| 0 |
| url |
VCID-1u43-n5v6-auby |
| vulnerability_id |
VCID-1u43-n5v6-auby |
| summary |
Race in V8 in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5893 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0003 |
| scoring_system |
epss |
| scoring_elements |
0.08509 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.0003 |
| scoring_system |
epss |
| scoring_elements |
0.08353 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.0003 |
| scoring_system |
epss |
| scoring_elements |
0.0837 |
| published_at |
2026-04-16T12:55:00Z |
|
| 3 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09157 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09158 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09125 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09111 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5893 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5893
|
| risk_score |
4.3 |
| exploitability |
0.5 |
| weighted_severity |
8.6 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-1u43-n5v6-auby |
|
| 1 |
| url |
VCID-2k46-261h-y3bd |
| vulnerability_id |
VCID-2k46-261h-y3bd |
| summary |
Out of bounds read and write in V8 in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5873 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11334 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11391 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11397 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11363 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.00102 |
| scoring_system |
epss |
| scoring_elements |
0.27974 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00102 |
| scoring_system |
epss |
| scoring_elements |
0.28039 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00102 |
| scoring_system |
epss |
| scoring_elements |
0.28022 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5873 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5873
|
| risk_score |
4.3 |
| exploitability |
0.5 |
| weighted_severity |
8.6 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-2k46-261h-y3bd |
|
| 2 |
| url |
VCID-2yea-nk5s-73a9 |
| vulnerability_id |
VCID-2yea-nk5s-73a9 |
| summary |
Out of bounds read in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Low) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5913 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.1036 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10393 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10421 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10382 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.00086 |
| scoring_system |
epss |
| scoring_elements |
0.24846 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00086 |
| scoring_system |
epss |
| scoring_elements |
0.24875 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00086 |
| scoring_system |
epss |
| scoring_elements |
0.24869 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5913 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5913
|
| risk_score |
2.5 |
| exploitability |
0.5 |
| weighted_severity |
4.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-2yea-nk5s-73a9 |
|
| 3 |
| url |
VCID-3etf-ubtt-43ge |
| vulnerability_id |
VCID-3etf-ubtt-43ge |
| summary |
Heap buffer overflow in WebAudio in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: High) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5864 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.0813 |
| published_at |
2026-04-16T12:55:00Z |
|
| 1 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.0828 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08116 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.0003 |
| scoring_system |
epss |
| scoring_elements |
0.08481 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.00054 |
| scoring_system |
epss |
| scoring_elements |
0.1703 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
0.00054 |
| scoring_system |
epss |
| scoring_elements |
0.16984 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.00054 |
| scoring_system |
epss |
| scoring_elements |
0.16924 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5864 |
|
| 2 |
|
| 3 |
|
| 4 |
| reference_url |
https://issues.chromium.org/issues/490642831 |
| reference_id |
490642831 |
| reference_type |
|
| scores |
| 0 |
| value |
4.2 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:L |
|
| 1 |
| value |
4.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N |
|
| 2 |
| value |
6.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L |
|
| 3 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-13T13:42:48Z/ |
|
| 4 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-10T18:40:37Z/ |
|
|
| url |
https://issues.chromium.org/issues/490642831 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5864
|
| risk_score |
3.0 |
| exploitability |
0.5 |
| weighted_severity |
5.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-3etf-ubtt-43ge |
|
| 4 |
| url |
VCID-4hwd-qaxh-ebac |
| vulnerability_id |
VCID-4hwd-qaxh-ebac |
| summary |
Use after free in V8 in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5861 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11334 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11391 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11397 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11363 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.00139 |
| scoring_system |
epss |
| scoring_elements |
0.33978 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00139 |
| scoring_system |
epss |
| scoring_elements |
0.34024 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00139 |
| scoring_system |
epss |
| scoring_elements |
0.34012 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5861 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5861
|
| risk_score |
4.3 |
| exploitability |
0.5 |
| weighted_severity |
8.6 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-4hwd-qaxh-ebac |
|
| 5 |
| url |
VCID-5754-qrbg-2yds |
| vulnerability_id |
VCID-5754-qrbg-2yds |
| summary |
Uninitialized Use in WebCodecs in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5888 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00031 |
| scoring_system |
epss |
| scoring_elements |
0.08799 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00031 |
| scoring_system |
epss |
| scoring_elements |
0.08645 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00031 |
| scoring_system |
epss |
| scoring_elements |
0.08661 |
| published_at |
2026-04-16T12:55:00Z |
|
| 3 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09357 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09366 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09338 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09325 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5888 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5888
|
| risk_score |
1.9 |
| exploitability |
0.5 |
| weighted_severity |
3.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-5754-qrbg-2yds |
|
| 6 |
| url |
VCID-5uf7-45dg-skfb |
| vulnerability_id |
VCID-5uf7-45dg-skfb |
| summary |
Insufficient policy enforcement in DevTools in Google Chrome prior to 147.0.7727.55 allowed an attacker who convinced a user to install a malicious extension to bypass enterprise host restrictions for cookie modification via a crafted Chrome Extension. (Chromium security severity: Low) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5901 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00021 |
| scoring_system |
epss |
| scoring_elements |
0.05677 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00021 |
| scoring_system |
epss |
| scoring_elements |
0.05513 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00021 |
| scoring_system |
epss |
| scoring_elements |
0.05503 |
| published_at |
2026-04-16T12:55:00Z |
|
| 3 |
| value |
8e-05 |
| scoring_system |
epss |
| scoring_elements |
0.00764 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
8e-05 |
| scoring_system |
epss |
| scoring_elements |
0.00759 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
8e-05 |
| scoring_system |
epss |
| scoring_elements |
0.00754 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
8e-05 |
| scoring_system |
epss |
| scoring_elements |
0.00755 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5901 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5901
|
| risk_score |
1.9 |
| exploitability |
0.5 |
| weighted_severity |
3.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-5uf7-45dg-skfb |
|
| 7 |
| url |
VCID-67c2-tzxz-6ucq |
| vulnerability_id |
VCID-67c2-tzxz-6ucq |
| summary |
Incorrect security UI in Omnibox in Google Chrome on Android prior to 147.0.7727.55 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. (Chromium security severity: Low) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5906 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00022 |
| scoring_system |
epss |
| scoring_elements |
0.05968 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00022 |
| scoring_system |
epss |
| scoring_elements |
