Lucene search
K

396 matches found

UbuntuCve
UbuntuCve
added 2026/05/06 7:16 p.m.8 views

CVE-2026-7955

Uninitialized Use in GPU in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

5.3CVSS5.8AI score0.0024EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/05/06 6:13 p.m.6 views

CVE-2026-8020

Uninitialized Use in GPU in Google Chrome on Android prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Low...

5.3CVSS5.8AI score0.00207EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/05/06 6:13 p.m.5 views

CVE-2026-7985

Use after free in GPU in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

8.3CVSS5.8AI score0.00206EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/06 6:12 p.m.7 views

CVE-2026-7972

Uninitialized Use in GPU in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00238EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2026/05/06 6:12 p.m.8 views

CVE-2026-7918

Use after free in GPU in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS5.8AI score0.00206EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/05/01 3:56 p.m.4 views

CVE-2026-22165 GPU DDK - UAF read of GLES3Context::psDrawParams and GLES3Context::psMode and UAF read/write of RMJob::apsCCBs

A web page that contains unusual WebGPU content loaded into the GPU GLES render process and can trigger a write UAF crash in the GPU GLES user-space shared library. On certain platforms, when the process executing graphics workload has system privileges this could enable further exploits on the...

5.8AI score0.00346EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2026/05/01 7:15 a.m.4 views

Chromium: CVE-2026-7357 Use after free in GPU

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

7.5CVSS5.3AI score0.00236EPSS
Exploits0
Kaspersky
Kaspersky
added 2026/05/01 12:0 a.m.15 views

KLA91012 Multiple vulnerabilities in Microsoft Browser

Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in media can be exploited remotely to execute...

9.6CVSS6.8AI score0.00433EPSS
Exploits0References29
Vulnrichment
Vulnrichment
added 2026/04/28 10:35 p.m.7 views

CVE-2026-7357

Use after free in GPU in Google Chrome prior to 147.0.7727.138 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

5.5AI score0.00236EPSS
Exploits0References2
EUVD
EUVD
added 2026/04/28 10:35 p.m.3 views

EUVD-2026-26158

Use after free in GPU in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

5.3AI score0.00286EPSS
Exploits0References2
Kaspersky
Kaspersky
added 2026/04/28 12:0 a.m.14 views

KLA91010 Multiple vulnerabilities in Google Chrome

Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Canvas can be exploited remotely to execute arbitrar...

9.6CVSS6.8AI score0.00433EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/04/23 12:0 a.m.5 views

Google Chrome < 147.0.7727.116 Multiple Vulnerabilities

The version of Google Chrome installed on the remote macOS host is prior to 147.0.7727.116. It is, therefore, affected by multiple vulnerabilities as referenced in the 202604stable-channel-update-for-desktop22 advisory. - Out of bounds read in GPU in Google Chrome on Android prior to 147.0.7727.1...

9.6CVSS5.8AI score0.00285EPSS
Exploits0References7
EUVD
EUVD
added 2026/04/15 9:30 p.m.3 views

EUVD-2026-23070

Out of bounds write in GPU in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the GPU process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS5.8AI score0.00269EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/04/15 7:4 p.m.3 views

CVE-2026-6314

Out of bounds write in GPU in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the GPU process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00269EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/15 12:0 a.m.10 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google. Google Chrome suffers from a GPU out-of-bounds write vulnerability. The vulnerability stems from a failure of the GPU component to properly handle boundary checks and can be exploited by an attacker to achieve sandbox escape via specially crafte...

8.3CVSS5.8AI score0.00269EPSS
Exploits0References1
CVE
CVE
added 2026/04/01 4:41 a.m.70 views

CVE-2026-5272

CVE-2026-5272 is a heap buffer overflow in Chrome’s GPU code, allowing remote execution of code via a crafted HTML page. Affected product: Google Chrome; vulnerable component: GPU/ Heap handling in Chrome’s rendering pipeline; root cause per CNVD/CNNVD items: GPU heap failing to validate input le...

8.8CVSS6.4AI score0.0045EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/20 10:52 p.m.3 views

CVE-2026-22163 GPU DDK - Unsafe writing of MMU PT entries on systems with 32-bit host CPU

Requires malware code to misuse the DDK kernel module IOCTL interface. Such code can use the interface in an unsupported way that allows subversion of the GPU to perform writes to arbitrary physical memory pages. The product utilises a shared resource in a concurrent manner but does not attempt t...

6AI score0.00078EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/13 4:37 p.m.4 views

CVE-2025-58409 GPU DDK - Disguised freelist buffers passed to RGXCreateHWRTDataSet can cause arbitrary physical memory writes corrupting memory

Software installed and run as a non-privileged user may conduct improper GPU system calls to subvert GPU HW to write to arbitrary physical memory pages. Under certain circumstances this exploit could be used to corrupt data pages not allocated by the GPU driver but memory pages in use by the kern...

6.2AI score0.00132EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:13 a.m.10 views

CVE-2022-31615

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer, where a local user with basic capabilities can cause a null-pointer dereference, which may lead to denial of service...

5.5CVSS6.3AI score0.00221EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/11/04 12:0 a.m.5 views

SAMSUNG Mobile Processor Exynos 安全漏洞

SAMSUNG Mobile Processor Exynos is a system-on-chip SoC from South Korea's Samsung SAMSUNG dedicated to smartphones and tablets. A security vulnerability exists in SAMSUNG Mobile Processor Exynos, which stems from a post-release reuse issue in the GPU that could lead to elevated privileges. The...

9.8CVSS6.7AI score0.00357EPSS
Exploits0References3
Rows per page
Query Builder