Lucene search
K

90 matches found

EUVD
EUVD
added 2026/05/29 12:38 a.m.9 views

EUVD-2026-33093

Use after free in UI in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00222EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/05/29 12:0 a.m.13 views

CVE-2026-10011

Inappropriate implementation in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

3.1CVSS5.8AI score0.00164EPSS
Exploits0References3
CVE
CVE
added 2026/05/28 10:25 p.m.30 views

CVE-2026-10005

Google Chrome on macOS is affected by CVE-2026-10005 via a use-after-free in the WebAppInstalls component. The flaw allows a remote attacker to execute arbitrary code if the user is persuaded to perform certain UI gestures on a crafted HTML page; impact is high. A patch exists in Chrome version 1...

7.5CVSS6.2AI score0.00261EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/05/28 10:25 p.m.36 views

CVE-2026-9939

Heap buffer overflow in WebCodecs in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

0.00412EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2026/05/28 10:25 p.m.6 views

CVE-2026-9920

Uninitialized Use in GPU in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

3.1CVSS5.5AI score0.00211EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.13 views

PT-2026-44614

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.216 Description A use after free issue exists in the Accessibility component of Google Chrome on Windows. This flaw allows a remote attacker who has already compromised the renderer process to...

9.6CVSS5.8AI score0.00368EPSS
Exploits0References156
OSV
OSV
added 2026/05/20 8:16 p.m.8 views

DEBIAN-CVE-2026-9118

Use after free in XR in Google Chrome on Windows prior to 148.0.7778.179 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.2AI score0.00396EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/20 7:12 p.m.10 views

EUVD-2026-31166

Insufficient policy enforcement in ServiceWorker in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

4.3CVSS5.8AI score0.00218EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/05/16 1:15 a.m.15 views

SUSE CVE-2026-8526

Out of bounds write in WebRTC in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.2AI score0.00383EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/05/14 8:17 p.m.10 views

CVE-2026-8557

Use after free in Accessibility in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via a crafted HTML page. Chromium security severity: High...

7.5CVSS5.8AI score0.00207EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/05/14 7:52 p.m.10 views

CVE-2026-8538

Insufficient validation of untrusted input in GPU in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform a denial of service via a crafted HTML page. Chromium security severity: High...

5.3CVSS5.8AI score0.00195EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/14 12:0 a.m.10 views

PT-2026-41076

Name of the Vulnerable Software and Affected Versions Google Chrome on Windows versions prior to 148.0.7778.168 Description Insufficient policy enforcement in Passwords allows a remote attacker who has compromised the renderer process to perform privilege escalation via a crafted HTML page...

9.6CVSS5.8AI score0.00498EPSS
Exploits0References83
OSV
OSV
added 2026/05/01 1:54 p.m.7 views

JLSEC-2026-375

Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior to 117.0.5938.132 and libvpx 1.13.1 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.7AI score0.49013EPSS
Exploits3References105
EUVD
EUVD
added 2026/04/15 9:30 p.m.6 views

EUVD-2026-23074

Use after free in Forms in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.2AI score0.00323EPSS
Exploits0References3
EUVD
EUVD
added 2026/04/01 6:31 a.m.4 views

EUVD-2026-17807

Use after free in Navigation in Google Chrome prior to 146.0.7680.178 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

9.6CVSS5.9AI score0.00275EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2026/04/01 4:41 a.m.6 views

CVE-2026-5275

Heap buffer overflow in ANGLE in Google Chrome on Mac prior to 146.0.7680.178 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.6AI score0.0035EPSS
Exploits0
AstraLinux
AstraLinux
added 2026/04/01 3:55 a.m.5 views

Astra Linux – Vulnerability in Chromium

Insufficient policy enforcement in the WebView tag in Google Chrome prior to version 143.0.7499.192 allowed an attacker who convinced a user to install a malicious extension to inject scripts or HTML into a privileged page via a crafted Chrome Extension. Chromium security severity: High...

8.8CVSS5.9AI score0.06545EPSS
Exploits2References3
AstraLinux
AstraLinux
added 2026/04/01 3:55 a.m.5 views

Astra Linux – Vulnerability in Chromium

The use of “after free” in WebMIDI within Google Chrome before version 146.0.7680.71 allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: High...

8.8CVSS5.5AI score0.00271EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/04/01 12:0 a.m.4 views

PT-2026-29456

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 146.0.7680.178 Description A use-after-free issue exists in the Web MIDI component of Google Chrome on Android. A remote attacker can potentially execute arbitrary code by tricking a user into visiting a special...

9.6CVSS6.5AI score0.05036EPSS
Exploits0References29
Debian CVE
Debian CVE
added 2026/03/20 1:34 a.m.5 views

CVE-2026-4463

Heap buffer overflow in WebRTC in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.8AI score0.00301EPSS
Exploits0
Rows per page
Query Builder