0.05978 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.00022 |
| scoring_system |
epss |
| scoring_elements |
0.05987 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00028 |
| scoring_system |
epss |
| scoring_elements |
0.081 |
| published_at |
2026-04-21T12:55:00Z |
|
| 4 |
| value |
0.00028 |
| scoring_system |
epss |
| scoring_elements |
0.07954 |
| published_at |
2026-04-16T12:55:00Z |
|
| 5 |
| value |
0.00028 |
| scoring_system |
epss |
| scoring_elements |
0.07941 |
| published_at |
2026-04-18T12:55:00Z |
|
| 6 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10393 |
| published_at |
2026-04-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5906 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5906
|
| risk_score |
1.9 |
| exploitability |
0.5 |
| weighted_severity |
3.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-67c2-tzxz-6ucq |
|
| 8 |
| url |
VCID-7krq-wfrd-6fbp |
| vulnerability_id |
VCID-7krq-wfrd-6fbp |
| summary |
Insufficient data validation in Media in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform an out of bounds memory read via a crafted video file. (Chromium security severity: Low) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5907 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10393 |
| published_at |
2026-04-09T12:55:00Z |
|
| 1 |
| value |
0.00068 |
| scoring_system |
epss |
| scoring_elements |
0.2093 |
| published_at |
2026-04-11T12:55:00Z |
|
| 2 |
| value |
0.00068 |
| scoring_system |
epss |
| scoring_elements |
0.20886 |
| published_at |
2026-04-12T12:55:00Z |
|
| 3 |
| value |
0.00068 |
| scoring_system |
epss |
| scoring_elements |
0.20835 |
| published_at |
2026-04-13T12:55:00Z |
|
| 4 |
| value |
0.00086 |
| scoring_system |
epss |
| scoring_elements |
0.24846 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00086 |
| scoring_system |
epss |
| scoring_elements |
0.24869 |
| published_at |
2026-04-18T12:55:00Z |
|
| 6 |
| value |
0.00086 |
| scoring_system |
epss |
| scoring_elements |
0.24875 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5907 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5907
|
| risk_score |
2.5 |
| exploitability |
0.5 |
| weighted_severity |
4.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-7krq-wfrd-6fbp |
|
| 9 |
| url |
VCID-9d7w-89vj-m3gy |
| vulnerability_id |
VCID-9d7w-89vj-m3gy |
| summary |
Inappropriate implementation in V8 in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5862 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11334 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11391 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11397 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11363 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.00102 |
| scoring_system |
epss |
| scoring_elements |
0.27974 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00102 |
| scoring_system |
epss |
| scoring_elements |
0.28039 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00102 |
| scoring_system |
epss |
| scoring_elements |
0.28022 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5862 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5862
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
7.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-9d7w-89vj-m3gy |
|
| 10 |
| url |
VCID-9m6n-5q8f-duhk |
| vulnerability_id |
VCID-9m6n-5q8f-duhk |
| summary |
Inappropriate implementation in Navigation in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5918 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00012 |
| scoring_system |
epss |
| scoring_elements |
0.01838 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00012 |
| scoring_system |
epss |
| scoring_elements |
0.01843 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.00012 |
| scoring_system |
epss |
| scoring_elements |
0.01858 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00016 |
| scoring_system |
epss |
| scoring_elements |
0.03524 |
| published_at |
2026-04-21T12:55:00Z |
|
| 4 |
| value |
0.00016 |
| scoring_system |
epss |
| scoring_elements |
0.03395 |
| published_at |
2026-04-16T12:55:00Z |
|
| 5 |
| value |
0.00016 |
| scoring_system |
epss |
| scoring_elements |
0.03407 |
| published_at |
2026-04-18T12:55:00Z |
|
| 6 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10393 |
| published_at |
2026-04-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5918 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5918
|
| risk_score |
2.6 |
| exploitability |
0.5 |
| weighted_severity |
5.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-9m6n-5q8f-duhk |
|
| 11 |
| url |
VCID-b7tk-q4qp-tfbk |
| vulnerability_id |
VCID-b7tk-q4qp-tfbk |
| summary |
Insufficient validation of untrusted input in WebSockets in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. (Chromium security severity: Low) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5919 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0002 |
| scoring_system |
epss |
| scoring_elements |
0.05356 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.0002 |
| scoring_system |
epss |
| scoring_elements |
0.05364 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.0002 |
| scoring_system |
epss |
| scoring_elements |
0.05376 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00021 |
| scoring_system |
epss |
| scoring_elements |
0.05608 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.00037 |
| scoring_system |
epss |
| scoring_elements |
0.11086 |
| published_at |
2026-04-16T12:55:00Z |
|
| 5 |
| value |
0.00037 |
| scoring_system |
epss |
| scoring_elements |
0.11226 |
| published_at |
2026-04-21T12:55:00Z |
|
| 6 |
| value |
0.00037 |
| scoring_system |
epss |
| scoring_elements |
0.11095 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5919 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5919
|
| risk_score |
3.5 |
| exploitability |
0.5 |
| weighted_severity |
6.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-b7tk-q4qp-tfbk |
|
| 12 |
| url |
VCID-c67h-3ect-6bf3 |
| vulnerability_id |
VCID-c67h-3ect-6bf3 |
| summary |
Insufficient validation of untrusted input in WebML in Google Chrome on Windows prior to 147.0.7727.55 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5885 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00043 |
| scoring_system |
epss |
| scoring_elements |
0.13091 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00043 |
| scoring_system |
epss |
| scoring_elements |
0.13181 |
| published_at |
2026-04-11T12:55:00Z |
|
| 2 |
| value |
0.00043 |
| scoring_system |
epss |
| scoring_elements |
0.13212 |
| published_at |
2026-04-09T12:55:00Z |
|
| 3 |
| value |
0.00043 |
| scoring_system |
epss |
| scoring_elements |
0.13142 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.13331 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.13252 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.13251 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5885 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5885
|
| risk_score |
3.0 |
| exploitability |
0.5 |
| weighted_severity |
5.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-c67h-3ect-6bf3 |
|
| 13 |
| url |
VCID-c6en-brtw-37h9 |
| vulnerability_id |
VCID-c6en-brtw-37h9 |
| summary |
Inappropriate implementation in V8 in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5863 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11334 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11391 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11397 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11363 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.00102 |
| scoring_system |
epss |
| scoring_elements |
0.27974 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00102 |
| scoring_system |
epss |
| scoring_elements |
0.28039 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00102 |
| scoring_system |
epss |
| scoring_elements |
0.28022 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5863 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5863
|
| risk_score |
4.3 |
| exploitability |
0.5 |
| weighted_severity |
8.6 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-c6en-brtw-37h9 |
|
| 14 |
| url |
VCID-cfss-kmk3-1uht |
| vulnerability_id |
VCID-cfss-kmk3-1uht |
| summary |
Heap buffer overflow in ANGLE in Google Chrome on Mac prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5868 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10193 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10218 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10254 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10213 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.00091 |
| scoring_system |
epss |
| scoring_elements |
0.25634 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00091 |
| scoring_system |
epss |
| scoring_elements |
0.25675 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00091 |
| scoring_system |
epss |
| scoring_elements |
0.25658 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5868 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5868
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
