Lucene search
K

75458 matches found

NVD
NVD
added yesterday4 views

CVE-2026-15777

Use after free in UI in Google Chrome on Linux prior to 150.0.7871.125 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

7.5CVSS
Exploits0References2
NVD
NVD
added yesterday3 views

CVE-2026-15776

Inappropriate implementation in V8 in Google Chrome prior to 150.0.7871.125 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS
Exploits0References2
NVD
NVD
added yesterday3 views

CVE-2026-15767

Heap buffer overflow in libyuv in Google Chrome on Windows prior to 150.0.7871.125 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted video file. Chromium security severity: High...

8.8CVSS
Exploits0References2
NVD
NVD
added yesterday4 views

CVE-2026-15764

Use after free in Ozone in Google Chrome on Linux prior to 150.0.7871.125 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

7.5CVSS
Exploits0References2
NVD
NVD
added yesterday4 views

CVE-2026-15765

Use after free in Ozone in Google Chrome prior to 150.0.7871.125 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

7.5CVSS
Exploits0References2
CVE
CVE
added yesterday4 views

CVE-2026-15778

CVE-2026-15778 : In Google Chrome, there is insufficient validation of untrusted input in the Navigation component. This allows a remote attacker who has compromised the renderer process to bypass navigation restrictions via a crafted HTML page. The issue affects Chrome versions prior to 150.0.78...

6.1AI score
Exploits0References2
CVE
CVE
added yesterday5 views

CVE-2026-15776

CVE-2026-15776 affects Google Chrome/V8: an inappropriate implementation in V8 allowed remote code execution inside the sandbox via a crafted HTML page before Chrome 150.0.7871.125. The issue is addressed in the Chrome Stable Channel Update, which upgrades to 150.0.7871.125 (Windows/Mac) and 150....

8.8CVSS6.4AI score
Exploits0References2
CVE
CVE
added yesterday5 views

CVE-2026-15777

CVE-2026-15777 – Use-after-free in the Chrome UI on Linux prior to 150.0.7871.125 can allow a remote attacker to induce heap corruption by tricking a user into performing specific UI gestures on a crafted HTML page. Affected product: Google Chrome (Linux UI subsystem). Root cause: use-after-free ...

7.5CVSS6.1AI score
Exploits0References2
CVE
CVE
added yesterday3 views

CVE-2026-15773

CVE-2026-15773 is a Use-After-Free in Chrome’s Core on Windows prior to 150.0.7871.125 that could allow a remote attacker to achieve a sandbox escape via a crafted HTML page. The vulnerability affects Google Chrome Windows builds and is tracked in multiple sources. No exploitation status is provi...

9.6CVSS6.2AI score
Exploits0References2
CVE
CVE
added yesterday6 views

CVE-2026-15774

CVE-2026-15774 is a Use-after-free in Skia affecting Google Chrome prior to 150.0.7871.125. The issue could allow a remote attacker (with renderer access) to escape the Chrome sandbox via a crafted HTML page. Public references show a Chrome security update (Stable Channel) and list this CVE among...

8.3CVSS6.1AI score
Exploits0References2
CVE
CVE
added yesterday5 views

CVE-2026-15775

The CVE-2026-15775 entry concerns Google Chrome’s V8 engine. Affected component: V8 within Chrome prior to version 150.0.7871.125. The vulnerability allows a remote attacker to bypass the Same Origin Policy via a crafted HTML page, with a High severity per Chromium notes. The available connected ...

6.1AI score
Exploits0References2
CVE
CVE
added yesterday3 views

CVE-2026-15772

The CVE-2026-15772 entry describes a Use-After-Free in the GPU component of Google Chrome on Android prior to version 150.0.7871.125, which could allow a remote attacker who already compromised the renderer process to potentially escape the sandbox via a crafted HTML page. The issue is classified...

8.3CVSS6.2AI score
Exploits0References2
CVE
CVE
added yesterday3 views

CVE-2026-15771

CVE-2026-15771 affects Google Chrome on Windows prior to 150.0.7871.125. The vulnerability arises from insufficient validation of untrusted input in the Media component, allowing a remote attacker who has compromised the renderer process to potentially read sensitive information from process memo...

5.3CVSS6.1AI score
Exploits0References2
CVE
CVE
added yesterday3 views

CVE-2026-15770

CVE-2026-15770 affects Google Chrome (V8) prior to 150.0.7871.125. The issue is an uninitialized use in V8 that can allow a remote attacker to read potentially sensitive data from process memory via a crafted HTML page. Impact is confined to information disclosure; no exploit details or in-the-wi...

6.5CVSS6.1AI score
Exploits0References2
CVE
CVE
added yesterday4 views

CVE-2026-15769

CVE-2026-15769 concerns insufficient validation of untrusted input in Linux Toolkit Theming in Google Chrome on Linux prior to 150.0.7871.125, potentially allowing a renderer-compromised remote attacker to escape the sandbox via a crafted HTML page. The Chrome update notes roll-out of 150.0.7871....

8.3CVSS6.2AI score
Exploits0References2
CVE
CVE
added yesterday6 views

CVE-2026-15768

Google Chrome prior to 150.0.7871.125 is affected by an HTML-in-Canvas policy enforcement flaw that allows a remote attacker to bypass the same-origin policy via a crafted HTML page. The vulnerability stems from insufficient policy enforcement in the HTML-in-Canvas component. Impact is described ...

6.1AI score
Exploits0References2
CVE
CVE
added yesterday4 views

CVE-2026-15766

CVE-2026-15766 refers to an Uninitialized Use in Skia inside Google Chrome before version 150.0.7871.125. The vulnerability affects Skia components used by Chrome, allowing a remote attacker to potentially read sensitive information from process memory via a crafted HTML page. The Chrome update n...

6.5CVSS6.1AI score
Exploits0References2
CVE
CVE
added yesterday5 views

CVE-2026-15767

Summary of CVE-2026-15767 : A heap buffer overflow in libyuv used by Google Chrome on Windows allows remote code execution in the sandbox via a crafted video file. The issue is tied to Chrome prior to version 150.0.7871.125. In the connected advisories, Chrome’s July 2026 Stable Channel update li...

8.8CVSS6.5AI score
Exploits0References2
CVE
CVE
added yesterday7 views

CVE-2026-15765

CVE-2026-15765 : Use-after-free in Ozone of Google Chrome prior to 150.0.7871.125. A remote attacker, tricking a user into specific UI gestures, could potentially exploit heap corruption via a crafted HTML page. The Chrome security update 150.0.7871.124/125 (Stable Channel) includes fixes for thi...

7.5CVSS6.1AI score
Exploits0References2
CVE
CVE
added yesterday12 views

CVE-2026-15764

CVE-2026-15764 is a use-after-free in Chrome’s Ozone path on Linux, enabling potential heap corruption when a user is coerced into specific UI gestures via a crafted HTML page. Affected software is Google Chrome on Linux prior to the fixed build, with the issue classified as Critical (CVSS v3.1: ...

7.5CVSS6.1AI score
Exploits0References2
Rows per page
Query Builder