Lucene search
K

294 matches found

EUVD
EUVD
added 5 days ago5 views

EUVD-2026-40548

Insufficient policy enforcement in Web Authentication Passkeys & Security Keys in Google Chrome on iOS prior to 150.0.7871.47 allowed an attacker in a privileged network position to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00238EPSS
Exploits0References3
NVD
NVD
added 6 days ago6 views

CVE-2026-14092

Insufficient policy enforcement in Privacy in Google Chrome prior to 150.0.7871.47 allowed an attacker in a privileged network position to leak cross-origin data via malicious network traffic. Chromium security severity: Low...

4.3CVSS0.00142EPSS
Exploits0References2
NVD
NVD
added 6 days ago4 views

CVE-2026-13894

Insufficient policy enforcement in Network in Google Chrome prior to 150.0.7871.47 allowed an attacker in a privileged network position to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.00212EPSS
Exploits0References2
OSV
OSV
added 6 days ago2 views

DEBIAN-CVE-2026-13876

Inappropriate implementation in Network in Google Chrome prior to 150.0.7871.47 allowed an attacker in a privileged network position to bypass content security policy via malicious network traffic. Chromium security severity: Medium...

6.5CVSS5.8AI score0.00227EPSS
Exploits0References1
CVE
CVE
added 6 days ago69 views

CVE-2026-14092

CVE-2026-14092 affects Google Chrome (Chromium-based privacy policy enforcement). It describes insufficient policy enforcement in Privacy in Chrome prior to 150.0.7871.47, enabling an attacker in a privileged network position to leak cross-origin data via malicious network traffic. The CVSS base ...

4.3CVSS5.8AI score0.00142EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 6 days ago4 views

CVE-2026-14092

Insufficient policy enforcement in Privacy in Google Chrome prior to 150.0.7871.47 allowed an attacker in a privileged network position to leak cross-origin data via malicious network traffic. Chromium security severity: Low...

4.3CVSS5.8AI score0.00142EPSS
Exploits0
Cvelist
Cvelist
added 6 days ago20 views

CVE-2026-13894

Insufficient policy enforcement in Network in Google Chrome prior to 150.0.7871.47 allowed an attacker in a privileged network position to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

0.00212EPSS
Exploits0References2
Debian CVE
Debian CVE
added 6 days ago3 views

CVE-2026-13876

Inappropriate implementation in Network in Google Chrome prior to 150.0.7871.47 allowed an attacker in a privileged network position to bypass content security policy via malicious network traffic. Chromium security severity: Medium...

6.5CVSS5.8AI score0.00227EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/06/11 12:0 a.m.8 views

PT-2026-48759

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.115 Description A use after free issue in the Network component allows an attacker in a privileged network position to potentially exploit heap corruption through malicious network traffic. Use after...

8.3CVSS5.3AI score0.00246EPSS
Exploits0References42
CNNVD
CNNVD
added 2026/06/11 12:0 a.m.15 views

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser developed by Google Inc. In versions prior to 149.0.7827.115, there was a resource management vulnerability. This vulnerability stemmed from a problem with reusing resources after they were released by the Network component. This could allow attackers with privilege...

8.1CVSS5.4AI score0.00225EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/04 11:6 p.m.8 views

CVE-2026-11269

Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker in a privileged network position to execute arbitrary code inside a sandbox via a crafted Chrome Extension. Chromium security severity: Low...

7.1CVSS6AI score0.00102EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/04 11:6 p.m.8 views

CVE-2026-11269

Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker in a privileged network position to execute arbitrary code inside a sandbox via a crafted Chrome Extension. Chromium security severity: Low...

6AI score0.00102EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/06/04 11:6 p.m.8 views

CVE-2026-11269

Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker in a privileged network position to execute arbitrary code inside a sandbox via a crafted Chrome Extension. Chromium security severity: Low...

7.1CVSS6AI score0.00102EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/06/04 11:5 p.m.8 views

CVE-2026-11199

Inappropriate implementation in WebRTC in Google Chrome prior to 149.0.7827.53 allowed an attacker in a privileged network position to leak cross-origin data via malicious network traffic. Chromium security severity: Medium...

5.4AI score0.00189EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/04 11:5 p.m.33 views

CVE-2026-11199

Inappropriate implementation in WebRTC in Google Chrome prior to 149.0.7827.53 allowed an attacker in a privileged network position to leak cross-origin data via malicious network traffic. Chromium security severity: Medium...

0.00189EPSS
Exploits0References2
CVE
CVE
added 2026/06/04 11:5 p.m.119 views

CVE-2026-11199

CVE-2026-11199 affects Google Chrome WebRTC. The issue is described as an “inappropriate implementation” in WebRTC that, in Chrome versions prior to 149.0.7827.53, could allow a privileged-network attacker to leak cross-origin data via malicious network traffic. The CVE is categorized with a Chro...

5.9CVSS5.8AI score0.00189EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2026/06/04 11:5 p.m.10 views

CVE-2026-11199

Inappropriate implementation in WebRTC in Google Chrome prior to 149.0.7827.53 allowed an attacker in a privileged network position to leak cross-origin data via malicious network traffic. Chromium security severity: Medium...

5.9CVSS5.4AI score0.00189EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/06/02 12:0 a.m.10 views

PT-2026-46726

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.53 Description An inappropriate implementation in WebRTC allows an attacker in a privileged network position to leak cross-origin data through the use of malicious network traffic. Recommendations...

9.6CVSS5.8AI score0.00493EPSS
Exploits0References437
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in WebKit2GTK

A logic issue has been resolved through improved restrictions. This issue is fixed in macOS Monterey 12.0.1, iOS 14.8, iPadOS 14.8, tvOS 15, Safari 15, and watchOS 8. An attacker in a privileged network position may be able to bypass HSTS...

6.5CVSS6.3AI score0.02075EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/18 3:19 p.m.14 views

CVE-2026-20685

An attacker in a privileged network position may be able to leak sensitive information. A path handling issue was addressed with improved validation. This issue is fixed in PCC Release 5E290.3...

5.8AI score0.00194EPSS
Exploits0References1
Rows per page
Query Builder