7.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-cfss-kmk3-1uht |
|
| 15 |
| url |
VCID-dah7-rev6-jffr |
| vulnerability_id |
VCID-dah7-rev6-jffr |
| summary |
Incorrect security UI in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5878 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00028 |
| scoring_system |
epss |
| scoring_elements |
0.081 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00028 |
| scoring_system |
epss |
| scoring_elements |
0.07941 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00028 |
| scoring_system |
epss |
| scoring_elements |
0.07954 |
| published_at |
2026-04-16T12:55:00Z |
|
| 3 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10393 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10421 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10382 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.1036 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5878 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5878
|
| risk_score |
2.5 |
| exploitability |
0.5 |
| weighted_severity |
4.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-dah7-rev6-jffr |
|
| 16 |
| url |
VCID-dcdp-y63b-kkde |
| vulnerability_id |
VCID-dcdp-y63b-kkde |
| summary |
Cryptographic Flaw in PDFium in Google Chrome prior to 147.0.7727.55 allowed an attacker to read potentially sensitive information from encrypted PDFs via a brute-force attack. (Chromium security severity: Medium) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5889 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
6e-05 |
| scoring_system |
epss |
| scoring_elements |
0.00456 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
6e-05 |
| scoring_system |
epss |
| scoring_elements |
0.00426 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
6e-05 |
| scoring_system |
epss |
| scoring_elements |
0.00421 |
| published_at |
2026-04-16T12:55:00Z |
|
| 3 |
| value |
8e-05 |
| scoring_system |
epss |
| scoring_elements |
0.00764 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
8e-05 |
| scoring_system |
epss |
| scoring_elements |
0.00759 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
8e-05 |
| scoring_system |
epss |
| scoring_elements |
0.00754 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
8e-05 |
| scoring_system |
epss |
| scoring_elements |
0.00755 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5889 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5889
|
| risk_score |
2.8 |
| exploitability |
0.5 |
| weighted_severity |
5.6 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-dcdp-y63b-kkde |
|
| 17 |
| url |
VCID-dm39-2c62-7bb6 |
| vulnerability_id |
VCID-dm39-2c62-7bb6 |
| summary |
Heap buffer overflow in WebML in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: High) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5869 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.0813 |
| published_at |
2026-04-16T12:55:00Z |
|
| 1 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.0828 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08116 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.0003 |
| scoring_system |
epss |
| scoring_elements |
0.08481 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.00054 |
| scoring_system |
epss |
| scoring_elements |
0.1703 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
0.00054 |
| scoring_system |
epss |
| scoring_elements |
0.16984 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.00054 |
| scoring_system |
epss |
| scoring_elements |
0.16924 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5869 |
|
| 2 |
|
| 3 |
|
| 4 |
| reference_url |
https://issues.chromium.org/issues/493708165 |
| reference_id |
493708165 |
| reference_type |
|
| scores |
| 0 |
| value |
3.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N |
|
| 1 |
| value |
4.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N |
|
| 2 |
| value |
6.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L |
|
| 3 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-13T13:44:57Z/ |
|
| 4 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-10T18:39:36Z/ |
|
|
| url |
https://issues.chromium.org/issues/493708165 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5869
|
| risk_score |
3.0 |
| exploitability |
0.5 |
| weighted_severity |
5.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-dm39-2c62-7bb6 |
|
| 18 |
| url |
VCID-dvc2-qesm-jkd5 |
| vulnerability_id |
VCID-dvc2-qesm-jkd5 |
| summary |
Insufficient validation of untrusted input in ANGLE in Google Chrome on Mac prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5879 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0005 |
| scoring_system |
epss |
| scoring_elements |
0.15502 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.0005 |
| scoring_system |
epss |
| scoring_elements |
0.15637 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.0005 |
| scoring_system |
epss |
| scoring_elements |
0.15604 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.0005 |
| scoring_system |
epss |
| scoring_elements |
0.15567 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.00148 |
| scoring_system |
epss |
| scoring_elements |
0.35245 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00148 |
| scoring_system |
epss |
| scoring_elements |
0.35308 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00148 |
| scoring_system |
epss |
| scoring_elements |
0.35294 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5879 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5879
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
7.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-dvc2-qesm-jkd5 |
|
| 19 |
| url |
VCID-dwqg-vuy2-2uhe |
| vulnerability_id |
VCID-dwqg-vuy2-2uhe |
| summary |
Policy bypass in ServiceWorkers in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to bypass content security policy via a crafted HTML page. (Chromium security severity: Low) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5911 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00016 |
| scoring_system |
epss |
| scoring_elements |
0.03459 |
| published_at |
2026-04-09T12:55:00Z |
|
| 1 |
| value |
0.00026 |
| scoring_system |
epss |
| scoring_elements |
0.07379 |
| published_at |
2026-04-11T12:55:00Z |
|
| 2 |
| value |
0.00026 |
| scoring_system |
epss |
| scoring_elements |
0.07366 |
| published_at |
2026-04-12T12:55:00Z |
|
| 3 |
| value |
0.00026 |
| scoring_system |
epss |
| scoring_elements |
0.07353 |
| published_at |
2026-04-13T12:55:00Z |
|
| 4 |
| value |
0.00034 |
| scoring_system |
epss |
| scoring_elements |
0.09801 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00034 |
| scoring_system |
epss |
| scoring_elements |
0.09657 |
| published_at |
2026-04-18T12:55:00Z |
|
| 6 |
| value |
0.00034 |
| scoring_system |
epss |
| scoring_elements |
0.09688 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5911 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5911
|
| risk_score |
2.8 |
| exploitability |
0.5 |
| weighted_severity |
5.5 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-dwqg-vuy2-2uhe |
|
| 20 |
| url |
VCID-eppu-2256-nud8 |
| vulnerability_id |
VCID-eppu-2256-nud8 |
| summary |
Use after free in Media in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5866 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11391 |
| published_at |
2026-04-09T12:55:00Z |
|
| 1 |
| value |
0.0008 |
| scoring_system |
epss |
| scoring_elements |
0.23656 |
| published_at |
2026-04-11T12:55:00Z |
|
| 2 |
| value |
0.0008 |
| scoring_system |
epss |
| scoring_elements |
0.23614 |
| published_at |
2026-04-12T12:55:00Z |
|
| 3 |
| value |
0.0008 |
| scoring_system |
epss |
| scoring_elements |
0.23557 |
| published_at |
2026-04-13T12:55:00Z |
|
| 4 |
| value |
0.00139 |
| scoring_system |
epss |
| scoring_elements |
0.33978 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00139 |
| scoring_system |
epss |
| scoring_elements |
0.34012 |
| published_at |
2026-04-18T12:55:00Z |
|
| 6 |
| value |
0.00139 |
| scoring_system |
epss |
| scoring_elements |
0.34024 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5866 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5866
|
| risk_score |
4.3 |
| exploitability |
0.5 |
| weighted_severity |
8.6 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-eppu-2256-nud8 |
|
| 21 |
| url |
VCID-ezsm-r6h7-b3hu |
| vulnerability_id |
VCID-ezsm-r6h7-b3hu |
| summary |
Insufficient validation of untrusted input in Media in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5884 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0005 |
| scoring_system |
epss |
| scoring_elements |
0.15502 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.0005 |
| scoring_system |
epss |
| scoring_elements |
0.15637 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.0005 |
| scoring_system |
epss |
| scoring_elements |
0.15604 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.0005 |
| scoring_system |
epss |
| scoring_elements |
0.15567 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.00138 |
| scoring_system |
epss |
