Lucene search
K

40 matches found

UbuntuCve
UbuntuCve
added 2025/11/18 12:0 a.m.1 views

CVE-2025-13227

Type Confusion in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.2AI score0.00219EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/11/14 3:15 a.m.3 views

CVE-2024-7021

Inappropriate implementation in Autofill in Google Chrome on Windows prior to 124.0.6367.60 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS5.9AI score0.00171EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/08/19 9:15 p.m.3 views

CVE-2025-9179

An attacker was able to perform memory corruption in the GMP process which processes encrypted media. This process is also heavily sandboxed, but represents slightly different privileges from the content process. This vulnerability was fixed in Firefox 142, Firefox ESR 115.27, Firefox ESR 128.14,...

9.8CVSS7.3AI score0.0053EPSS
Exploits0References13
UbuntuCve
UbuntuCve
added 2025/08/07 2:15 a.m.4 views

CVE-2025-8576

Use after free in Extensions in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to potentially exploit heap corruption via a crafted Chrome Extension. Chromium security severity: Medium...

8.8CVSS7.2AI score0.003EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/06/03 12:0 a.m.5 views

CVE-2025-5068

Use after free in Blink in Google Chrome prior to 137.0.7151.68 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS7.2AI score0.02592EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/05/27 9:15 p.m.6 views

CVE-2025-5281

Inappropriate implementation in BFCache in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to potentially obtain user information via a crafted HTML page. Chromium security severity: Medium...

5.4CVSS6.1AI score0.00179EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/05/27 9:15 p.m.3 views

CVE-2025-5064

Inappropriate implementation in Background Fetch API in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.4CVSS6.1AI score0.00304EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/04/16 9:15 p.m.8 views

CVE-2025-3620

Use after free in USB in Google Chrome prior to 135.0.7049.95 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.2AI score0.00251EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/04/02 1:15 a.m.13 views

CVE-2025-3066

Use after free in Site Isolation in Google Chrome prior to 135.0.7049.84 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.2AI score0.00344EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/02/19 5:15 p.m.13 views

CVE-2025-0999

Heap buffer overflow in V8 in Google Chrome prior to 133.0.6943.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.3AI score0.00648EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/02/15 2:15 a.m.9 views

CVE-2025-0996

Inappropriate implementation in Browser UI in Google Chrome on Android prior to 133.0.6943.98 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page. Chromium security severity: High...

5.4CVSS7.1AI score0.00368EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/02/15 2:15 a.m.12 views

CVE-2025-0995

Use after free in V8 in Google Chrome prior to 133.0.6943.98 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.2AI score0.0046EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2025/01/13 10:16 a.m.19 views

USN-6940-2: snapd vulnerabilities

USN-6940-1 fixed vulnerabilities in snapd. This update provides the corresponding updates for Ubuntu 18.04 LTS and Ubuntu 16.04 LTS. Original advisory details: Neil McPhail discovered that snapd did not properly restrict writes to the /home/jslarraz/bin path in the AppArmor profile for snaps usin...

8.2CVSS7.6AI score0.00306EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2025/01/07 4:15 p.m.8 views

CVE-2025-0239

When using Alt-Svc, ALPN did not properly validate certificates when the original server is redirecting to an insecure site. This vulnerability was fixed in Firefox 134, Firefox ESR 128.6, Thunderbird 134, and Thunderbird 128.6...

4CVSS6.8AI score0.00228EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2024/12/18 10:15 p.m.11 views

CVE-2024-12694

Use after free in Compositing in Google Chrome prior to 131.0.6778.204 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.2AI score0.00303EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2024/12/18 10:15 p.m.6 views

CVE-2024-12695

Out of bounds write in V8 in Google Chrome prior to 131.0.6778.204 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.5AI score0.00383EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2024/11/27 6:15 p.m.16 views

CVE-2024-7025

Integer overflow in Layout in Google Chrome prior to 129.0.6668.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.3AI score0.00592EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2024/10/29 10:15 p.m.12 views

CVE-2024-10487

Out of bounds write in Dawn in Google Chrome prior to 130.0.6723.92 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. Chromium security severity: Critical...

8.8CVSS7.2AI score0.00653EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2024/10/29 10:15 p.m.12 views

CVE-2024-10488

Use after free in WebRTC in Google Chrome prior to 130.0.6723.92 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.2AI score0.00517EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2024/10/15 9:15 p.m.11 views

CVE-2024-9956

Inappropriate implementation in WebAuthentication in Google Chrome on Android prior to 130.0.6723.58 allowed a local attacker to perform privilege escalation via a crafted HTML page. Chromium security severity: Medium...

7.8CVSS7.2AI score0.00389EPSS
Exploits0References3
Rows per page
Query Builder