Lucene search
K

9629 matches found

NVD
NVD
added 6 days ago6 views

CVE-2026-15130

Insufficient policy enforcement in Navigation in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to bypass site isolation via a crafted HTML page. Chromium security severity: High...

4.3CVSS0.00172EPSS
Exploits0References2
NVD
NVD
added 6 days ago7 views

CVE-2026-15131

Inappropriate implementation in Navigation in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to bypass site isolation via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS0.00172EPSS
Exploits0References2
NVD
NVD
added 6 days ago8 views

CVE-2026-15126

Use after free in Forms in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS0.00242EPSS
Exploits0References2
NVD
NVD
added 6 days ago6 views

CVE-2026-15120

Use after free in Core in Google Chrome on Windows prior to 150.0.7871.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS0.00178EPSS
Exploits0References2
NVD
NVD
added 6 days ago8 views

CVE-2026-15125

Inappropriate implementation in Forms in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS0.00233EPSS
Exploits0References2
NVD
NVD
added 6 days ago7 views

CVE-2026-15124

Insufficient policy enforcement in Passwords in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: High...

4.3CVSS0.00168EPSS
Exploits0References2
NVD
NVD
added 6 days ago7 views

CVE-2026-15127

Inappropriate implementation in WebGL in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: High...

6.1CVSS0.00139EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 6 days ago8 views

CVE-2026-15107

Use after free in IndexedDB in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

6.3AI score0.00242EPSS
Exploits0References3Affected Software1
CVE
CVE
added 6 days ago13 views

CVE-2026-15128

CVE-2026-15128 concerns an inappropriate implementation in Forms in Google Chrome prior to 150.0.7871.115 that could allow a remote attacker to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. The Chrome stable update notes indicate the fix was delivered in the 150.0.7871.114/115 ...

6.1CVSS6.1AI score0.00139EPSS
Exploits0References2Affected Software1
CVE
CVE
added 6 days ago71 views

CVE-2026-15130

CVE-2026-15130 affects Google Chrome navigation policy enforcement. The vulnerability arises from insufficient policy enforcement in Navigation, enabling a remote attacker to bypass site isolation via a crafted HTML page. A fix is available in the Stable channel: Windows/Mac 150.0.7871.114/115 an...

4.3CVSS5.8AI score0.00172EPSS
Exploits0References2Affected Software1
CVE
CVE
added 6 days ago14 views

CVE-2026-15127

CVE-2026-15127 concerns Google Chrome WebGL implementation. The issue allows a remote attacker to execute UXSS by crafting an HTML page against Chrome versions earlier than 150.0.7871.115. Affected component is WebGL in Chromium/Chrome; root cause details are not fully disclosed in the provided s...

6.1CVSS6.1AI score0.00139EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 6 days ago34 views

CVE-2026-15126

Use after free in Forms in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

0.00242EPSS
Exploits0References2
Cvelist
Cvelist
added 6 days ago41 views

CVE-2026-15124

Insufficient policy enforcement in Passwords in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: High...

0.00168EPSS
Exploits0References2
CVE
CVE
added 6 days ago74 views

CVE-2026-15124

CVE-2026-15124 affects Google Chrome; vulnerability in the Passwords component due to insufficient policy enforcement allows a remote attacker to bypass the same-origin policy via a crafted HTML page. Impact is a cross-origin bypass as described in the public advisories. Remediation: update to Ch...

4.3CVSS6AI score0.00168EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 6 days ago8 views

CVE-2026-15121

Use after free in WebRTC in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

6.3AI score0.00306EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 6 days ago33 views

CVE-2026-15121

Use after free in WebRTC in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

0.00306EPSS
Exploits0References2
Debian CVE
Debian CVE
added 6 days ago5 views

CVE-2026-15121

Use after free in WebRTC in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.3AI score0.00306EPSS
Exploits0
CVE
CVE
added 6 days ago11 views

CVE-2026-15119

CVE-2026-15119 concerns a race condition in Google Chrome’s GetUserMedia that can enable a sandbox escape when an attacker already compromised the renderer process. The vulnerability is associated with Chrome versions prior to 150.0.7871.115, with the 150.0.7871.115 release addressing the issue. ...

8.3CVSS6AI score0.00147EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 6 days ago35 views

CVE-2026-15120

Use after free in Core in Google Chrome on Windows prior to 150.0.7871.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

0.00178EPSS
Exploits0References2
Cvelist
Cvelist
added 6 days ago35 views

CVE-2026-15118

Use after free in Input in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

0.00242EPSS
Exploits0References2
Rows per page
Query Builder