184496 matches found
PT-2026-54270
Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 150.0.7871.47 Description An inappropriate implementation in Credential Management allows a remote attacker to perform UI spoofing via a crafted HTML page. UI spoofing is a technique where an attacker...
PT-2026-54286
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description An uninitialized use in codecs allows a remote attacker to obtain potentially sensitive information from process memory by inducing the user to visit a crafted HTML page. Recommendation...
PT-2026-54282
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description A use after free issue exists in the Navigation component. This occurs when a program continues to use a pointer after it has been freed, which can lead to memory corruption. A remote...
PT-2026-54296
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description Insufficient validation of untrusted input in WebXR allows a remote attacker who has compromised the renderer process to perform UI spoofing through a crafted HTML page. UI spoofing is ...
PT-2026-54277
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description An inappropriate implementation in the Network component allows a remote attacker to perform Universal Cross-Site Scripting UXSS, which involves injecting arbitrary scripts or HTML into...
PT-2026-54280
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description An inappropriate implementation in CSS allows a remote attacker to leak cross-origin data, which is information from a different origin than the one serving the page, by using a crafted...
PT-2026-54293
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description An inappropriate implementation in the Navigation component allows a remote attacker who has already compromised the renderer process to potentially perform a sandbox escape. This is...
PT-2026-54285
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description An inappropriate implementation in the passwords component allows a remote attacker to potentially cause heap corruption, which occurs when memory in the heap area is corrupted, by...
PT-2026-54302
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description An issue in the SplitView security UI allows a remote attacker to perform UI spoofing. This occurs when a user is convinced to perform specific UI gestures while interacting with a...
PT-2026-54266
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description Insufficient validation of untrusted input in DataTransfer allows a remote attacker who has compromised the renderer process to perform UI spoofing via a crafted HTML page...
PT-2026-54254
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description Insufficient policy enforcement in the PageInfo component allows a remote attacker to perform UI spoofing, which is the act of mimicking a legitimate user interface to deceive users, by...
PT-2026-54262
Name of the Vulnerable Software and Affected Versions Google Chrome on ChromeOS versions prior to 150.0.7871.47 Description An inappropriate implementation in the Media UI allows a remote attacker to perform UI spoofing via a crafted HTML page. This occurs when a user is convinced to engage in...
PT-2026-54289
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description An inappropriate implementation in SVG allows a remote attacker to perform UI spoofing via a crafted HTML page. Recommendations Update Google Chrome to version 150.0.7871.47 or later...
PT-2026-54256
Name of the Vulnerable Software and Affected Versions Google Chrome on iOS versions prior to 150.0.7871.47 Description An inappropriate implementation in Chrome for iOS allows a remote attacker to perform UI spoofing, which is the act of mimicking a legitimate user interface to deceive users, by...
PT-2026-54272
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description An inappropriate implementation in Permissions allows a remote attacker to perform UI spoofing via a crafted HTML page. UI spoofing is a technique where an attacker mimics a legitimate...
PT-2026-54259
Name of the Vulnerable Software and Affected Versions Google Chrome on iOS versions prior to 150.0.7871.47 Description An inappropriate implementation in the browser allows a remote attacker to spoof the contents of the Omnibox the address bar where URLs are displayed by using a crafted HTML page...
PT-2026-54284
Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 150.0.7871.47 Description An uninitialized use in WebXR allows a remote attacker to obtain potentially sensitive information from process memory by using a crafted HTML page. Recommendations Update...
PT-2026-54281
Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 150.0.7871.47 Description A use after free issue exists in the Omnibox, where a remote attacker could potentially exploit heap corruption through a crafted HTML page. This requires the attacker to...
PT-2026-54257
Name of the Vulnerable Software and Affected Versions Google Chrome on iOS versions prior to 150.0.7871.47 Description An inappropriate implementation in Chrome for iOS allows a remote attacker to perform UI spoofing, which is the act of mimicking a legitimate user interface to deceive users, by...
PT-2026-54300
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description A use after free issue in Ozone on Linux allows a remote attacker to potentially exploit heap corruption. This occurs when a user is convinced to perform specific UI gestures while...
PT-2026-54297
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description Insufficient policy enforcement in the StorageAccessAPI allows a remote attacker who has compromised the renderer process to leak cross-origin data through a crafted HTML page. The...
PT-2026-54260
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description An issue in the TabStrip component allows a remote attacker to perform UI spoofing by using a specially crafted HTML page. UI spoofing is a technique where an attacker mimics a legitima...
PT-2026-54268
Name of the Vulnerable Software and Affected Versions Google Chrome on Mac versions prior to 150.0.7871.47 Description An inappropriate UI implementation allows a remote attacker to perform UI spoofing via a crafted HTML page, provided they can convince a user to perform specific UI gestures...
PT-2026-54238
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description Insufficient data validation in the PDF component allows a remote attacker who has already compromised the renderer process to bypass navigation restrictions by using a specially crafte...
