3 matches found
CVE-2026-13954
Insufficient policy enforcement in XML in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-13954
Insufficient policy enforcement in XML in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...
CVE-2025-7519
CVE-2025-7519 is corroborated across EulerOS/OpenVAS/Nessus entries as a polkit flaw: processing an XML policy with 32 or more nested elements can trigger an out-of-bounds write, potentially causing a crash or other unexpected behavior and, per some docs, may allow arbitrary code execution. Explo...