Lucene search
K

118 matches found

NVD
NVD
added 2026/06/30 11:17 p.m.6 views

CVE-2026-14118

Insufficient data validation in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

6.5CVSS0.00251EPSS
Exploits0References2
CVE
CVE
added 2026/06/30 10:38 p.m.19 views

CVE-2026-13962

CVE-2026-13962 affects Google Chrome (Chromium-based) prior to 150.0.7871.47. The issue is insufficient data validation in PDF handling within the renderer process, allowing a remote attacker who has already compromised the renderer to bypass navigation restrictions via a crafted HTML page. The o...

6.5CVSS5.8AI score0.00272EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/30 12:0 a.m.7 views

PT-2026-54393

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description Insufficient data validation in DevTools allows a remote attacker to leak cross-origin data through a crafted HTML page, provided the attacker can convince a user to perform specific UI...

9.8CVSS6AI score0.00413EPSS
Exploits0References449
RedhatCVE
RedhatCVE
added 2026/06/19 8:50 a.m.8 views

CVE-2026-12457

An insufficient data validation flaw was found in the Extensions component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=517153117...

7.4CVSS5.8AI score0.00136EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/06/10 6:8 p.m.9 views

CVE-2026-11685

An insufficient data validation flaw was found in the MediaCapture component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=517183713...

7.4CVSS5.4AI score0.00177EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/06/07 4:43 a.m.10 views

CVE-2026-10992

An insufficient data validation flaw was found in the Animation component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=493534964...

6.5CVSS5.4AI score0.00308EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/05/08 10:25 p.m.11 views

CVE-2026-7915

An insufficient data validation flaw was found in the DevTools component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=498454478...

4.3CVSS5.7AI score0.00243EPSS
Exploits0References5
NVD
NVD
added 2026/05/06 7:16 p.m.8 views

CVE-2026-7915

Insufficient data validation in DevTools in Google Chrome on Android prior to 148.0.7778.96 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: High...

4.3CVSS0.00243EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/05 12:0 a.m.13 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.96 contained a security vulnerability. This vulnerability stemmed from insufficient data validation in DevTools, which could allow remote attackers to bypass navigation restrictions through...

4.3CVSS5.8AI score0.00243EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/04/10 6:57 a.m.4 views

CVE-2026-5907

An insufficient data validation flaw was found in the Media component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=484665123...

8.1CVSS5.7AI score0.00189EPSS
Exploits0References5
OSV
OSV
added 2026/03/04 8:16 p.m.3 views

CVE-2026-3545

Insufficient data validation in Navigation in Google Chrome prior to 145.0.7632.159 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

9.6CVSS5.8AI score
Exploits0References2
Debian CVE
Debian CVE
added 2026/03/04 7:24 p.m.7 views

CVE-2026-3545

Insufficient data validation in Navigation in Google Chrome prior to 145.0.7632.159 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

9.6CVSS5.3AI score0.00263EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2026/02/20 11:16 p.m.6 views

CVE-2026-2047

GIMP ICNS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page ...

7.8CVSS7.4AI score0.0062EPSS
Exploits0References5
CVE
CVE
added 2026/02/10 9:58 a.m.17 views

CVE-2026-22923

CVE-2026-22923 affects NX (All versions

7.8CVSS5.9AI score0.00134EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2026/01/14 12:0 a.m.10 views

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A missing data validation vulnerability exists in the Huawei HarmonyOS hiview module, which can be exploited by an attacker to cause availability to be...

6.2CVSS5.8AI score0.00091EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/01/13 12:0 a.m.10 views

Quill 注入漏洞

Quill is a Quill open source application. It provides application editor functionality. Quill 2.0.3 version of the injection vulnerability , the vulnerability stems from the HTML export function lack of data validation , which may lead to cross-site scripting attacks...

6.1CVSS5.6AI score0.00221EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/01/09 9:54 a.m.10 views

CVE-2020-10905

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PhantomPDF 9.7.1.29511. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with...

4.3CVSS5.9AI score0.03405EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:50 a.m.20 views

CVE-2021-31485

This vulnerability allows remote attackers to execute arbitrary code on affected installations of OpenText Brava! Desktop 16.6.3.84. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

7.8CVSS6.8AI score0.01419EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/31 6:59 a.m.4 views

EUVD-2025-205894

FontForge PFB File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of FontForge. User interaction is required to exploit this vulnerability in that the target must visit a...

8.8CVSS7.1AI score0.0058EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2025/12/19 12:0 a.m.3 views

AzeoTech DAQFactory CTL File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of AzeoTech DAQFactory. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

7.8CVSS7.3AI score0.0031EPSS
Exploits0References1
Rows per page
Query Builder