446616 matches found
EUVD-2026-40836
Use after free in Audio in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Low...
EUVD-2026-40808
Use after free in Chromoting in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code via malicious network traffic. Chromium security severity: Low...
EUVD-2026-40717
Inappropriate implementation in SplitView in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to spoof the contents of the Omnibox URL bar via a crafted HTML page. Chromium security severity: Low...
EUVD-2026-40712
Use after free in Ozone in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...
EUVD-2026-40633
Insufficient policy enforcement in Extensions in Google Chrome on Linux prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malicious extension to perform UI spoofing via a crafted Chrome Extension. Chromium security severity: Medium...
EUVD-2026-40516
Use after free in Chromoting in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code via malicious network traffic. Chromium security severity: High...
EUVD-2026-40540
Use after free in Ozone in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...
EUVD-2026-40541
Use after free in Ozone in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. Chromium security severity: High...
EUVD-2026-40496
Inappropriate implementation in Input in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...
The vulnerabilities in the net/bluetooth/eir.c and net/bluetooth/mgmt.c modules of Linux kernel allow a hacker to cause a service failure.
The vulnerability in the net/bluetooth/eir.c and net/bluetooth/mgmt.c modules of Linux kernel systems relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a system failure...
CVE-2026-14149
Concerning CVE-2026-14149: A use-after-free in Chrome’s Audio path on Linux (Chromium-based) allowed remote code execution via a crafted HTML page. Affected product: Google Chrome on Linux. Root cause: use-after-free in Audio component; impact: arbitrary code execution. Vulnerability is mitigated...
CVE-2026-14121
CVE-2026-14121 concerns a use-after-free in Chromoting within Google Chrome on Linux, prior to version 150.0.7871.47. The flaw allows a remote attacker to execute arbitrary code via malicious network traffic. The vulnerability is categorized as low severity per Chromium notes. Affected component ...
CVE-2026-14030
Inappropriate implementation in SplitView in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to spoof the contents of the Omnibox URL bar via a crafted HTML page. Chromium security severity: Low...
CVE-2026-14030
Affected software: Google Chrome on Linux. Vulnerable component: SplitView. Root cause: Inappropriate implementation allowed by a crafted HTML page to spoof the Omnibox (URL bar) contents when a user performs specific UI gestures. Impact: remote attacker could mislead users by displaying a forged...
CVE-2026-14024
CVE-2026-14024 is a use-after-free in Chrome’s Ozone on Linux, prior to 150.0.7871.47. A remote attacker could trick a user into specific UI gestures to trigger heap corruption via a crafted HTML page. Affected software is Google Chrome (Linux) with Ozone integration; root cause: use-after-free i...
CVE-2026-13945
Affected software: Google Chrome on Linux. Issue: insufficient policy enforcement in Chrome Extensions allows UI spoofing when a user installs a malicious extension. Underlying cause: policy enforcement weakness in Extensions (details not provided). Impact: UI spoofing by a crafted extension as d...
CVE-2026-13855
CVE-2026-13855: Use-after-free in Ozone for Google Chrome on Linux allows remote code execution via a crafted HTML page when a user performs specific UI gestures. Affected: Chrome on Linux with Ozone; vulnerable component is Ozone in Chrome. Root cause: use-after-free. Impact: arbitrary code exec...
CVE-2026-13854
CVE-2026-13854 affects Google Chrome on Linux (Ozone) with a use-after-free in the rendering path prior to 150.0.7871.47. A remote attacker who compromises the renderer could potentially escape the sandbox via a crafted HTML page. Impact is a high-severity sandbox-escape vector. The available pub...
CVE-2026-13830
CVE-2026-13830 affects Chromoting in Google Chrome on Linux, with a use-after-free vulnerability that could allow a remote attacker to execute arbitrary code via malicious network traffic. Version 150.0.7871.47 and later mitigates the issue; upgrade to the referenced stable release to patch. The ...
CVE-2026-13810
CVE-2026-13810 : In Google Chrome for Linux, an inappropriate implementation in Input prior to 150.0.7871.47 could allow a remote attacker to extract potentially sensitive data from a process’s memory via a crafted HTML page. Affected product/version: Google Chrome on Linux, before 150.0.7871.47....