Lucene search
K

370256 matches found

CVE
CVE
added 2026/06/30 10:38 p.m.42 views

CVE-2026-13939

CVE-2026-13939 concerns Google Chrome on Android. The issue arises from insufficient validation of untrusted input in WebShare, allowing a remote attacker who has compromised the renderer process to perform UI spoofing via a crafted HTML page. Affected version range is Chrome on Android prior to ...

3.1CVSS5.8AI score0.00219EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/30 10:38 p.m.17 views

CVE-2026-13935

Summary: CVE-2026-13935 affects Google Chrome/Chromium ComputePressure. A side-channel information leakage allowed a remote attacker to exfiltrate cross-origin data via a crafted HTML page. The description specifies the affected platform as Google Chrome (Chromium) and notes the issue exists prio...

6.5CVSS5.8AI score0.00299EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/30 10:38 p.m.13 views

CVE-2026-13936

Technical details are not publicly available in the provided documents. Monitor for updates on CVE-2026-13936 for new information, and potential remediation guidance.

6.5CVSS5.8AI score0.00288EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/30 10:38 p.m.19 views

CVE-2026-13937

CVE-2026-13937 concerns Google Chrome where insufficient policy enforcement in passwords handling within the Chromium-based renderer allowed a remote attacker who had already compromised the renderer to leak cross-origin data via a crafted HTML page. The vulnerability is described in multiple sou...

6.5CVSS5.8AI score0.00288EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/30 10:38 p.m.120 views

CVE-2026-13933

CVE-2026-13933 concerns insufficient policy enforcement in the Passwords feature of Google Chrome, prior to version 150.0.7871.47. A remote attacker who has already compromised the renderer process could exfiltrate potentially sensitive data from process memory via a crafted HTML page. The CVE is...

5.3CVSS5.8AI score0.00256EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/30 10:38 p.m.21 views

CVE-2026-13934

Affected software: Google Chrome (Android) with Dawn. Vulnerability: insufficient validation of untrusted input in Dawn could allow a renderer-compromised attacker to escape the sandbox via a crafted HTML page. Impact: potential sandbox escape, high/critical implications per CVSS (base 9.6). Affe...

9.6CVSS5.8AI score0.00316EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/30 10:38 p.m.19 views

CVE-2026-13932

The set of connected documents confirms CVE-2026-13932 affects Google Chrome on Android, due to an inappropriate implementation in Sharing that allowed a remote attacker with renderer access to leak cross-origin data via a crafted HTML page. Affected version range is prior to 150.0.7871.47; the i...

6.5CVSS5.8AI score0.00288EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/30 10:38 p.m.15 views

CVE-2026-13930

CVE-2026-13930 affects Google Chrome and Chromium-based components where insufficient policy enforcement in an Actor allows a remote attacker to bypass navigation restrictions via a crafted HTML page. The issue is described as enabling navigation restriction bypass before version 150.0.7871.47. A...

6.5CVSS5.8AI score0.00319EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/30 10:38 p.m.20 views

CVE-2026-13931

CVE-2026-13931 affects Google Chrome on Windows prior to 150.0.7871.47. The root cause is an inappropriate implementation in Media that allows a renderer-capable attacker to perform UI spoofing via a crafted HTML page. Impact is UI spoofing with no data exfiltration stated; upgrade to 150.0.7871....

6.5CVSS5.8AI score0.00254EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/30 10:38 p.m.43 views

CVE-2026-13929

CVE-2026-13929 : In Google Chrome for Android, DevTools policy enforcement is insufficient, allowing a local attacker to bypass navigation restrictions via a malicious file. Affected component: DevTools navigation/policy enforcement; root cause: insufficient policy enforcement in DevTools prior t...

5.5CVSS5.8AI score0.00131EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/30 10:38 p.m.19 views

CVE-2026-13927

The vulnerability CVE-2026-13927 affects Google Chrome on Android, due to insufficient validation of untrusted input in UI. The underlying issue is in the UI input handling, allowing a local attacker to escalate privileges via a malicious file. Impact is described as local privilege escalation wi...

7.8CVSS5.8AI score0.0012EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/30 10:38 p.m.14 views

CVE-2026-13928

CVE-2026-13928 concerns Google Chrome (Enterprise) prior to version 150.0.7871.47, where insufficient validation of untrusted input could allow a remote attacker to achieve privilege escalation through a crafted HTML page. The affected component is described as input validation within Chrome/Chro...

8.8CVSS5.8AI score0.00316EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/30 10:38 p.m.20 views

CVE-2026-13925

CVE-2026-13925 concerns an inappropriate implementation in Chrome’s Downloads on Windows, prior to version 150.0.7871.47. The vulnerability enables remote code execution when a user is convinced to perform specific UI gestures on a crafted HTML page. Affected software is Google Chrome (Windows); ...

7.5CVSS6.2AI score0.00354EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/30 10:38 p.m.19 views

CVE-2026-13924

CVE-2026-13924 affects WebView in Google Chrome on Android, prior to version 150.0.7871.47. The issue is insufficient validation of untrusted input in WebView, allowing a remote attacker who already compromised the renderer process to bypass the same-origin policy via a crafted HTML page. The vul...

6.5CVSS5.8AI score0.00319EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/30 10:38 p.m.17 views

CVE-2026-13926

The CVE-2026-13926 entry concerns Google Chrome prior to 150.0.7871.47, where insufficient validation of untrusted input in the Network component allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page. The primary impact is a p...

6.5CVSS5.8AI score0.00319EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/30 10:38 p.m.18 views

CVE-2026-13922

Summary of CVE-2026-13922 : A side-channel information leak in Chrome’s Paint component allows a remote attacker to exfiltrate cross-origin data via a crafted HTML page. Affected product/version: Google Chrome (Paint functionality) up to version 150.0.7871.47. Root cause: described as a side-chan...

6.5CVSS5.8AI score0.00299EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/30 10:38 p.m.19 views

CVE-2026-13921

The set of connected records confirms CVE-2026-13921 affects Google Chrome (Chromium-based) via the DeviceBoundSessionCredentials component where insufficient validation of untrusted input enables a remote bypass of the same-origin policy through a crafted HTML page. The vulnerability is describe...

6.5CVSS5.8AI score0.00319EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/30 10:38 p.m.22 views

CVE-2026-13923

CVE-2026-13923 : The connected documents specify that Google Chrome on Android is affected by an uninitialized GPU use vulnerability that can allow a remote attacker to read potentially sensitive data from a process memory via a crafted HTML page. Root cause: uninitialized use in the GPU componen...

6.5CVSS5.8AI score0.00326EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/30 10:38 p.m.21 views

CVE-2026-13920

CVE-2026-13920 describes insufficient validation of untrusted input in Chrome’s media handling on Windows before 150.0.7871.47, allowing a renderer-compromised attacker to potentially escape the sandbox via a crafted HTML page. Affected software: Google Chrome on Windows (renderer process). Root ...

9.6CVSS5.8AI score0.00316EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/30 10:38 p.m.17 views

CVE-2026-13918

CVE-2026-13918 concerns Chrome for iOS (iOS) prior to 150.0.7871.47, where a use-after-free vulnerability in the browser could allow a remote attacker to potentially trigger heap corruption via a crafted HTML page. The connected Debian/OSV and related entries corroborate the description and ident...

8.8CVSS5.8AI score0.00316EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder