Lucene search
K

63 matches found

CVE
CVE
added 2026/06/30 10:37 p.m.27 views

CVE-2026-13783

CVE-2026-13783 is a Use-After-Free in Views in Google Chrome affecting versions before 150.0.7871.47. The vulnerability could allow a remote attacker to exploit heap corruption by convincing a user to perform specific UI gestures on a crafted HTML page. Several connected sources (NVD, Debian, EUV...

9.6CVSS5.8AI score0.00314EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/30 12:0 a.m.5 views

PT-2026-54273

Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 150.0.7871.47 Description Incorrect security UI in Extensions allows a remote attacker to perform UI spoofing via a crafted HTML page if a user is convinced to engage in specific UI gestures. UI...

9.8CVSS6AI score0.00413EPSS
Exploits0References446
Debian CVE
Debian CVE
added 2026/06/04 11:4 p.m.8 views

CVE-2026-11001

Inappropriate implementation in Payments in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.5AI score0.00217EPSS
Exploits0
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Chromium

Before version 91.0.4472.114, using "After Free" in Google Chrome allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption through a crafted HTML page and user gestures...

8.8CVSS8AI score0.0135EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in Chromium

Using “after free” in DevTools in Google Chrome before version 92.0.4515.107 allowed an attacker who convinced a user to open DevTools to potentially exploit heap corruption through specific user gestures...

8.8CVSS8AI score0.01156EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2026/04/08 9:20 p.m.3 views

CVE-2026-5899

Insufficient policy enforcement in History Navigation in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: Low...

6.1CVSS8.6AI score0.00134EPSS
Exploits0
OSV
OSV
added 2025/12/02 7:15 p.m.4 views

CVE-2025-13636

Inappropriate implementation in Split View in Google Chrome prior to 143.0.7499.41 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted domain name. Chromium security severity: Low...

4.3CVSS5.8AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/02 12:0 a.m.3 views

PT-2025-48761

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 143.0.7499.41 Description An improper implementation in the Split View feature allowed a remote attacker to perform UI spoofing. The attacker needed to convince a user to perform specific UI gestures with a...

8.8CVSS6.3AI score0.00393EPSS
Exploits0References52
Cvelist
Cvelist
added 2025/11/10 8:0 p.m.11 views

CVE-2025-12446

Incorrect security UI in SplitView in Google Chrome prior to 142.0.7444.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted domain name. Chromium security severity: Low...

0.0016EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2013-0900

Malware in sbrugna...

6.8CVSS9.3AI score0.01506EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2021-17487

Malware in sbrugna...

8.8CVSS9.1AI score0.01156EPSS
Exploits1References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2021-17476

Malware in sbrugna...

8.8CVSS9.1AI score0.0135EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-14130

Malware in sbrugna...

6.1CVSS7.8AI score0.02067EPSS
Exploits0References13
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2022-15320

Malicious code in bioql PyPI...

8.8CVSS9.2AI score0.01305EPSS
Exploits1References8
SUSE CVE
SUSE CVE
added 2025/01/16 3:48 a.m.3 views

SUSE CVE-2025-0446

Inappropriate implementation in Extensions in Google Chrome prior to 132.0.6834.83 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted Chrome Extension. Chromium security severity: Low...

4.3CVSS6.5AI score0.00276EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/08/08 2:35 a.m.6 views

SUSE CVE-2024-6999

Inappropriate implementation in FedCM in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS6.4AI score0.00418EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/05/15 12:0 a.m.7 views

PT-2024-3638 · Google +4 · Google Chrome +4

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 125.0.6422.60 Description: The issue is related to an inappropriate implementation in the Downloads component of Google Chrome, which allowed a remote attacker to perform UI spoofing via a crafted HTML page. Th...

9.8CVSS6.5AI score0.99735EPSS
Exploits128References1072
Positive Technologies
Positive Technologies
added 2024/05/07 12:0 a.m.8 views

PT-2024-3928 · Google +6 · Google Chrome +6

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 125.0.6422.141 Microsoft Edge affected versions not specified Description: The issue is related to an out of bounds memory access in the Browser UI, specifically in the Keyboard Inputs component, which could...

10CVSS6.9AI score0.99735EPSS
Exploits133References1166
SUSE CVE
SUSE CVE
added 2023/02/15 5:41 a.m.4 views

SUSE CVE-2013-0888

Skia, as used in Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, allows remote attackers to cause a denial of service out-of-bounds read via vectors related to a "user gesture check for dangerous file downloads."...

5CVSS8.8AI score0.01556EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:41 a.m.3 views

SUSE CVE-2013-0889

Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, does not properly enforce a user gesture requirement before proceeding with a file download, which might make it easier for remote attackers to execute arbitrary code via a crafted file...

6.8CVSS9.4AI score0.01506EPSS
Exploits0References3
Rows per page
Query Builder