Lucene search
+L

637 matches found

nvd
nvd
added 2026/05/06 7:16 p.m.9 views

CVE-2026-7918

Use after free in GPU in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS0.00206EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/05/06 6:13 p.m.5 views

CVE-2026-8020

Uninitialized Use in GPU in Google Chrome on Android prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Low...

5.3CVSS5.8AI score0.00207EPSS
Exploits0References3Affected Software1
cve
cve
added 2026/05/06 6:13 p.m.32 views

CVE-2026-8012

CVE-2026-8012 is an issue in Google Chrome’s MHTML handling. The vulnerability stems from an inappropriate MHTML implementation that allows a remote attacker who has compromised the renderer process to inject arbitrary scripts or HTML via a crafted page (UXSS). Affected software is Google Chrome ...

5.4CVSS6AI score0.00139EPSS
Exploits0References2Affected Software1
alpinelinux
alpinelinux
added 2026/05/06 6:13 p.m.10 views

CVE-2026-8012

Inappropriate implementation in MHTML in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: Low...

5.4CVSS6AI score0.00139EPSS
Exploits0
cve
cve
added 2026/05/06 6:13 p.m.22 views

CVE-2026-8010

CVE-2026-8010 affects Google Chrome’s SiteIsolation feature. The issue is insufficient validation of untrusted input in SiteIsolation, allowing a renderer-compromised attacker to bypass site isolation via a crafted HTML page. Impact is described as Low severity with impact on confidentiality/inte...

6.3CVSS5.8AI score0.00136EPSS
Exploits0References2Affected Software1
alpinelinux
alpinelinux
added 2026/05/06 6:13 p.m.10 views

CVE-2026-8009

Inappropriate implementation in Cast in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...

5CVSS5.8AI score0.0012EPSS
Exploits0
cvelist
cvelist
added 2026/05/06 6:13 p.m.43 views

CVE-2026-8007

Insufficient validation of untrusted input in Cast in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via a crafted HTML page. Chromium security severity: Low...

0.0019EPSS
Exploits0References2
alpinelinux
alpinelinux
added 2026/05/06 6:13 p.m.12 views

CVE-2026-8007

Insufficient validation of untrusted input in Cast in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via a crafted HTML page. Chromium security severity: Low...

7.5CVSS5.8AI score0.0019EPSS
Exploits0
vulnrichment
vulnrichment
added 2026/05/06 6:13 p.m.7 views

CVE-2026-7998

Insufficient validation of untrusted input in Dialog in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.0019EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/05/06 6:13 p.m.11 views

CVE-2026-7998

Insufficient validation of untrusted input in Dialog in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

5.4CVSS5.8AI score0.0019EPSS
Exploits0References3Affected Software1
attackerkb
attackerkb
added 2026/05/06 6:13 p.m.5 views

CVE-2026-7996

Insufficient validation of untrusted input in SSL in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.2CVSS5.8AI score0.00172EPSS
Exploits0References3Affected Software1
alpinelinux
alpinelinux
added 2026/05/06 6:13 p.m.9 views

CVE-2026-7996

Insufficient validation of untrusted input in SSL in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.2CVSS5.8AI score0.00172EPSS
Exploits0
cvelist
cvelist
added 2026/05/06 6:12 p.m.41 views

CVE-2026-7970

Use after free in TopChrome in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

0.00207EPSS
Exploits0References2
cvelist
cvelist
added 2026/05/06 6:12 p.m.31 views

CVE-2026-7967

Insufficient validation of untrusted input in Navigation in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

0.00237EPSS
Exploits0References2
alpinelinux
alpinelinux
added 2026/05/06 6:12 p.m.10 views

CVE-2026-7964

Insufficient validation of untrusted input in FileSystem in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to perform arbitrary read/write via a crafted HTML page. Chromium security severity: Medium...

4.2CVSS5.9AI score0.00176EPSS
Exploits0
cve
cve
added 2026/05/06 6:12 p.m.19 views

CVE-2026-7956

CVE-2026-7956 affects Google Chrome up to version 148.0.7778.96. It is a use-after-free in Navigation that could allow a remote attacker who has compromised the renderer process to escape the sandbox via a crafted HTML page. The vulnerability is tied to Chrome/Chromium in the Navigation path and ...

8.3CVSS5.8AI score0.00222EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2026/05/06 6:12 p.m.39 views

CVE-2026-7956

Use after free in Navigation in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

0.00222EPSS
Exploits0References2
alpinelinux
alpinelinux
added 2026/05/06 6:12 p.m.11 views

CVE-2026-7955

Uninitialized Use in GPU in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

5.3CVSS5.8AI score0.0024EPSS
Exploits0
vulnrichment
vulnrichment
added 2026/05/06 6:12 p.m.8 views

CVE-2026-7949

Out of bounds read in Skia in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted Chrome Extension. Chromium security severity: Medium...

5.8AI score0.00179EPSS
Exploits0References2
cvelist
cvelist
added 2026/05/06 6:12 p.m.34 views

CVE-2026-7947

Insufficient validation of untrusted input in Network in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

0.00186EPSS
Exploits0References2
Rows per page
Query Builder