| scoring_elements |
0.33541 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00138 |
| scoring_system |
epss |
| scoring_elements |
0.33598 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00138 |
| scoring_system |
epss |
| scoring_elements |
0.33574 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5884 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5884
|
| risk_score |
3.6 |
| exploitability |
0.5 |
| weighted_severity |
7.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ezsm-r6h7-b3hu |
|
| 22 |
| url |
VCID-fe9g-f832-93ge |
| vulnerability_id |
VCID-fe9g-f832-93ge |
| summary |
Policy bypass in LocalNetworkAccess in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Medium) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5881 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00016 |
| scoring_system |
epss |
| scoring_elements |
0.03367 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00016 |
| scoring_system |
epss |
| scoring_elements |
0.03459 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.00016 |
| scoring_system |
epss |
| scoring_elements |
0.03418 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00016 |
| scoring_system |
epss |
| scoring_elements |
0.0339 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.00025 |
| scoring_system |
epss |
| scoring_elements |
0.0705 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00025 |
| scoring_system |
epss |
| scoring_elements |
0.06931 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00025 |
| scoring_system |
epss |
| scoring_elements |
0.06915 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5881 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5881
|
| risk_score |
2.5 |
| exploitability |
0.5 |
| weighted_severity |
4.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-fe9g-f832-93ge |
|
| 23 |
| url |
VCID-gte6-2nmf-17ed |
| vulnerability_id |
VCID-gte6-2nmf-17ed |
| summary |
Type Confusion in V8 in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5865 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11334 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11391 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11397 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11363 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.00104 |
| scoring_system |
epss |
| scoring_elements |
0.28254 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00104 |
| scoring_system |
epss |
| scoring_elements |
0.28321 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00104 |
| scoring_system |
epss |
| scoring_elements |
0.283 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5865 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5865
|
| risk_score |
4.3 |
| exploitability |
0.5 |
| weighted_severity |
8.6 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-gte6-2nmf-17ed |
|
| 24 |
| url |
VCID-gz5r-x3cv-9yh6 |
| vulnerability_id |
VCID-gz5r-x3cv-9yh6 |
| summary |
Side-channel information leakage in Navigation in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5876 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00028 |
| scoring_system |
epss |
| scoring_elements |
0.0782 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00028 |
| scoring_system |
epss |
| scoring_elements |
0.07834 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.00028 |
| scoring_system |
epss |
| scoring_elements |
0.07848 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10391 |
| published_at |
2026-04-21T12:55:00Z |
|
| 4 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10393 |
| published_at |
2026-04-09T12:55:00Z |
|
| 5 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10288 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.1026 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5876 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5876
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.7 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-gz5r-x3cv-9yh6 |
|
| 25 |
| url |
VCID-h4bc-hpby-53a2 |
| vulnerability_id |
VCID-h4bc-hpby-53a2 |
| summary |
Use after free in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5872 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11334 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11391 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11397 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11363 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.00139 |
| scoring_system |
epss |
| scoring_elements |
0.33978 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00139 |
| scoring_system |
epss |
| scoring_elements |
0.34024 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00139 |
| scoring_system |
epss |
| scoring_elements |
0.34012 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5872 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5872
|
| risk_score |
4.3 |
| exploitability |
0.5 |
| weighted_severity |
8.6 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-h4bc-hpby-53a2 |
|
| 26 |
| url |
VCID-j6ca-hcw4-bke7 |
| vulnerability_id |
VCID-j6ca-hcw4-bke7 |
| summary |
Use after free in WebRTC in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5860 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00033 |
| scoring_system |
epss |
| scoring_elements |
0.09735 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00033 |
| scoring_system |
epss |
| scoring_elements |
0.09771 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.00033 |
| scoring_system |
epss |
| scoring_elements |
0.09784 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00033 |
| scoring_system |
epss |
| scoring_elements |
0.09751 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.00123 |
| scoring_system |
epss |
| scoring_elements |
0.3139 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00123 |
| scoring_system |
epss |
| scoring_elements |
0.3144 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00123 |
| scoring_system |
epss |
| scoring_elements |
0.31419 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5860 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5860
|
| risk_score |
4.3 |
| exploitability |
0.5 |
| weighted_severity |
8.6 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-j6ca-hcw4-bke7 |
|
| 27 |
| url |
VCID-jcqn-xvsp-eyb1 |
| vulnerability_id |
VCID-jcqn-xvsp-eyb1 |
| summary |
Policy bypass in Audio in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass sandbox download restrictions via a crafted HTML page. (Chromium security severity: Low) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5896 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00016 |
| scoring_system |
epss |
| scoring_elements |
0.03459 |
| published_at |
2026-04-09T12:55:00Z |
|
| 1 |
| value |
0.00016 |
| scoring_system |
epss |
| scoring_elements |
0.03418 |
| published_at |
2026-04-11T12:55:00Z |
|
| 2 |
| value |
0.00016 |
| scoring_system |
epss |
| scoring_elements |
0.0339 |
| published_at |
2026-04-12T12:55:00Z |
|
| 3 |
| value |
0.00016 |
| scoring_system |
epss |
| scoring_elements |
0.03367 |
| published_at |
2026-04-13T12:55:00Z |
|
| 4 |
| value |
0.0003 |
| scoring_system |
epss |
| scoring_elements |
0.08573 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.0003 |
| scoring_system |
epss |
| scoring_elements |
0.08428 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.0003 |
| scoring_system |
epss |
| scoring_elements |
0.08412 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5896 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5896
|
| risk_score |
2.8 |
| exploitability |
0.5 |
| weighted_severity |
5.5 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-jcqn-xvsp-eyb1 |
|
| 28 |
| url |
VCID-jg3y-nbqx-2qhk |
| vulnerability_id |
VCID-jg3y-nbqx-2qhk |
| summary |
Incorrect security UI in Downloads in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5897 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00026 |
| scoring_system |
epss |
| scoring_elements |
0.0739 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00026 |
| scoring_system |
epss |
| scoring_elements |
0.07265 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00026 |
| scoring_system |
epss |
| scoring_elements |
0.0727 |
| published_at |
2026-04-16T12:55:00Z |
|
| 3 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10393 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10421 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10382 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.1036 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5897 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5897
|
| risk_score |
1.9 |
| exploitability |
0.5 |
| weighted_severity |
3.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-jg3y-nbqx-2qhk |
|
| 29 |
| url |
VCID-jpyw-dj8s-x3em |
| vulnerability_id |
VCID-jpyw-dj8s-x3em |
| summary |
Insufficient validation of untrusted input in WebML in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Low) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5915 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00043 |
| scoring_system |
epss |
| scoring_elements |
