Lucene search
K

75344 matches found

NVD
NVD
added 3 days ago9 views

CVE-2026-15114

Out of bounds read and write in Codecs in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to potentially exploit heap corruption via a crafted video file. Chromium security severity: High...

8.8CVSS0.00187EPSS
Exploits0References2
NVD
NVD
added 3 days ago6 views

CVE-2026-15115

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.115 allowed a local attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: High...

3.3CVSS0.00089EPSS
Exploits0References2
NVD
NVD
added 3 days ago10 views

CVE-2026-15117

Use after free in Payments in Google Chrome prior to 150.0.7871.115 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

7.5CVSS0.00178EPSS
Exploits0References2
NVD
NVD
added 3 days ago6 views

CVE-2026-15118

Use after free in Input in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS0.00242EPSS
Exploits0References2
NVD
NVD
added 3 days ago8 views

CVE-2026-15111

Use after free in Views in Google Chrome prior to 150.0.7871.115 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

7.5CVSS0.00178EPSS
Exploits0References2
NVD
NVD
added 3 days ago7 views

CVE-2026-15112

Use after free in Ozone in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

8.8CVSS0.0026EPSS
Exploits0References2
NVD
NVD
added 3 days ago6 views

CVE-2026-15113

Use after free in Autofill in Google Chrome on Android prior to 150.0.7871.115 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

9.6CVSS0.00202EPSS
Exploits0References2
NVD
NVD
added 3 days ago6 views

CVE-2026-15116

Use after free in Actor in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS0.00242EPSS
Exploits0References2
NVD
NVD
added 3 days ago6 views

CVE-2026-15108

Integer overflow in Extensions API in Google Chrome prior to 150.0.7871.115 allowed an attacker who convinced a user to install a malicious extension to perform an out of bounds memory read via a crafted Chrome Extension. Chromium security severity: High...

4.3CVSS0.00125EPSS
Exploits0References2
NVD
NVD
added 3 days ago7 views

CVE-2026-15107

Use after free in IndexedDB in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS0.00242EPSS
Exploits0References2
Cvelist
Cvelist
added 3 days ago34 views

CVE-2026-15131

Inappropriate implementation in Navigation in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to bypass site isolation via a crafted HTML page. Chromium security severity: Medium...

0.00172EPSS
Exploits0References2
Cvelist
Cvelist
added 3 days ago35 views

CVE-2026-15107

Use after free in IndexedDB in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

0.00242EPSS
Exploits0References2
CVE
CVE
added 3 days ago26 views

CVE-2026-15107

CVE-2026-15107 concerns Google's Chrome browser: a use-after-free in IndexedDB allowed via a crafted HTML page to potentially execute arbitrary code inside the sandbox. Affected software is Chrome prior to 150.0.7871.115 (Windows/Mac) with Linux at 150.0.7871.114. The underlying issue is a use-af...

8.8CVSS6.3AI score0.00242EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 3 days ago5 views

CVE-2026-15107

Use after free in IndexedDB in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6.3AI score0.00242EPSS
Exploits0
Debian CVE
Debian CVE
added 3 days ago5 views

CVE-2026-15131

Inappropriate implementation in Navigation in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to bypass site isolation via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS5.8AI score0.00172EPSS
Exploits0
CVE
CVE
added 3 days ago56 views

CVE-2026-15131

CVE-2026-15131 affects Google Chrome in the Navigation path where an inappropriate implementation could allow a remote attacker to bypass site isolation via a crafted HTML page. The issue is tied to Chromium security in the Navigation component and is classified as Medium severity. Affected versi...

4.3CVSS5.8AI score0.00172EPSS
Exploits0References2Affected Software1
CVE
CVE
added 3 days ago13 views

CVE-2026-15128

CVE-2026-15128 concerns an inappropriate implementation in Forms in Google Chrome prior to 150.0.7871.115 that could allow a remote attacker to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. The Chrome stable update notes indicate the fix was delivered in the 150.0.7871.114/115 ...

6.1CVSS6.1AI score0.00139EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 3 days ago32 views

CVE-2026-15128

Inappropriate implementation in Forms in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: High...

0.00139EPSS
Exploits0References2
Cvelist
Cvelist
added 3 days ago33 views

CVE-2026-15130

Insufficient policy enforcement in Navigation in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to bypass site isolation via a crafted HTML page. Chromium security severity: High...

0.00172EPSS
Exploits0References2
CVE
CVE
added 3 days ago12 views

CVE-2026-15127

CVE-2026-15127 concerns Google Chrome WebGL implementation. The issue allows a remote attacker to execute UXSS by crafting an HTML page against Chrome versions earlier than 150.0.7871.115. Affected component is WebGL in Chromium/Chrome; root cause details are not fully disclosed in the provided s...

6.1CVSS6.1AI score0.00139EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder