023/02/15 4:51 a.m.5 views

SUSE CVE-2017-5052

An incorrect assumption about block structure in Blink in Google Chrome prior to 57.0.2987.133 for Mac, Windows, and Linux, and 57.0.2987.132 for Android, allowed a remote attacker to potentially exploit memory corruption via a crafted HTML page that triggers improper casting...

8.8CVSS9AI score0.01493EPSS
Exploits0References5
CNVD
CNVD
added 2020/05/20 12:0 a.m.2 views

Google Chrome WebRTC Resource Management Error Vulnerability (CNVD-2020-29311)

Google Chrome is a web browser from Google, an American company. A resource management error vulnerability exists in WebRTC in versions of Google Chrome prior to 83.0.4103.61. An attacker can exploit the vulnerability to execute arbitrary code with the help of a specially crafted website...

8.8CVSS9.3AI score0.01674EPSS
Exploits0References1
CNVD
CNVD
added 2019/11/29 12:0 a.m.6 views

Google Chrome Out-of-Bounds Read Vulnerability (CNVD-2019-43386)

Chrome is a simple and efficiently designed web browsing tool developed by Google. An out-of-bounds read vulnerability exists in Skia in versions prior to Google Chrome 75.0.3770.80. A remote attacker can exploit this vulnerability to obtain sensitive information from process memory via specially...

8.1CVSS8.5AI score0.01358EPSS
Exploits0References1
OSV
OSV
added 2019/06/27 5:15 p.m.1 views

UBUNTU-CVE-2018-6142

Array bounds check failure in V8 in Google Chrome prior to 67.0.3396.62 allowed a remote attacker to perform an out of bounds memory read via a crafted PDF file...

6.5CVSS7AI score0.00833EPSS
Exploits0References3
OSV
OSV
added 2018/11/14 3:29 p.m.2 views

CVE-2018-6071

An integer overflow in Skia in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page...

8.8CVSS7.4AI score0.01481EPSS
Exploits0References5
OSV
OSV
added 2017/02/17 7:59 a.m.5 views

CVE-2017-5016

Blink in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, and 56.0.2924.87 for Android, failed to prevent certain UI elements from being displayed by non-visible pages, which allowed a remote attacker to show certain UI elements on a page they don't control via a crafted HTML page...

6.5CVSS7.3AI score
Exploits0References7
OSV
OSV
added 2016/03/05 12:0 a.m.5 views

UBUNTU-CVE-2016-2844

WebKit/Source/core/layout/LayoutBlock.cpp in Blink, as used in Google Chrome before 49.0.2623.75, does not properly determine when anonymous block wrappers may exist, which allows remote attackers to cause a denial of service incorrect cast and assertion failure or possibly have unspecified other...

8.8CVSS7.4AI score0.02121EPSS
Exploits0References7
CNVD
CNVD
added 2015/07/24 12:0 a.m.5 views

Google Chrome Blink Information Disclosure Vulnerability

Blink is the United States Google Google Inc. and Norway Opens Opera Software company jointly developed a set of browser layout engine rendering engine. A security vulnerability exists in the 'XSSAuditor::canonicalize' function in the core/html/parser/XSSAuditor.cpp file in the XSS auditor progra...

5CVSS8.4AI score0.01372EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2015/01/27 6:46 p.m.3 views

chromium-browser: out-of-bounds read in PDFium

The sycc422torgb function in fxcodec/codec/fxcodecjpxopj.cpp in PDFium, as used in Google Chrome before 40.0.2214.91, does not properly handle odd values of image width, which allows remote attackers to cause a denial of service out-of-bounds read via a crafted PDF document...

5CVSS7.4AI score0.01903EPSS
Exploits0References5
Rows per page
Query Builder