0.13212 |
| published_at |
2026-04-09T12:55:00Z |
|
| 1 |
| value |
0.00053 |
| scoring_system |
epss |
| scoring_elements |
0.16712 |
| published_at |
2026-04-11T12:55:00Z |
|
| 2 |
| value |
0.00053 |
| scoring_system |
epss |
| scoring_elements |
0.16669 |
| published_at |
2026-04-12T12:55:00Z |
|
| 3 |
| value |
0.00053 |
| scoring_system |
epss |
| scoring_elements |
0.16611 |
| published_at |
2026-04-13T12:55:00Z |
|
| 4 |
| value |
0.001 |
| scoring_system |
epss |
| scoring_elements |
0.27634 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.001 |
| scoring_system |
epss |
| scoring_elements |
0.27673 |
| published_at |
2026-04-18T12:55:00Z |
|
| 6 |
| value |
0.001 |
| scoring_system |
epss |
| scoring_elements |
0.27699 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5915 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5915
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
7.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-jpyw-dj8s-x3em |
|
| 30 |
| url |
VCID-kntf-5ubj-1be5 |
| vulnerability_id |
VCID-kntf-5ubj-1be5 |
| summary |
Inappropriate implementation in PDF in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Low) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5894 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00016 |
| scoring_system |
epss |
| scoring_elements |
0.03367 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00016 |
| scoring_system |
epss |
| scoring_elements |
0.03459 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.00016 |
| scoring_system |
epss |
| scoring_elements |
0.03418 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00016 |
| scoring_system |
epss |
| scoring_elements |
0.0339 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.00021 |
| scoring_system |
epss |
| scoring_elements |
0.05719 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00021 |
| scoring_system |
epss |
| scoring_elements |
0.05549 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00021 |
| scoring_system |
epss |
| scoring_elements |
0.05562 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5894 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5894
|
| risk_score |
2.5 |
| exploitability |
0.5 |
| weighted_severity |
4.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-kntf-5ubj-1be5 |
|
| 31 |
| url |
VCID-kqjd-8w3j-wqcm |
| vulnerability_id |
VCID-kqjd-8w3j-wqcm |
| summary |
Policy bypass in IFrameSandbox in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Low) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5903 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00016 |
| scoring_system |
epss |
| scoring_elements |
0.03367 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00016 |
| scoring_system |
epss |
| scoring_elements |
0.03459 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.00016 |
| scoring_system |
epss |
| scoring_elements |
0.03418 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00016 |
| scoring_system |
epss |
| scoring_elements |
0.0339 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.00031 |
| scoring_system |
epss |
| scoring_elements |
0.09021 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00031 |
| scoring_system |
epss |
| scoring_elements |
0.08892 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00031 |
| scoring_system |
epss |
| scoring_elements |
0.08875 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5903 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5903
|
| risk_score |
2.8 |
| exploitability |
0.5 |
| weighted_severity |
5.5 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-kqjd-8w3j-wqcm |
|
| 32 |
| url |
VCID-m84v-xahm-rubz |
| vulnerability_id |
VCID-m84v-xahm-rubz |
| summary |
Use after free in V8 in Google Chrome prior to 147.0.7727.55 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. (Chromium security severity: Low) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5904 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08373 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08211 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08224 |
| published_at |
2026-04-16T12:55:00Z |
|
| 3 |
| value |
8e-05 |
| scoring_system |
epss |
| scoring_elements |
0.00764 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
8e-05 |
| scoring_system |
epss |
| scoring_elements |
0.00759 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
8e-05 |
| scoring_system |
epss |
| scoring_elements |
0.00754 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
8e-05 |
| scoring_system |
epss |
| scoring_elements |
0.00755 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5904 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5904
|
| risk_score |
3.7 |
| exploitability |
0.5 |
| weighted_severity |
7.4 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-m84v-xahm-rubz |
|
| 33 |
| url |
VCID-n42w-7gws-n7dz |
| vulnerability_id |
VCID-n42w-7gws-n7dz |
| summary |
Insufficient policy enforcement in PWAs in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who had compromised the renderer process to install a PWA without user consent via a crafted HTML page. (Chromium security severity: Medium) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5892 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00028 |
| scoring_system |
epss |
| scoring_elements |
0.07802 |
| published_at |
2026-04-16T12:55:00Z |
|
| 1 |
| value |
0.00028 |
| scoring_system |
epss |
| scoring_elements |
0.07941 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.00028 |
| scoring_system |
epss |
| scoring_elements |
0.07786 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10393 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10421 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10382 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.1036 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5892 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5892
|
| risk_score |
3.5 |
| exploitability |
0.5 |
| weighted_severity |
6.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-n42w-7gws-n7dz |
|
| 34 |
| url |
VCID-nc2x-jyqw-8qa8 |
| vulnerability_id |
VCID-nc2x-jyqw-8qa8 |
| summary |
Use after free in Navigation in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5877 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11334 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11391 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11397 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11363 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.00139 |
| scoring_system |
epss |
| scoring_elements |
0.33978 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00139 |
| scoring_system |
epss |
| scoring_elements |
0.34024 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00139 |
| scoring_system |
epss |
| scoring_elements |
0.34012 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5877 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5877
|
| risk_score |
4.3 |
| exploitability |
0.5 |
| weighted_severity |
8.6 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-nc2x-jyqw-8qa8 |
|
| 35 |
| url |
VCID-neem-fet6-pfdg |
| vulnerability_id |
VCID-neem-fet6-pfdg |
| summary |
Insufficient policy enforcement in History Navigation in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. (Chromium security severity: Low) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5899 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00015 |
| scoring_system |
epss |
| scoring_elements |
0.02949 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00015 |
| scoring_system |
epss |
| scoring_elements |
0.02832 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00015 |
| scoring_system |
epss |
| scoring_elements |
0.02823 |
| published_at |
2026-04-16T12:55:00Z |
|
| 3 |
| value |
0.00055 |
| scoring_system |
epss |
| scoring_elements |
0.17329 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.00055 |
| scoring_system |
epss |
| scoring_elements |
0.17342 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
0.00055 |
| scoring_system |
epss |
| scoring_elements |
0.17292 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.00055 |
| scoring_system |
epss |
| scoring_elements |
0.17234 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5899 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5899
|
| risk_score |
3.6 |
| exploitability |
0.5 |
| weighted_severity |
7.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-neem-fet6-pfdg |
|
| 36 |
| url |
VCID-nmme-f7b2-qbcu |
| vulnerability_id |
VCID-nmme-f7b2-qbcu |
| summary |
Incorrect security UI in Permissions in Google Chrome on Windows prior to 147.0.7727.55 allowed a remote attacker to perform domain spoofing via a crafted HTML page. (Chromium security severity: Low) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5905 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00017 |
| scoring_system |
epss |
| scoring_elements |
0.03985 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00017 |
| scoring_system |
epss |
| scoring_elements |
0.04013 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.00017 |
