Lucene search
K

628 matches found

Debian CVE
Debian CVE
added 2026/06/30 10:39 p.m.5 views

CVE-2026-14115

Insufficient validation of untrusted input in Cast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via a crafted HTML page. Chromium security severity: Low...

7.5CVSS5.8AI score0.00241EPSS
Exploits0
Cvelist
Cvelist
added 2026/06/30 10:39 p.m.27 views

CVE-2026-14115

Insufficient validation of untrusted input in Cast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via a crafted HTML page. Chromium security severity: Low...

0.00241EPSS
Exploits0References2
CVE
CVE
added 2026/06/30 10:39 p.m.25 views

CVE-2026-14113

The CVE-2026-14113 entry describes a use-after-free in Chrome’s Updater on Windows before 150.0.7871.47. A remote attacker who already compromised the renderer could potentially escape the sandbox via a crafted HTML page. The issue is tied to the Chromium-based Updater component; exact root cause...

9.6CVSS5.8AI score0.00244EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2026/06/30 10:39 p.m.6 views

CVE-2026-14109

Insufficient policy enforcement in Mojo in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Low...

9.6CVSS5.8AI score0.00253EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/30 10:39 p.m.5 views

CVE-2026-14106

Insufficient validation of untrusted input in Text in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Low...

9.6CVSS5.8AI score0.00253EPSS
Exploits0
Cvelist
Cvelist
added 2026/06/30 10:39 p.m.24 views

CVE-2026-14097

Inappropriate implementation in WebAppInstalls in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Low...

0.00234EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/30 10:39 p.m.27 views

CVE-2026-14096

Inappropriate implementation in Input in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

0.00229EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/06/30 10:39 p.m.7 views

CVE-2026-14093

Use after free in Cast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Low...

9.6CVSS5.8AI score0.00234EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/30 10:39 p.m.7 views

CVE-2026-14089

Insufficient validation of untrusted input in PopupBlocker in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.8AI score0.0019EPSS
Exploits0
Cvelist
Cvelist
added 2026/06/30 10:39 p.m.25 views

CVE-2026-14087

Heap buffer overflow in WebNN in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Low...

0.00279EPSS
Exploits0References2
CVE
CVE
added 2026/06/30 10:39 p.m.20 views

CVE-2026-14056

Consolidated details across CVE-2026-14056 entries indicate an issue in Google Chrome’s media handling: Insufficient validation of untrusted input in Media could allow a remote attacker who has compromised the renderer process to potentially perform a sandbox escape via a crafted video file. Vers...

9.6CVSS5.8AI score0.00233EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2026/06/30 10:39 p.m.3 views

CVE-2026-14056

Insufficient validation of untrusted input in Media in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted video file. Chromium security severity: Low...

9.6CVSS5.8AI score0.00233EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/30 10:39 p.m.5 views

CVE-2026-14051

Uninitialized Use in GamepadAPI in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Low...

6.5CVSS5.8AI score0.0025EPSS
Exploits0
CVE
CVE
added 2026/06/30 10:39 p.m.152 views

CVE-2026-14049

CVE-2026-14049 affects Google Chrome versions with an inappropriate GPU implementation prior to 150.0.7871.47. A remote attacker who has compromised the renderer process can obtain potentially sensitive information from process memory via a crafted HTML page. Impact is described as Low severity; ...

5.3CVSS5.8AI score0.00205EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/30 10:39 p.m.17 views

CVE-2026-14045

CVE-2026-14045 affects Google Chrome (Chromium-based). The vulnerability is due to insufficient validation of untrusted input in the Network component, allowing a remote attacker who has compromised the renderer process to leak cross-origin data via a crafted HTML page. Impact is cross-origin dat...

4.3CVSS5.8AI score0.00201EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2026/06/30 10:39 p.m.6 views

CVE-2026-14045

Insufficient validation of untrusted input in Network in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.8AI score0.00201EPSS
Exploits0
Cvelist
Cvelist
added 2026/06/30 10:38 p.m.27 views

CVE-2026-13985

Inappropriate implementation in MediaCapture in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

0.00254EPSS
Exploits0References2
CVE
CVE
added 2026/06/30 10:38 p.m.17 views

CVE-2026-13982

Concretely, CVE-2026-13982 affects Google Chrome (Chromium-based) Passwords UI, where incorrect security UI allowed a remote attacker who compromised the renderer process to perform UI spoofing via a crafted HTML page. The vulnerability is tied to rendering context abuse and is exploitable withou...

3.1CVSS5.8AI score0.00205EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/06/30 10:38 p.m.26 views

CVE-2026-13982

Incorrect security UI in Passwords in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

0.00205EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/30 10:38 p.m.28 views

CVE-2026-13939

Insufficient validation of untrusted input in WebShare in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

0.00219EPSS
Exploits0References2
Rows per page
Query Builder