16693 matches found
CVE-2026-12007
Use after free in Core in Google Chrome on Windows prior to 149.0.7827.115 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Critical...
CVE-2026-12007
CVE-2026-12007 is a use-after-free in Chrome's Core on Windows, caused by a vulnerability in the handling of crafted HTML pages. The issue affects Chrome prior to version 149.0.7827.115 and could allow a remote attacker to execute arbitrary code. Google’s June 2026 stable-channel update (149.0.78...
CVE-2026-12008
Use after free in DigitalCredentials in Google Chrome prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...
CVE-2026-12007
Use after free in Core in Google Chrome on Windows prior to 149.0.7827.115 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Critical...
PT-2026-48770
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.115 Description Insufficient policy enforcement in DevTools allows a remote attacker to bypass the same origin policy, which is a security mechanism that restricts how a document or script loaded from...
PT-2026-48766
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.115 Description A heap buffer overflow exists in the Codecs component. This issue allows a remote attacker who has already compromised the renderer process to potentially achieve a sandbox escape by...
PT-2026-48767
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.115 Description A use after free issue in the Autofill component on Mac allows a remote attacker to potentially exploit heap corruption, which occurs when a program continues to use a pointer after it...
PT-2026-48760
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.115 Description A use after free issue in the Media component on Windows allows a remote attacker to potentially exploit heap corruption, which occurs when a program continues to use a pointer after i...
PT-2026-48758
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.115 Description A use after free issue exists in WebMIDI. This allows a remote attacker who has already compromised the renderer process to potentially perform a sandbox escape by using a crafted HTML...
PT-2026-48754
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.115 Description A use after free issue in Core allows a remote attacker to execute arbitrary code by inducing a user to open a crafted HTML page. Use after free is a memory corruption flaw that occurs...
PT-2026-48779
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.115 Description An out of bounds read exists in VideoCapture, which allows a remote attacker who has compromised the GPU process to obtain potentially sensitive information from process memory by usin...
PT-2026-48774
Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 149.0.7827.115 Description A use after free issue in the GPU allows a remote attacker who has compromised the renderer process to potentially perform a sandbox escape by using a crafted HTML page. Use...
PT-2026-48756
Name of the Vulnerable Software and Affected Versions Google Chrome on Mac versions prior to 149.0.7827.115 Description Insufficient validation of untrusted input in the Accessibility component allows a remote attacker who has compromised the renderer process to potentially perform a sandbox esca...
PT-2026-48771
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.115 Description Insufficient validation of untrusted input in the Network component allows a remote attacker who has compromised the renderer process to leak cross-origin data using a crafted HTML pag...
PT-2026-48772
Name of the Vulnerable Software and Affected Versions Google Chrome on ChromeOS versions prior to 149.0.7827.115 Description An out of bounds read occurs in the Video component, which allows a remote attacker who has already compromised the renderer process to obtain potentially sensitive...
Google Chrome 输入验证错误漏洞
Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.115 contained a vulnerability related to input validation. This vulnerability stemmed from improper implementations in the DevTools component, which could allow remote attackers to execute a...
Google Chrome 缓冲区错误漏洞
Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.115 contained a buffer overflow vulnerability. This vulnerability stemmed from an out-of-bound read operation in the VideoCapture component, which could allow remote attackers to obtain sensitive...
Google Chrome 安全漏洞
Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 149.0.7827.115 contained a security vulnerability caused by a heap buffer overflow in the GPU. This vulnerability could allow a remote attacker with access to the renderer process to execute a sandbox escap...
Google Chrome 资源管理错误漏洞
Google Chrome is a web browser developed by Google Inc. In versions prior to 149.0.7827.115, there was a resource management vulnerability that stemmed from issues with reusing resources after their release in the Media component. This vulnerability could allow remote attackers to exploit heap...
Google Chrome 资源管理错误漏洞
Google Chrome is a web browser developed by Google Inc. In versions prior to 149.0.7827.115, there was a resource management vulnerability that stemmed from the reuse of resources after they were released in Core. This vulnerability could allow remote attackers to execute arbitrary code through a...