|
2231
|
7.5 |
HIGH
Network
|
google
|
chrome
|
Inappropriate implementation in Autofill in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)
|
CWE-352
Origin Validation Error
|
CVE-2026-11265
|
2026-06-8 23:18 |
2026-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2232
|
4.3 |
MEDIUM
Network
|
google
|
chrome
|
Inappropriate implementation in SafeBrowsing in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass Safe Browsing via a malicious file. (Chromium security severity: Low)
|
CWE-693
Protection Mechanism Failure
|
CVE-2026-11266
|
2026-06-8 23:18 |
2026-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2233
|
4.3 |
MEDIUM
Network
|
google
|
chrome
|
Insufficient policy enforcement in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to bypass content security policy via a…
|
CWE-602
Client-Side Enforcement of Server-Side Security
|
CVE-2026-11267
|
2026-06-8 23:18 |
2026-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2234
|
7.1 |
HIGH
Adjacent
|
google
|
chrome
|
Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker in a privileged network position to execute arbitrary code inside a sandbox via a crafted Chrome…
|
CWE-829
Inclusion of Functionality from Untrusted Control Sphere
|
CVE-2026-11269
|
2026-06-8 23:18 |
2026-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2235
|
6.5 |
MEDIUM
Network
|
google
|
chrome
|
Inappropriate implementation in Passwords in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to leak cross-origin data via a craf…
|
CWE-200
Information Exposure
|
CVE-2026-11271
|
2026-06-8 23:17 |
2026-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2236
|
6.1 |
MEDIUM
Network
|
google
|
chrome
|
Insufficient validation of untrusted input in Omnibox in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scri…
|
CWE-20
CWE-79
Improper Input Validation
Cross-site Scripting
|
CVE-2026-11273
|
2026-06-8 23:17 |
2026-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2237
|
5.0 |
MEDIUM
Network
|
redhat
|
openshift_container_platform
|
A flaw was found in OpenShift Container Platform. Completed pods with restartPolicy: Never do not count toward ResourceQuota pod limits, and Kubernetes events are not quota-scoped. A non-privileged u…
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2026-10533
|
2026-06-8 23:09 |
2026-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2238
|
4.3 |
MEDIUM
Network
|
misp
|
misp
|
An authorization flaw existed in the MISP Event Template Importer overwrite workflow. When importing an event template in overwrite mode, the application checked whether a matching template already e…
|
CWE-862
Missing Authorization
|
CVE-2026-10855
|
2026-06-8 23:03 |
2026-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2239
|
6.5 |
MEDIUM
Network
|
google
|
chrome
|
Inappropriate implementation in Page Info in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a…
|
CWE-284
Improper Access Control
|
CVE-2026-11275
|
2026-06-8 23:00 |
2026-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2240
|
6.5 |
MEDIUM
Network
|
google
|
chrome
|
Inappropriate implementation in UI in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)
|
CWE-352
Origin Validation Error
|
CVE-2026-11270
|
2026-06-8 23:00 |
2026-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