| scoring_system |
epss |
| scoring_elements |
0.04027 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00021 |
| scoring_system |
epss |
| scoring_elements |
0.05908 |
| published_at |
2026-04-21T12:55:00Z |
|
| 4 |
| value |
0.00021 |
| scoring_system |
epss |
| scoring_elements |
0.05756 |
| published_at |
2026-04-16T12:55:00Z |
|
| 5 |
| value |
0.00021 |
| scoring_system |
epss |
| scoring_elements |
0.05764 |
| published_at |
2026-04-18T12:55:00Z |
|
| 6 |
| value |
0.00027 |
| scoring_system |
epss |
| scoring_elements |
0.07489 |
| published_at |
2026-04-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5905 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5905
|
| risk_score |
1.9 |
| exploitability |
0.5 |
| weighted_severity |
3.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-nmme-f7b2-qbcu |
|
| 37 |
| url |
VCID-pxwn-s2wc-y3fu |
| vulnerability_id |
VCID-pxwn-s2wc-y3fu |
| summary |
Type Confusion in CSS in Google Chrome prior to 147.0.7727.55 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. (Chromium security severity: Low) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5914 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00017 |
| scoring_system |
epss |
| scoring_elements |
0.04203 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00017 |
| scoring_system |
epss |
| scoring_elements |
0.04227 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.00017 |
| scoring_system |
epss |
| scoring_elements |
0.04242 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00023 |
| scoring_system |
epss |
| scoring_elements |
0.06359 |
| published_at |
2026-04-21T12:55:00Z |
|
| 4 |
| value |
0.00023 |
| scoring_system |
epss |
| scoring_elements |
0.06196 |
| published_at |
2026-04-16T12:55:00Z |
|
| 5 |
| value |
0.00023 |
| scoring_system |
epss |
| scoring_elements |
0.06208 |
| published_at |
2026-04-18T12:55:00Z |
|
| 6 |
| value |
8e-05 |
| scoring_system |
epss |
| scoring_elements |
0.00764 |
| published_at |
2026-04-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5914 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5914
|
| risk_score |
2.6 |
| exploitability |
0.5 |
| weighted_severity |
5.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-pxwn-s2wc-y3fu |
|
| 38 |
| url |
VCID-q6cv-xwf7-aub3 |
| vulnerability_id |
VCID-q6cv-xwf7-aub3 |
| summary |
Integer overflow in Skia in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5870 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11334 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11391 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11397 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11363 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.00102 |
| scoring_system |
epss |
| scoring_elements |
0.27974 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00102 |
| scoring_system |
epss |
| scoring_elements |
0.28039 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00102 |
| scoring_system |
epss |
| scoring_elements |
0.28022 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5870 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5870
|
| risk_score |
4.3 |
| exploitability |
0.5 |
| weighted_severity |
8.6 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-q6cv-xwf7-aub3 |
|
| 39 |
| url |
VCID-q8kf-7mg7-u3bp |
| vulnerability_id |
VCID-q8kf-7mg7-u3bp |
| summary |
Insufficient policy enforcement in browser UI in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who had compromised the renderer process to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. (Chromium security severity: Medium) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5880 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00026 |
| scoring_system |
epss |
| scoring_elements |
0.07311 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00026 |
| scoring_system |
epss |
| scoring_elements |
0.07185 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00026 |
| scoring_system |
epss |
| scoring_elements |
0.0719 |
| published_at |
2026-04-16T12:55:00Z |
|
| 3 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09357 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09366 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09338 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09325 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5880 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5880
|
| risk_score |
2.5 |
| exploitability |
0.5 |
| weighted_severity |
5.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-q8kf-7mg7-u3bp |
|
| 40 |
| url |
VCID-qgys-h6hm-z3es |
| vulnerability_id |
VCID-qgys-h6hm-z3es |
| summary |
Integer overflow in Media in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to potentially exploit heap corruption via a crafted video file. (Chromium security severity: Low) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5910 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10393 |
| published_at |
2026-04-09T12:55:00Z |
|
| 1 |
| value |
0.00068 |
| scoring_system |
epss |
| scoring_elements |
0.2093 |
| published_at |
2026-04-11T12:55:00Z |
|
| 2 |
| value |
0.00068 |
| scoring_system |
epss |
| scoring_elements |
0.20886 |
| published_at |
2026-04-12T12:55:00Z |
|
| 3 |
| value |
0.00068 |
| scoring_system |
epss |
| scoring_elements |
0.20835 |
| published_at |
2026-04-13T12:55:00Z |
|
| 4 |
| value |
0.00086 |
| scoring_system |
epss |
| scoring_elements |
0.24846 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00086 |
| scoring_system |
epss |
| scoring_elements |
0.24869 |
| published_at |
2026-04-18T12:55:00Z |
|
| 6 |
| value |
0.00086 |
| scoring_system |
epss |
| scoring_elements |
0.24875 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5910 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5910
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
7.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-qgys-h6hm-z3es |
|
| 41 |
| url |
VCID-r1c5-16y9-bugq |
| vulnerability_id |
VCID-r1c5-16y9-bugq |
| summary |
Race in Media in Google Chrome on Android prior to 147.0.7727.55 allowed a remote attacker who had compromised the renderer process to corrupt media stream metadata via a crafted HTML page. (Chromium security severity: Low) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5902 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09157 |
| published_at |
2026-04-09T12:55:00Z |
|
| 1 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09158 |
| published_at |
2026-04-11T12:55:00Z |
|
| 2 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09125 |
| published_at |
2026-04-12T12:55:00Z |
|
| 3 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09111 |
| published_at |
2026-04-13T12:55:00Z |
|
| 4 |
| value |
0.00096 |
| scoring_system |
epss |
| scoring_elements |
0.2658 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00096 |
| scoring_system |
epss |
| scoring_elements |
0.26647 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00096 |
| scoring_system |
epss |
| scoring_elements |
0.26618 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5902 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5902
|
| risk_score |
3.0 |
| exploitability |
0.5 |
| weighted_severity |
5.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-r1c5-16y9-bugq |
|
| 42 |
| url |
VCID-rzdc-3uut-byhc |
| vulnerability_id |
VCID-rzdc-3uut-byhc |
| summary |
Incorrect security UI in Omnibox in Google Chrome on iOS prior to 147.0.7727.55 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5898 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00026 |
| scoring_system |
epss |
| scoring_elements |
0.0739 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00026 |
| scoring_system |
epss |
| scoring_elements |
0.07265 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00026 |
| scoring_system |
epss |
| scoring_elements |
0.0727 |
| published_at |
2026-04-16T12:55:00Z |
|
| 3 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10393 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10421 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10382 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.1036 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5898 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5898
|
| risk_score |
1.9 |
| exploitability |
0.5 |
| weighted_severity |
3.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-rzdc-3uut-byhc |
|
| 43 |
| url |
VCID-sxav-2n8n-wkb9 |
| vulnerability_id |
VCID-sxav-2n8n-wkb9 |
| summary |
Heap buffer overflow in WebML in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5858 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00031 |
| scoring_system |
epss |
| scoring_elements |
0.08741 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00031 |
| scoring_system |
epss |
| scoring_elements |
0.08776 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.00031 |
| scoring_system |
epss |
| scoring_elements |
0.08778 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00031 |
| scoring_system |
epss |
| scoring_elements |
