Lucene search
K

20 matches found

EUVD
EUVD
added 2026/06/05 12:31 a.m.11 views

EUVD-2026-34390

Out of bounds memory access in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.2AI score0.00419EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/05 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2026-10941

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Out of bounds memory access in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted...

8.8CVSS6.1AI score0.00419EPSS
Exploits0References2
OSV
OSV
added 2026/06/04 11:16 p.m.7 views

DEBIAN-CVE-2026-10941

Out of bounds memory access in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00419EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/06/04 11:3 p.m.9 views

CVE-2026-10941

Out of bounds memory access in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00419EPSS
Exploits0
NVD
NVD
added 2026/04/15 8:16 p.m.3 views

CVE-2026-6364

Out of bounds read in Skia in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted file. Chromium security severity: Medium...

6.5CVSS0.00234EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/20 1:34 a.m.5 views

CVE-2026-4460

Out of bounds read in Skia in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00253EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/03/16 12:0 a.m.7 views

Microsoft Edge (Chromium) < 146.0.3856.62 (CVE-2026-3909)

The version of Microsoft Edge installed on the remote Windows host is prior to 146.0.3856.62. It is, therefore, affected by a vulnerability as referenced in the March 16, 2026 advisory. - Out of bounds write in Skia in Google Chrome prior to 146.0.7680.75 allowed a remote attacker to perform out ...

8.8CVSS5.9AI score0.01629EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/08/20 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2017-5063

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A numeric overflow in Skia in Google Chrome prior to 58.0.3029.81 for Linux, Windows, and Mac, and 58.0.3029.83 for Android, allowed a remote attacker to perfor...

8.8CVSS7.5AI score0.01519EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2018-6153

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A precision error in Skia in Google Chrome prior to 68.0.3440.75 allowed a remote attacker who had compromised the renderer process to perform an out of bounds...

8.8CVSS8.1AI score0.01588EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2018-6069

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Stack buffer overflow in Skia in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page...

6.5CVSS7.7AI score0.01554EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:50 a.m.3 views

SUSE CVE-2017-5119

Use of an uninitialized value in Skia in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page...

4.3CVSS8.5AI score0.01762EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:50 a.m.5 views

SUSE CVE-2017-5377

A memory corruption vulnerability in Skia that can occur when using transforms to make gradients, resulting in a potentially exploitable crash. This vulnerability affects Firefox 51...

9.8CVSS6.7AI score0.01657EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:38 a.m.4 views

SUSE CVE-2017-15418

Use of uninitialized memory in Skia in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page...

4.3CVSS8.5AI score0.01634EPSS
Exploits0References5
OSV
OSV
added 2020/07/09 2:15 p.m.3 views

DEBIAN-CVE-2018-12371

An integer overflow vulnerability in the Skia library when allocating memory for edge builders on some systems with at least 16 GB of RAM. This results in the use of uninitialized memory, resulting in a potentially exploitable crash. This vulnerability affects Firefox ESR 60.1, Thunderbird 60, an...

8.8CVSS8.4AI score0.01446EPSS
Exploits1References1
OSV
OSV
added 2017/01/27 9:57 p.m.6 views

USN-3175-1 firefox vulnerabilities

Multiple memory safety issues were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service via application crash, or execute arbitrary code. CVE-2017-5373, CVE-2017-5374 JIT code allocation c...

9.8CVSS6.8AI score0.33434EPSS
Exploits22References22
CNVD
CNVD
added 2016/06/05 12:0 a.m.3 views

Google Chrome Skia memory misreference vulnerability (CNVD-2016-03807)

Google Chrome is a popular web browser. A memory misreference vulnerability in Google Chrome Skia allows remote attackers to exploit the vulnerability to construct a malicious WEB page that can be tricked into parsing by users, which can crash the application or execute arbitrary code...

8.8CVSS9.3AI score0.01275EPSS
Exploits0References1
CNVD
CNVD
added 2015/12/10 12:0 a.m.5 views

Android Skia Memory Corruption Vulnerability

Android is a cell phone operating system based on the Linux open kernel. A security vulnerability exists in Skia in versions prior to Android 5.1.1 LMY48Z and 6.0 2015-12-01, which can be exploited by remote attackers to execute arbitrary code or cause a denial of service memory corruption via a...

9.3CVSS7.5AI score0.0227EPSS
Exploits0References1
OSV
OSV
added 2015/08/04 4:52 p.m.4 views

USN-2677-1 oxide-qt vulnerabilities

An uninitialized value issue was discovered in ICU. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service. CVE-2015-1270 A use-after-free was discovered in the GPU process implementation in Chromium. If a user wer...

9.8CVSS7.2AI score0.19069EPSS
Exploits2References15
CNVD
CNVD
added 2015/03/09 12:0 a.m.4 views

Google Chrome Skia Integer Overflow Vulnerability

Google Chrome is a web browsing tool developed by Google. An integer overflow exists in the 'SkMallocPixelRef::NewAllocate' function in the core/SkMallocPixelRef.cpp file in Skia used in versions of Google Chrome prior to 41.0.2272.76. vulnerability. A remote attacker could use this vulnerability...

7.5CVSS6.8AI score0.01382EPSS
Exploits0References1
OSV
OSV
added 2015/03/08 12:0 a.m.3 views

UBUNTU-CVE-2015-1219

Integer overflow in the SkMallocPixelRef::NewAllocate function in core/SkMallocPixelRef.cpp in Skia, as used in Google Chrome before 41.0.2272.76, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger an attempted allocation of a...

7.5CVSS7.4AI score0.01382EPSS
Exploits0References6
Rows per page
Query Builder