Lucene search
K

1055 matches found

EUVD
EUVD
added 9 hours ago4 views

EUVD-2026-41156

Heap buffer overflow in Skia in Google Chrome prior to 150.0.7871.46 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

8.3CVSS6.1AI score
Exploits0References3
EUVD
EUVD
added 9 hours ago4 views

EUVD-2026-41168

Insufficient validation of untrusted input in Dawn in Google Chrome on Android prior to 150.0.7871.46 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS5.8AI score
Exploits0References3
EUVD
EUVD
added 9 hours ago6 views

EUVD-2026-41167

Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 150.0.7871.46 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS5.8AI score
Exploits0References3
NVD
NVD
added yesterday4 views

CVE-2026-14414

Insufficient validation of untrusted input in Skia in Google Chrome prior to 150.0.7871.46 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

5.3CVSS
Exploits0References2
CVE
CVE
added yesterday5 views

CVE-2026-14400

Summary of CVE-2026-14400 : Google Chrome’s ANGLE component contains an out-of-bounds write in versions prior to 150.0.7871.46. If a renderer process is compromised, an attacker could potentially perform a sandbox escape through a crafted HTML page. This is a remote, high-severity vulnerability (...

8.3CVSS5.8AI score
Exploits0References2
CVE
CVE
added yesterday6 views

CVE-2026-14412

The CVE-2026-14412 entry concerns ANGLE in Google Chrome with insufficient validation of untrusted input. Attack vector involves a remote attacker who has already compromised the renderer process and could potentially escape the sandbox through a crafted HTML page. Affected product context is Goo...

8.3CVSS5.8AI score
Exploits0References2
CVE
CVE
added yesterday6 views

CVE-2026-14427

CVE-2026-14427 : Heap buffer overflow in Skia used by Google Chrome prior to 150.0.7871.46. A remote attacker who already compromised the renderer could potentially escape the sandbox via a crafted HTML page. Affected: Chrome/Skia stack (Chrome 150 pre-release fix applies). Root cause: heap buffe...

8.3CVSS6.1AI score
Exploits0References2
EUVD
EUVD
added yesterday5 views

EUVD-2026-40780

Use after free in Cast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00174EPSS
Exploits0References3
EUVD
EUVD
added yesterday6 views

EUVD-2026-40605

Insufficient policy enforcement in Extensions in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Chromium security severity: Medium...

5.7AI score0.0022EPSS
Exploits0References3
EUVD
EUVD
added yesterday4 views

EUVD-2026-40597

Insufficient policy enforcement in Spellcheck in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

5.3CVSS5.8AI score0.00265EPSS
Exploits0References3
EUVD
EUVD
added yesterday4 views

EUVD-2026-40557

Insufficient policy enforcement in GuestView in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Chromium security severity: Medium...

5.7AI score0.0022EPSS
Exploits0References3
EUVD
EUVD
added yesterday4 views

EUVD-2026-40573

Inappropriate implementation in NFC in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00208EPSS
Exploits0References3
EUVD
EUVD
added yesterday4 views

EUVD-2026-40509

Use after free in Glic in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00208EPSS
Exploits0References3
NVD
NVD
added 2 days ago4 views

CVE-2026-14142

Inappropriate implementation in Extensions in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

5.4CVSS0.00182EPSS
Exploits0References2
NVD
NVD
added 2 days ago5 views

CVE-2026-14120

Inappropriate implementation in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Low...

9.6CVSS0.00182EPSS
Exploits0References2
OSV
OSV
added 2 days ago3 views

DEBIAN-CVE-2026-14093

Use after free in Cast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Low...

9.6CVSS5.8AI score0.00174EPSS
Exploits0References1
NVD
NVD
added 2 days ago4 views

CVE-2026-14049

Inappropriate implementation in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Low...

5.3CVSS0.00205EPSS
Exploits0References2
OSV
OSV
added 2 days ago2 views

DEBIAN-CVE-2026-13976

Insufficient data validation in Storage in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

5.8CVSS5.8AI score0.00208EPSS
Exploits0References1
NVD
NVD
added 2 days ago5 views

CVE-2026-13891

Insufficient validation of untrusted input in Extensions in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via a crafted HTML page. Chromium security severity: Medium...

7.5CVSS0.00217EPSS
Exploits0References2
OSV
OSV
added 2 days ago2 views

DEBIAN-CVE-2026-13887

Inappropriate implementation in NFC in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.8AI score0.00208EPSS
Exploits0References1
Rows per page
Query Builder