0.08755 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.23759 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.23792 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.2378 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5858 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5858
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
7.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-sxav-2n8n-wkb9 |
|
| 44 |
| url |
VCID-tbzs-axfh-77au |
| vulnerability_id |
VCID-tbzs-axfh-77au |
| summary |
Integer overflow in WebRTC in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Low) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5912 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09357 |
| published_at |
2026-04-09T12:55:00Z |
|
| 1 |
| value |
0.00062 |
| scoring_system |
epss |
| scoring_elements |
0.1946 |
| published_at |
2026-04-11T12:55:00Z |
|
| 2 |
| value |
0.00062 |
| scoring_system |
epss |
| scoring_elements |
0.19413 |
| published_at |
2026-04-12T12:55:00Z |
|
| 3 |
| value |
0.00062 |
| scoring_system |
epss |
| scoring_elements |
0.19355 |
| published_at |
2026-04-13T12:55:00Z |
|
| 4 |
| value |
0.001 |
| scoring_system |
epss |
| scoring_elements |
0.27639 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.001 |
| scoring_system |
epss |
| scoring_elements |
0.27677 |
| published_at |
2026-04-18T12:55:00Z |
|
| 6 |
| value |
0.001 |
| scoring_system |
epss |
| scoring_elements |
0.27703 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5912 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5912
|
| risk_score |
4.3 |
| exploitability |
0.5 |
| weighted_severity |
8.6 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-tbzs-axfh-77au |
|
| 45 |
| url |
VCID-tkx7-9rpf-pyeh |
| vulnerability_id |
VCID-tkx7-9rpf-pyeh |
| summary |
Integer overflow in WebML in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5859 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09325 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09357 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09366 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09338 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.0008 |
| scoring_system |
epss |
| scoring_elements |
0.23524 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.0008 |
| scoring_system |
epss |
| scoring_elements |
0.23552 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.0008 |
| scoring_system |
epss |
| scoring_elements |
0.23545 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5859 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5859
|
| risk_score |
4.3 |
| exploitability |
0.5 |
| weighted_severity |
8.6 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-tkx7-9rpf-pyeh |
|
| 46 |
| url |
VCID-tynp-q2w1-vkde |
| vulnerability_id |
VCID-tynp-q2w1-vkde |
| summary |
Policy bypass in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5875 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00016 |
| scoring_system |
epss |
| scoring_elements |
0.03459 |
| published_at |
2026-04-09T12:55:00Z |
|
| 1 |
| value |
0.0002 |
| scoring_system |
epss |
| scoring_elements |
0.05317 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.0002 |
| scoring_system |
epss |
| scoring_elements |
0.05329 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.0002 |
| scoring_system |
epss |
| scoring_elements |
0.05306 |
| published_at |
2026-04-13T12:55:00Z |
|
| 4 |
| value |
0.00025 |
| scoring_system |
epss |
| scoring_elements |
0.0705 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00025 |
| scoring_system |
epss |
| scoring_elements |
0.06931 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00025 |
| scoring_system |
epss |
| scoring_elements |
0.06915 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5875 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5875
|
| risk_score |
2.5 |
| exploitability |
0.5 |
| weighted_severity |
4.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-tynp-q2w1-vkde |
|
| 47 |
| url |
VCID-uy3v-ru2f-fqcd |
| vulnerability_id |
VCID-uy3v-ru2f-fqcd |
| summary |
Use after free in Media in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5883 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11391 |
| published_at |
2026-04-09T12:55:00Z |
|
| 1 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11397 |
| published_at |
2026-04-11T12:55:00Z |
|
| 2 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11363 |
| published_at |
2026-04-12T12:55:00Z |
|
| 3 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11334 |
| published_at |
2026-04-13T12:55:00Z |
|
| 4 |
| value |
0.0005 |
| scoring_system |
epss |
| scoring_elements |
0.15238 |
| published_at |
2026-04-16T12:55:00Z |
|
| 5 |
| value |
0.00129 |
| scoring_system |
epss |
| scoring_elements |
0.32341 |
| published_at |
2026-04-18T12:55:00Z |
|
| 6 |
| value |
0.00129 |
| scoring_system |
epss |
| scoring_elements |
0.32313 |
| published_at |
2026-04-21T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5883 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5883
|
| risk_score |
4.3 |
| exploitability |
0.5 |
| weighted_severity |
8.6 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-uy3v-ru2f-fqcd |
|
| 48 |
| url |
VCID-v1qf-79xm-bbg2 |
| vulnerability_id |
VCID-v1qf-79xm-bbg2 |
| summary |
Integer overflow in Media in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to potentially exploit heap corruption via a crafted video file. (Chromium security severity: Low) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5908 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10393 |
| published_at |
2026-04-09T12:55:00Z |
|
| 1 |
| value |
0.00068 |
| scoring_system |
epss |
| scoring_elements |
0.2093 |
| published_at |
2026-04-11T12:55:00Z |
|
| 2 |
| value |
0.00068 |
| scoring_system |
epss |
| scoring_elements |
0.20886 |
| published_at |
2026-04-12T12:55:00Z |
|
| 3 |
| value |
0.00068 |
| scoring_system |
epss |
| scoring_elements |
0.20835 |
| published_at |
2026-04-13T12:55:00Z |
|
| 4 |
| value |
0.00086 |
| scoring_system |
epss |
| scoring_elements |
0.24846 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00086 |
| scoring_system |
epss |
| scoring_elements |
0.24869 |
| published_at |
2026-04-18T12:55:00Z |
|
| 6 |
| value |
0.00086 |
| scoring_system |
epss |
| scoring_elements |
0.24875 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5908 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5908
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
7.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-v1qf-79xm-bbg2 |
|
| 49 |
| url |
VCID-v5a1-1ceu-ebhv |
| vulnerability_id |
VCID-v5a1-1ceu-ebhv |
| summary |
Policy bypass in Downloads in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to bypass of multi-download protections via a crafted HTML page. (Chromium security severity: Low) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5900 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00016 |
| scoring_system |
epss |
| scoring_elements |
0.03367 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00016 |
| scoring_system |
epss |
| scoring_elements |
0.03459 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.00016 |
| scoring_system |
epss |
| scoring_elements |
0.03418 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00016 |
| scoring_system |
epss |
| scoring_elements |
0.0339 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.00031 |
| scoring_system |
epss |
| scoring_elements |
0.09021 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00031 |
| scoring_system |
epss |
| scoring_elements |
0.08892 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00031 |
| scoring_system |
epss |
| scoring_elements |
0.08875 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5900 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5900
|
| risk_score |
1.9 |
| exploitability |
0.5 |
| weighted_severity |
3.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-v5a1-1ceu-ebhv |
|
| 50 |
| url |
VCID-vghg-r559-kbes |
| vulnerability_id |
VCID-vghg-r559-kbes |
| summary |
Integer overflow in Media in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to potentially exploit heap corruption via a crafted video file. (Chromium security severity: Low) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5909 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10393 |
| published_at |
2026-04-09T12:55:00Z |
|
| 1 |
| value |
0.00068 |
| scoring_system |
epss |
| scoring_elements |
0.2093 |
| published_at |
2026-04-11T12:55:00Z |
|
| 2 |
| value |
0.00068 |
| scoring_system |
epss |
| scoring_elements |
0.20886 |
| published_at |
2026-04-12T12:55:00Z |
|
| 3 |
| value |
0.00068 |
| scoring_system |
epss |
| scoring_elements |
0.20835 |
| published_at |
2026-04-13T12:55:00Z |
|
| 4 |
| value |
0.00086 |
| scoring_system |
epss |
| scoring_elements |
0.24846 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00086 |
| scoring_system |
epss |
| scoring_elements |
0.24869 |
| published_at |
2026-04-18T12:55:00Z |
|
| 6 |
| value |
0.00086 |
| scoring_system |
epss |
| scoring_elements |
