Chromium: CVE-2026-11296 Inappropriate implementation in ImageCapture

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

CVE-2026-11296

Inappropriate implementation in ImageCapture in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via a crafted HTML page. Chromium security severity: Low...

DEBIAN-CVE-2026-11296

Inappropriate implementation in ImageCapture in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via a crafted HTML page. Chromium security severity: Low...

CVE-2026-11296

Inappropriate implementation in ImageCapture in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via a crafted HTML page. Chromium security severity: Low...

CVE-2026-11296

Inappropriate implementation in ImageCapture in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via a crafted HTML page. Chromium security severity: Low...

PT-2026-46823

Inappropriate implementation in ImageCapture in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via a crafted HTML page. Chromium security severity: Low...

EUVD-2010-1864

Malware in sbrugna...

EUVD-2009-1688

Malware in sbrugna...

EUVD-2009-1689

Malware in sbrugna...

EUVD-2010-1444

Malware in sbrugna...

EUVD-2016-5675

Malware in sbrugna...

EUVD-2008-1573

Malware in sbrugna...

CVE-2023-0349

The Akuvox E11 libvoice library provides unauthenticated access to the camera capture for image and video. This could allow an attacker to view and record image and video from the camera...

PT-2023-8357 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.6.1 Description: The issue is related to insufficient access controls in the Image Capture component of the macOS operating system. It may allow an attacker to disclose protected user information. An app may be able...

SUSE CVE-2009-1693

WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 allows remote attackers to read images from arbitrary web sites via a CANVAS element with an SVG image, related to a "cross-site image capture issue."...

SUSE CVE-2009-1694

WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not properly handle redirects, which allows remote attackers to read images from arbitrary web sites via vectors involving a CANVAS element and redirection, related to a "cross-site...

SUSE CVE-2017-15395

A use after free in Blink in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page, aka an ImageCapture NULL pointer dereference...

#OTTuesday: AI Destined for Big Role in Entertainment

After years of hype, AI is finally making headway in industries like manufacturing, medicine and transportation -- and it's beginning to play a supporting role in media & entertainment. AkamaiTV's Paul Jackson chatted with Peter Chave, Principal Architect here at Akamai, to learn how AI is steppi...

Framework for Rogue Wi-Fi Access Point Attack: WiFi-Pumpkin

The WiFi-Pumpkin is a rogue AP framework to easily create these fake networks, all while forwarding legitimate traffic to and from the unsuspecting target. It comes stuffed with features, including rogue Wi-Fi access points, deauth attacks on client APs, a probe request and credentials monitor,...

UBUNTU-CVE-2017-15395

A use after free in Blink in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page, aka an ImageCapture NULL pointer dereference...