CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

CVE-2026-9903

Insufficient validation of untrusted input in Site Isolation in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted MHTML page. Chromium security severity: High...

5CVSS0.00031EPSS

Exploits0References2

OSV•added last week•5 views

DEBIAN-CVE-2026-9903

5CVSS5.8AI score0.00031EPSS

Exploits0References1

AlpineLinux•added 2026/05/06 6:13 p.m.•5 views

CVE-2026-8022

Inappropriate implementation in MHTML in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who convinced a user to engage in specific UI gestures to leak cross-origin data via a crafted MHTML page. Chromium security severity: Low...

3.1CVSS5.8AI score0.00005EPSS

Exploits0

CVE•added 2026/05/06 6:13 p.m.•14 views

CVE-2026-8022

CVE-2026-8022 refers to an Inappropriate implementation in MHTML in Google Chrome prior to 148.0.7778.96, where a remote attacker could entice a user to perform specific UI gestures to leak cross-origin data via a crafted MHTML page. The connected documents confirm the affected software is Google...

3.1CVSS5.8AI score0.00005EPSS

Exploits0References2Affected Software1

Tenable Nessus•added 2025/08/19 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2017-5124

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incorrect application of sandboxing in Blink in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a...

6.1CVSS7.5AI score0.19092EPSS

Exploits5References2

SUSE CVE•added 2023/02/15 4:50 a.m.•0 views

SUSE CVE-2017-5124

Incorrect application of sandboxing in Blink in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted MHTML page...

6.1CVSS8.7AI score0.19092EPSS

Exploits5References6

UbuntuCve•added 2018/02/07 11:29 p.m.•26 views

CVE-2017-5124

Incorrect application of sandboxing in Blink in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted MHTML page...

6.1CVSS7AI score0.19092EPSS

Exploits5References2

OSV•added 2018/02/07 11:29 p.m.•0 views

UBUNTU-CVE-2017-5124

Incorrect application of sandboxing in Blink in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted MHTML page...

6.1CVSS7AI score0.19092EPSS

Exploits5References3

NVD•added 2018/02/07 11:29 p.m.•16 views

CVE-2017-5124

Incorrect application of sandboxing in Blink in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted MHTML page...

6.1CVSS5.9AI score0.19092EPSS

Exploits5References9

OSV•added 2018/02/07 11:29 p.m.•1 views

CVE-2017-5124

Incorrect application of sandboxing in Blink in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted MHTML page...

6.1CVSS7AI score0.19092EPSS

Exploits5References9

Debian CVE•added 2018/02/07 11:0 p.m.•22 views

CVE-2017-5124

Removed by vendor...

6.1CVSS8AI score0.19092EPSS

Exploits5

Cvelist•added 2018/02/07 11:0 p.m.•22 views

CVE-2017-5124

Incorrect application of sandboxing in Blink in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted MHTML page...

6.5AI score0.19092EPSS

Exploits5References9

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by