441 matches found
EUVD-2026-27967
Insufficient policy enforcement in Downloads in Google Chrome prior to 148.0.7778.96 allowed a local attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-7952
Insufficient policy enforcement in Extensions in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to bypass discretionary access control via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-7948
CVE-2026-7948 affects Google Chrome on Windows, specifically a race condition in Chromoting that could allow local privilege escalation via a malicious file. The issue is reported for Chrome versions prior to 148.0.7778.96. The root cause is described as a race in Chromoting, with impact describe...
CVE-2026-6364
CVE-2026-6364 is a reported out-of-bounds read in the Google Chrome Skia component, affecting Chrome before version 147.0.7727.101. The CVE description states that an attacker could obtain potentially sensitive information from process memory via a crafted file. Public advisories confirm the issu...
CVE-2026-3928
Insufficient policy enforcement in Extensions in Google Chrome prior to 146.0.7680.71 allowed an attacker who convinced a user to install a malicious extension to perform UI spoofing via a crafted Chrome Extension. Chromium security severity: Medium...
EUVD-2024-55071
Inappropriate implementation in Fullscreen in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...
EUVD-2025-13650
Malicious code in bioql PyPI...
EUVD-2023-12224
Malicious code in bioql PyPI...
EUVD-2024-17410
Malicious code in bioql PyPI...
EUVD-2024-46991
Malicious code in bioql PyPI...
EUVD-2024-32407
Malicious code in bioql PyPI...
EUVD-2024-47976
Malicious code in bioql PyPI...
EUVD-2025-23907
Malicious code in bioql PyPI...
EUVD-2025-19073
Malicious code in bioql PyPI...
CVE-2025-8577
CVE-2025-8577 : In Chrome/Chromium-based browsers, an inappropriate implementation in Picture-in-Picture prior to 139.0.7258.66 allowed a remote attacker to spoof UI via a crafted HTML page after convincing a user to perform specific UI gestures. Concrete details across connected sources show Chr...
CVE-2025-5068
Use after free in Blink in Google Chrome prior to 137.0.7151.68 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...
CVE-2025-5281
Inappropriate implementation in BFCache in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to potentially obtain user information via a crafted HTML page. Chromium security severity: Medium...
CVE-2019-25154
Inappropriate implementation in iframe in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...
CVE-2025-4050
Out of bounds memory access in DevTools in Google Chrome prior to 136.0.7103.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...
CVE-2025-3068
Inappropriate implementation in Intents in Google Chrome on Android prior to 135.0.7049.52 allowed a remote attacker to perform privilege escalation via a crafted HTML page. Chromium security severity: Medium...