Lucene search
+L

16542 matches found

nvd
nvd
added 2 days ago3 views

CVE-2026-15778

Insufficient validation of untrusted input in Navigation in Google Chrome prior to 150.0.7871.125 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.00256EPSS
Exploits0References2
nvd
nvd
added 2 days ago5 views

CVE-2026-15764

Use after free in Ozone in Google Chrome on Linux prior to 150.0.7871.125 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

7.5CVSS0.00297EPSS
Exploits0References2
cvelist
cvelist
added 2 days ago30 views

CVE-2026-15775

Inappropriate implementation in V8 in Google Chrome prior to 150.0.7871.125 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: High...

0.00256EPSS
Exploits0References2
cve
cve
added 2 days ago6 views

CVE-2026-15775

CVE-2026-15775 affects Google Chrome's V8 under a pre-150.0.7871.125 build. The issue is an inappropriate implementation that allowed a remote attacker to bypass the same-origin policy via a crafted HTML page. Impact is described as high in Chromium notes, with exploitation requiring user interac...

6.5CVSS6.1AI score0.00256EPSS
Exploits0References2Affected Software1
ptsecurity
ptsecurity
added 2 days ago6 views

PT-2026-58727

Name of the Vulnerable Software and Affected Versions Google Chrome on Linux versions prior to 150.0.7871.125 Description A use-after-free issue exists in the Ozone graphics layer. A remote attacker could potentially exploit heap corruption—a condition where memory is corrupted in the heap area—v...

7.5CVSS6.5AI score0.00297EPSS
Exploits0References7
nvd
nvd
added 2026/07/08 11:16 p.m.6 views

CVE-2026-15130

Insufficient policy enforcement in Navigation in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to bypass site isolation via a crafted HTML page. Chromium security severity: High...

4.3CVSS0.00172EPSS
Exploits0References2
nvd
nvd
added 2026/07/08 11:16 p.m.7 views

CVE-2026-15131

Inappropriate implementation in Navigation in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to bypass site isolation via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS0.00172EPSS
Exploits0References2
nvd
nvd
added 2026/07/08 11:16 p.m.6 views

CVE-2026-15120

Use after free in Core in Google Chrome on Windows prior to 150.0.7871.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS0.00178EPSS
Exploits0References2
nvd
nvd
added 2026/07/08 11:16 p.m.8 views

CVE-2026-15126

Use after free in Forms in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS0.00242EPSS
Exploits0References2
nvd
nvd
added 2026/07/08 11:16 p.m.7 views

CVE-2026-15124

Insufficient policy enforcement in Passwords in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: High...

4.3CVSS0.00168EPSS
Exploits0References2
nvd
nvd
added 2026/07/08 11:16 p.m.8 views

CVE-2026-15125

Inappropriate implementation in Forms in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS0.00233EPSS
Exploits0References2
nvd
nvd
added 2026/07/08 11:16 p.m.7 views

CVE-2026-15127

Inappropriate implementation in WebGL in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: High...

6.1CVSS0.00139EPSS
Exploits0References2
nvd
nvd
added 2026/07/08 11:16 p.m.7 views

CVE-2026-15107

Use after free in IndexedDB in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS0.00242EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/07/08 10:36 p.m.8 views

CVE-2026-15107

Use after free in IndexedDB in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

6.3AI score0.00242EPSS
Exploits0References3Affected Software1
cve
cve
added 2026/07/08 10:36 p.m.15 views

CVE-2026-15127

CVE-2026-15127 concerns Google Chrome WebGL implementation. The issue allows a remote attacker to execute UXSS by crafting an HTML page against Chrome versions earlier than 150.0.7871.115. Affected component is WebGL in Chromium/Chrome; root cause details are not fully disclosed in the provided s...

6.1CVSS6.1AI score0.00139EPSS
Exploits0References2Affected Software1
cve
cve
added 2026/07/08 10:36 p.m.13 views

CVE-2026-15128

CVE-2026-15128 concerns an inappropriate implementation in Forms in Google Chrome prior to 150.0.7871.115 that could allow a remote attacker to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. The Chrome stable update notes indicate the fix was delivered in the 150.0.7871.114/115 ...

6.1CVSS6.1AI score0.00139EPSS
Exploits0References2Affected Software1
cve
cve
added 2026/07/08 10:36 p.m.71 views

CVE-2026-15130

CVE-2026-15130 affects Google Chrome navigation policy enforcement. The vulnerability arises from insufficient policy enforcement in Navigation, enabling a remote attacker to bypass site isolation via a crafted HTML page. A fix is available in the Stable channel: Windows/Mac 150.0.7871.114/115 an...

4.3CVSS5.8AI score0.00172EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2026/07/08 10:36 p.m.35 views

CVE-2026-15126

Use after free in Forms in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

0.00242EPSS
Exploits0References2
cve
cve
added 2026/07/08 10:36 p.m.75 views

CVE-2026-15124

CVE-2026-15124 affects Google Chrome; vulnerability in the Passwords component due to insufficient policy enforcement allows a remote attacker to bypass the same-origin policy via a crafted HTML page. Impact is a cross-origin bypass as described in the public advisories. Remediation: update to Ch...

4.3CVSS6AI score0.00168EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2026/07/08 10:36 p.m.44 views

CVE-2026-15124

Insufficient policy enforcement in Passwords in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: High...

0.00168EPSS
Exploits0References2
Rows per page
Query Builder