Lucene search
+L

75 matches found

euvd
euvd
added 2026/07/01 12:34 a.m.8 views

EUVD-2026-40786

Use after free in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00255EPSS
Exploits0References3
nvd
nvd
added 2026/06/30 11:17 p.m.6 views

CVE-2026-14139

Inappropriate implementation in TabStrip in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.2CVSS0.00163EPSS
Exploits0References2
osv
osv
added 2026/06/30 11:17 p.m.4 views

DEBIAN-CVE-2026-13857

Inappropriate implementation in Geometry in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.2CVSS5.8AI score0.00199EPSS
Exploits0References1
cvelist
cvelist
added 2026/06/30 10:39 p.m.26 views

CVE-2026-14153

Inappropriate implementation in Glic in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

0.00181EPSS
Exploits0References2
debiancve
debiancve
added 2026/06/30 10:38 p.m.4 views

CVE-2026-13956

Incorrect security UI in PageInfo in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.2CVSS5.8AI score0.00199EPSS
Exploits0
cvelist
cvelist
added 2026/06/30 10:38 p.m.27 views

CVE-2026-13956

Incorrect security UI in PageInfo in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

0.00199EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/06/30 12:0 a.m.12 views

PT-2026-54404

Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 150.0.7871.47 Description An inappropriate implementation in the PreviewTab allows a remote attacker to perform UI spoofing via a crafted HTML page. This occurs when a user is convinced to engage in...

9.8CVSS6AI score0.00413EPSS
Exploits0References448
osv
osv
added 2026/06/04 11:16 p.m.6 views

DEBIAN-CVE-2026-10958

Use after free in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00361EPSS
Exploits0References1
debiancve
debiancve
added 2026/06/04 11:3 p.m.7 views

CVE-2026-10922

Insufficient validation of untrusted input in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass same origin policy via malicious network traffic. Chromium security severity: High...

8.8CVSS5.5AI score0.00303EPSS
Exploits0
ptsecurity
ptsecurity
added 2026/06/04 12:0 a.m.19 views

PT-2026-46480

Name of the Vulnerable Software and Affected Versions Google Chrome on iOS versions prior to 149.0.7827.53 Description A use after free issue in the Autofill component allows a remote attacker to potentially exploit heap corruption. This occurs when a user is convinced to perform specific UI...

9.6CVSS6.1AI score0.00985EPSS
Exploits0References433
euvd
euvd
added 2026/05/29 12:38 a.m.14 views

EUVD-2026-33075

Use after free in Input in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00222EPSS
Exploits0References3
euvd
euvd
added 2026/05/29 12:38 a.m.15 views

EUVD-2026-33147

Use after free in WebAppInstalls in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

6.2AI score0.00261EPSS
Exploits0References3
cvelist
cvelist
added 2026/05/14 7:52 p.m.51 views

CVE-2026-8551

Use after free in Downloads in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

0.0028EPSS
Exploits0References2
euvd
euvd
added 2026/05/06 9:31 p.m.6 views

EUVD-2026-28145

Script injection in UI in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: Low...

4.2CVSS6AI score0.00155EPSS
Exploits0References3
susecve
susecve
added 2026/04/17 12:4 p.m.6 views

SUSE CVE-2026-6308

Out of bounds read in Media in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

7.5CVSS6.2AI score0.00293EPSS
Exploits0References3
osv
osv
added 2026/03/29 1:34 p.m.4 views

MAL-2026-2293 Malicious code in thisismytestnouser (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 c2f082ee09bfe98c91c243abc15967cbc6fdc7731d6e9657669853e0f148f7dd During installation, if run under a specific username, the package downloads and installs two executables identified as backdoors trojans. --- Category:...

5.9AI score
Exploits0References3
redhatcve
redhatcve
added 2026/03/05 7:31 p.m.5 views

CVE-2026-20009

A vulnerability in the implementation of the proprietary SSH stack with SSH key-based authentication in Cisco Secure Firewall Adaptive Security Appliance ASA Software could allow an unauthenticated, remote attacker to log in to a Cisco Secure Firewall ASA device and execute commands as a specific...

5.3CVSS6.1AI score0.00381EPSS
Exploits0References1
nvd
nvd
added 2026/03/04 6:16 p.m.5 views

CVE-2026-20009

A vulnerability in the implementation of the proprietary SSH stack with SSH key-based authentication in Cisco Secure Firewall Adaptive Security Appliance ASA Software could allow an unauthenticated, remote attacker to log in to a Cisco Secure Firewall ASA device and execute commands as a specific...

5.3CVSS0.00381EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/03/04 5:6 p.m.6 views

CVE-2026-20009

A vulnerability in the implementation of the proprietary SSH stack with SSH key-based authentication in Cisco Secure Firewall Adaptive Security Appliance ASA Software could allow an unauthenticated, remote attacker to log in to a Cisco Secure Firewall ASA device and execute commands as a specific...

5.3CVSS6.1AI score0.00381EPSS
Exploits0References2Affected Software1
vulnrichment
vulnrichment
added 2026/03/04 5:6 p.m.4 views

CVE-2026-20009 Cisco Secure Firewall Adaptive Security Appliance SSH Partial Private Key Authentication Bypass Vulnerability

A vulnerability in the implementation of the proprietary SSH stack with SSH key-based authentication in Cisco Secure Firewall Adaptive Security Appliance ASA Software could allow an unauthenticated, remote attacker to log in to a Cisco Secure Firewall ASA device and execute commands as a specific...

5.3CVSS6.1AI score0.00381EPSS
Exploits0References1
Rows per page
Query Builder