Lucene search
K

92 matches found

CVE
CVE
added 2026/06/30 10:39 p.m.24 views

CVE-2026-14120

Concrete details found: CVE-2026-14120 affects Google Chrome DevTools with an inappropriate implementation allowing a remote attacker who has compromised the renderer to potentially escape the sandbox via a crafted HTML page, prior to Chrome 150.0.7871.47. The vulnerability is tied to Chromium De...

9.6CVSS5.8AI score0.00276EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2026/06/30 10:38 p.m.6 views

CVE-2026-13968

Insufficient validation of untrusted input in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code inside a sandbox via a malicious file. Chromium security severity: Medium...

7.5CVSS6.2AI score0.00327EPSS
Exploits0
EUVD
EUVD
added 2026/06/12 12:31 a.m.10 views

EUVD-2026-36337

Inappropriate implementation in DevTools in Google Chrome prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS5.5AI score0.00229EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2026/06/05 2:0 p.m.10 views

Chromium: CVE-2026-10965 Integer overflow in DevTools

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS5.4AI score0.00361EPSS
Exploits0
EUVD
EUVD
added 2026/06/05 12:31 a.m.12 views

EUVD-2026-34587

Inappropriate implementation in DevTools in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. Chromium security severity: Medium...

5.8AI score0.00142EPSS
Exploits0References3
OSV
OSV
added 2026/06/04 11:17 p.m.7 views

DEBIAN-CVE-2026-11212

Insufficient policy enforcement in DevTools in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. Chromium security severity: Medium...

4.3CVSS5.4AI score0.00137EPSS
Exploits0References1
NVD
NVD
added 2026/06/04 11:17 p.m.9 views

CVE-2026-11126

Inappropriate implementation in DevTools in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. Chromium security severity: Medium...

4.3CVSS0.00142EPSS
Exploits0References2
OSV
OSV
added 2026/06/04 11:17 p.m.7 views

DEBIAN-CVE-2026-11126

Inappropriate implementation in DevTools in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. Chromium security severity: Medium...

4.3CVSS5.4AI score0.00142EPSS
Exploits0References1
NVD
NVD
added 2026/06/04 11:17 p.m.9 views

CVE-2026-11022

Insufficient validation of untrusted input in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.0028EPSS
Exploits0References2
NVD
NVD
added 2026/06/04 11:16 p.m.8 views

CVE-2026-10916

Insufficient validation of untrusted input in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: High...

6.1CVSS0.00213EPSS
Exploits0References2
OSV
OSV
added 2026/06/04 11:16 p.m.7 views

DEBIAN-CVE-2026-10916

Insufficient validation of untrusted input in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: High...

6.1CVSS5.6AI score0.00213EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/04 11:6 p.m.7 views

CVE-2026-11250

Inappropriate implementation in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Low...

9.6CVSS5.5AI score0.00239EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/06/04 11:5 p.m.41 views

CVE-2026-11238

Inappropriate implementation in DevTools in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information from process memory via a crafted Chrome Extension. Chromium security severity: Low...

0.0017EPSS
Exploits0References2
CVE
CVE
added 2026/06/04 11:5 p.m.21 views

CVE-2026-11126

CVE-2026-11126 : Concrete details show an issue in Chromium-based Chrome DevTools. An attacker could leak cross-origin data by convincing a user to install a malicious Chrome extension. Affected software/version: Google Chrome/Chromium prior to 149.0.7827.53. The Debian advisory fixes this in chr...

4.3CVSS5.8AI score0.00142EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2026/06/04 11:3 p.m.11 views

CVE-2026-10916

Insufficient validation of untrusted input in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: High...

6.1CVSS5.6AI score0.00213EPSS
Exploits0
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Chromium

Before version 92.0.4515.107, using “after free” in DevTools in Google Chrome allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption through a crafted HTML page...

8.8CVSS7.1AI score0.01233EPSS
Exploits1References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Chromium

Inappropriate implementation in DevTools in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to obtain potentially sensitive information from the disk via a crafted HTML page...

6.5CVSS7AI score0.05919EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2026/05/08 2:25 a.m.11 views

SUSE CVE-2026-8008

Inappropriate implementation in DevTools in Google Chrome prior to 148.0.7778.96 allowed an attacker who convinced a user to install a malicious extension to perform UI spoofing via a crafted Chrome Extension. Chromium security severity: Low...

5.4CVSS5.8AI score0.00121EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/07 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2026-7915

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient data validation in DevTools in Google Chrome on Android prior to 148.0.7778.96 allowed a remote attacker to bypass navigation restrictions via a...

4.3CVSS5.8AI score0.00243EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/07 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-7913

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient policy enforcement in DevTools in Google Chrome on Android prior to 148.0.7778.96 allowed a local attacker to perform privilege escalation via a...

7.8CVSS5.8AI score0.00112EPSS
Exploits0References2
Rows per page
Query Builder