PT-2026-54250
Name of the Vulnerable Software and Affected Versions Google Chrome on Mac versions prior to 150.0.7871.47 Description An integer overflow in the Safe Browsing component allows a remote attacker to bypass navigation restrictions by using a malicious file. An integer overflow occurs when an...
PT-2026-54222
Name of the Vulnerable Software and Affected Versions Google Chrome on iOS versions prior to 150.0.7871.47 Description An inappropriate implementation in ScriptInjections allows a remote attacker to leak cross-origin data through the use of a crafted HTML page. Recommendations Update Google Chrom...
PT-2026-54219
Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 150.0.7871.47 Description An uninitialized use in CSS allows a remote attacker to obtain potentially sensitive information from process memory by inducing the user to visit a crafted HTML page...
PT-2026-54213
Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 150.0.7871.47 Description An inappropriate implementation in the Passwords component allows a remote attacker to obtain potentially sensitive information from process memory by using a crafted HTML...
PT-2026-54252
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description Insufficient data validation in the Storage component allows a remote attacker who has already compromised the renderer process to potentially perform a sandbox escape. This is achieved...
PT-2026-54208
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description An inappropriate implementation in the Media component on Windows allows a remote attacker who has already compromised the renderer process to perform UI spoofing. This is achieved by...
PT-2026-54227
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description Insufficient policy enforcement in the USB component allows a remote attacker who has already compromised the renderer process to potentially perform a sandbox escape. This is achieved ...
PT-2026-54249
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description An inappropriate implementation in the user interface allows a remote attacker to perform UI spoofing. This occurs when a user is convinced to perform specific UI gestures while...
PT-2026-54228
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description An inappropriate implementation in PerformanceAPIs allows a remote attacker to leak cross-origin data through the use of a crafted HTML page. Recommendations Update Google Chrome to...
PT-2026-54214
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description Insufficient policy enforcement in the Passwords component allows a remote attacker who has compromised the renderer process to leak cross-origin data using a crafted HTML page...
PT-2026-54211
Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 150.0.7871.47 Description Insufficient validation of untrusted input in Dawn allows a remote attacker who has compromised the renderer process to potentially perform a sandbox escape via a crafted HTM...
PT-2026-54235
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description Insufficient validation of untrusted input in Blink allows a remote attacker to bypass the same origin policy, which is a security mechanism that restricts how a document or script load...
PT-2026-54241
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description A use after free issue exists in Oilpan, which is the garbage collection system for the Blink rendering engine. This flaw allows a remote attacker to execute arbitrary code within a...
PT-2026-54216
Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 150.0.7871.47 Description Insufficient validation of untrusted input in the WebShare component allows a remote attacker who has already compromised the renderer process to perform UI spoofing. This is...
PT-2026-54229
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description An inappropriate implementation in the SplitView feature allows a remote attacker who has already compromised the renderer process to bypass navigation restrictions by using a specially...
PT-2026-54245
Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 150.0.7871.47 Description An uninitialized use in the UI allows a remote attacker who has already compromised the renderer process to obtain potentially sensitive information from process memory. This...
PT-2026-54212
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description Side-channel information leakage in ComputePressure allows a remote attacker to leak cross-origin data through the use of a crafted HTML page. Recommendations Update Google Chrome to...
PT-2026-54215
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description An integer overflow in the Fonts component allows a remote attacker to perform an out-of-bounds memory write by inducing the user to open a crafted HTML page. An integer overflow occurs...
PT-2026-54236
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description An inappropriate implementation in the Passwords component allows a remote attacker to perform UI spoofing, which is the act of mimicking a legitimate user interface to deceive users, b...
PT-2026-54221
Name of the Vulnerable Software and Affected Versions Google Chrome on Linux versions prior to 150.0.7871.47 Description Insufficient policy enforcement in Extensions allows an attacker to perform UI spoofing through a crafted Chrome Extension, provided they can convince a user to install the...
PT-2026-54233
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description Incorrect security UI in Extensions allows an attacker to inject arbitrary scripts or HTML via a crafted HTML page. This occurs when a user is convinced to install a malicious extension...
PT-2026-54164
Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 150.0.7871.47 Description An inappropriate implementation in the Near Field Communication NFC component allows a remote attacker who has already compromised the renderer process to leak cross-origin...
PT-2026-54207
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description Insufficient policy enforcement in the Actor component allows a remote attacker to bypass navigation restrictions by using a crafted HTML page. Recommendations Update Google Chrome to...
PT-2026-54186
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description Insufficient policy enforcement in the DevTools component allows a remote attacker to potentially perform a sandbox escape. A sandbox is a security mechanism for separating running...
PT-2026-54194
Name of the Vulnerable Software and Affected Versions Google Chrome on iOS versions prior to 150.0.7871.47 Description Insufficient validation of untrusted input allows a remote attacker to bypass navigation restrictions. This occurs when a user is convinced to perform specific UI gestures while...
PT-2026-54217
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description An uninitialized use in the Cast component allows an attacker on the local network segment to obtain potentially sensitive information from process memory by sending malicious network...