Lucene search
+L

92 matches found

Positive Technologies
Positive Technologies
added 2026/07/08 12:0 a.m.17 views

PT-2026-56649

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.115 Description Insufficient policy enforcement in the Navigation component allows a remote attacker to bypass site isolation by using a crafted HTML page. Site isolation is a security feature that...

9.6CVSS6.1AI score0.0027EPSS
Exploits0References34
Debian CVE
Debian CVE
added 2026/07/01 10:21 p.m.8 views

CVE-2026-14423

Type Confusion in Tint in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

9.6CVSS5.8AI score0.0022EPSS
Exploits0
EUVD
EUVD
added 2026/07/01 12:34 a.m.7 views

EUVD-2026-40537

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.47 allowed a local attacker to bypass discretionary access control via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00289EPSS
Exploits0References3
EUVD
EUVD
added 2026/07/01 12:34 a.m.7 views

EUVD-2026-40513

Use after free in Updater in Google Chrome on Mac prior to 150.0.7871.47 allowed a local attacker to perform privilege escalation via a malicious file. Chromium security severity: High...

5.8AI score0.00109EPSS
Exploits0References3
NVD
NVD
added 2026/06/30 11:16 p.m.5 views

CVE-2026-13852

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 150.0.7871.47 allowed a local attacker to bypass discretionary access control via a crafted HTML page. Chromium security severity: High...

9.1CVSS0.00289EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/06/30 10:37 p.m.6 views

CVE-2026-13795

Insufficient policy enforcement in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: High...

6.5CVSS5.8AI score0.00252EPSS
Exploits0
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.17 views

Astra Linux – Vulnerability in Chromium

Using after-free in WebGL in Google Chrome before version 146.0.7680.178 allowed a remote attacker to execute arbitrary code within a sandbox through a crafted HTML page. Chromium security severity: High...

8.8CVSS6.2AI score0.00403EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.13 views

Astra Linux – Vulnerability in Chromium

A heap buffer overflow in the GPU component of Google Chrome prior to version 146.0.7680.178 allowed a remote attacker to execute arbitrary code through a crafted HTML page. Chromium security severity: High...

8.8CVSS6.4AI score0.0045EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/06/23 11:48 a.m.5 views

Astra Linux – Vulnerability in Chromium

The use of “after free” in WebMIDI within Google Chrome before version 146.0.7680.71 allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: High...

8.8CVSS5.5AI score0.00271EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/06/23 11:48 a.m.5 views

Astra Linux – Vulnerability in Chromium

Insufficient policy enforcement in the WebView tag in Google Chrome prior to version 143.0.7499.192 allowed an attacker who convinced a user to install a malicious extension to inject scripts or HTML into a privileged page via a crafted Chrome Extension. Chromium security severity: High...

8.8CVSS5.9AI score0.06545EPSS
Exploits2References3
AstraLinux
AstraLinux
added 2026/06/23 11:48 a.m.13 views

Astra Linux – Vulnerability in Chromium

A out-of-bounds read in Skia using Google Chrome before version 146.0.7680.153 allowed a remote attacker to perform an out-of-bounds memory read through a crafted HTML page. Chromium security severity: High...

8.8CVSS5.8AI score0.00253EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/17 6:35 p.m.16 views

EUVD-2026-37547

Use after free in Media in Google Chrome prior to 149.0.7827.155 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

7.5CVSS6AI score0.00271EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/06/17 1:38 a.m.12 views

CVE-2026-12469

Uninitialized Use in GPU in Google Chrome on Android prior to 149.0.7827.155 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

4.3CVSS5.4AI score0.00186EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/17 1:38 a.m.7 views

CVE-2026-12452

Use after free in Downloads in Google Chrome on Android prior to 149.0.7827.155 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.5AI score0.00256EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/06/17 12:0 a.m.23 views

PT-2026-50211

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.155 Description An out-of-bounds read exists in WebRTC Web Real-Time Communication, a project that provides websites and applications with real-time communication capabilities in Google Chrome on...

9.6CVSS5.9AI score0.00601EPSS
Exploits0References40
Positive Technologies
Positive Technologies
added 2026/06/17 12:0 a.m.28 views

PT-2026-50207

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.155 Description An inappropriate implementation in Extensions allows a remote attacker who has compromised the renderer process to bypass site isolation using a crafted HTML page. Site isolation is a...

9.6CVSS5.8AI score0.00601EPSS
Exploits0References40
EUVD
EUVD
added 2026/06/12 12:31 a.m.10 views

EUVD-2026-36341

Use after free in Autofill in Google Chrome on Mac prior to 149.0.7827.115 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.6AI score0.00224EPSS
Exploits0References3
NVD
NVD
added 2026/06/11 10:16 p.m.12 views

CVE-2026-12024

Insufficient policy enforcement in DevTools in Google Chrome prior to 149.0.7827.115 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: High...

6.5CVSS0.00158EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/11 8:48 p.m.38 views

CVE-2026-12012

Use after free in Network in Google Chrome prior to 149.0.7827.115 allowed an attacker in a privileged network position to potentially exploit heap corruption via malicious network traffic. Chromium security severity: High...

0.00225EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/06/10 2:30 a.m.10 views

SUSE CVE-2026-11691

Insufficient validation of untrusted input in New Tab Page in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

3.1CVSS5.5AI score0.00169EPSS
Exploits0References3
Rows per page
Query Builder