0.24875 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5909 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5909
|
| risk_score |
4.3 |
| exploitability |
0.5 |
| weighted_severity |
8.6 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-vghg-r559-kbes |
|
| 51 |
| url |
VCID-vxex-hv2g-gbhk |
| vulnerability_id |
VCID-vxex-hv2g-gbhk |
| summary |
Out of bounds read in WebAudio in Google Chrome on Mac prior to 147.0.7727.55 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5886 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00025 |
| scoring_system |
epss |
| scoring_elements |
0.07086 |
| published_at |
2026-04-12T12:55:00Z |
|
| 1 |
| value |
0.00025 |
| scoring_system |
epss |
| scoring_elements |
0.07097 |
| published_at |
2026-04-11T12:55:00Z |
|
| 2 |
| value |
0.00025 |
| scoring_system |
epss |
| scoring_elements |
0.07076 |
| published_at |
2026-04-13T12:55:00Z |
|
| 3 |
| value |
0.0003 |
| scoring_system |
epss |
| scoring_elements |
0.08657 |
| published_at |
2026-04-21T12:55:00Z |
|
| 4 |
| value |
0.0003 |
| scoring_system |
epss |
| scoring_elements |
0.08518 |
| published_at |
2026-04-16T12:55:00Z |
|
| 5 |
| value |
0.0003 |
| scoring_system |
epss |
| scoring_elements |
0.08505 |
| published_at |
2026-04-18T12:55:00Z |
|
| 6 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09357 |
| published_at |
2026-04-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5886 |
|
| 2 |
|
| 3 |
|
| 4 |
| reference_url |
https://issues.chromium.org/issues/485397283 |
| reference_id |
485397283 |
| reference_type |
|
| scores |
| 0 |
| value |
5.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N |
|
| 1 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
|
| 2 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-10T18:38:06Z/ |
|
|
| url |
https://issues.chromium.org/issues/485397283 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5886
|
| risk_score |
3.0 |
| exploitability |
0.5 |
| weighted_severity |
5.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-vxex-hv2g-gbhk |
|
| 52 |
| url |
VCID-vz9s-2tc5-xqh7 |
| vulnerability_id |
VCID-vz9s-2tc5-xqh7 |
| summary |
Incorrect security UI in Fullscreen in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5882 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00028 |
| scoring_system |
epss |
| scoring_elements |
0.081 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00028 |
| scoring_system |
epss |
| scoring_elements |
0.07941 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00028 |
| scoring_system |
epss |
| scoring_elements |
0.07954 |
| published_at |
2026-04-16T12:55:00Z |
|
| 3 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10393 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10421 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10382 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.1036 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5882 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5882
|
| risk_score |
2.5 |
| exploitability |
0.5 |
| weighted_severity |
4.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-vz9s-2tc5-xqh7 |
|
| 53 |
| url |
VCID-w6jf-yzuk-rbbc |
| vulnerability_id |
VCID-w6jf-yzuk-rbbc |
| summary |
Race in WebCodecs in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5890 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00027 |
| scoring_system |
epss |
| scoring_elements |
0.07762 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00027 |
| scoring_system |
epss |
| scoring_elements |
0.07613 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.0836 |
| published_at |
2026-04-09T12:55:00Z |
|
| 3 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08314 |
| published_at |
2026-04-13T12:55:00Z |
|
| 4 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08351 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08331 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11395 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5890 |
|
| 2 |
|
| 3 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5890
|
| risk_score |
3.0 |
| exploitability |
0.5 |
| weighted_severity |
5.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-w6jf-yzuk-rbbc |
|
| 54 |
| url |
VCID-wcas-mvba-4bd3 |
| vulnerability_id |
VCID-wcas-mvba-4bd3 |
| summary |
Use after free in PrivateAI in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5874 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10393 |
| published_at |
2026-04-09T12:55:00Z |
|
| 1 |
| value |
0.00068 |
| scoring_system |
epss |
| scoring_elements |
0.20886 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.00068 |
| scoring_system |
epss |
| scoring_elements |
0.2093 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00068 |
| scoring_system |
epss |
| scoring_elements |
0.20835 |
| published_at |
2026-04-13T12:55:00Z |
|
| 4 |
| value |
0.00118 |
| scoring_system |
epss |
| scoring_elements |
0.30584 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00118 |
| scoring_system |
epss |
| scoring_elements |
0.30636 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00118 |
| scoring_system |
epss |
| scoring_elements |
0.30618 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5874 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5874
|
| risk_score |
4.3 |
| exploitability |
0.5 |
| weighted_severity |
8.6 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-wcas-mvba-4bd3 |
|
| 55 |
| url |
VCID-wsx4-jwca-7fh7 |
| vulnerability_id |
VCID-wsx4-jwca-7fh7 |
| summary |
Type Confusion in V8 in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5871 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11334 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11391 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11397 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11363 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.00104 |
| scoring_system |
epss |
| scoring_elements |
0.28254 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00104 |
| scoring_system |
epss |
| scoring_elements |
0.28321 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00104 |
| scoring_system |
epss |
| scoring_elements |
0.283 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5871 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5871
|
| risk_score |
4.3 |
| exploitability |
0.5 |
| weighted_severity |
8.6 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-wsx4-jwca-7fh7 |
|
| 56 |
| url |
VCID-xtzf-12qm-y3e5 |
| vulnerability_id |
VCID-xtzf-12qm-y3e5 |
| summary |
Heap buffer overflow in WebML in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: High) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5867 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.0813 |
| published_at |
2026-04-16T12:55:00Z |
|
| 1 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.0828 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.00029 |
| scoring_system |
epss |
| scoring_elements |
0.08116 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.0003 |
| scoring_system |
epss |
| scoring_elements |
0.08481 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.00054 |
| scoring_system |
epss |
| scoring_elements |
0.1703 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
0.00054 |
| scoring_system |
epss |
| scoring_elements |
0.16984 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.00054 |
| scoring_system |
epss |
| scoring_elements |
0.16924 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5867 |
|
| 2 |
|
| 3 |
|
| 4 |
| reference_url |
https://issues.chromium.org/issues/492668885 |
| reference_id |
492668885 |
| reference_type |
|
| scores |
| 0 |
| value |
3.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N |
|
| 1 |
| value |
4.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N |
|
| 2 |
| value |
6.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L |
|
| 3 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-13T13:44:15Z/ |
|
| 4 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-10T18:44:31Z/ |
|
|
| url |
https://issues.chromium.org/issues/492668885 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5867
|
| risk_score |
3.0 |
| exploitability |
0.5 |
| weighted_severity |
5.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-xtzf-12qm-y3e5 |
|
| 57 |
| url |
VCID-xz23-yr7q-1fgq |
| vulnerability_id |
VCID-xz23-yr7q-1fgq |
| summary |
Incorrect security UI in Omnibox in Google Chrome on iOS prior to 147.0.7727.55 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted domain name. (Chromium security severity: Low) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5895 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10393 |
| published_at |
2026-04-09T12:55:00Z |
|
| 1 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10421 |
| published_at |
2026-04-11T12:55:00Z |
|
| 2 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10382 |
| published_at |
2026-04-12T12:55:00Z |
|
| 3 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.1036 |
| published_at |
2026-04-13T12:55:00Z |
|
| 4 |
| value |
0.00067 |
| scoring_system |
epss |
| scoring_elements |
0.20779 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00067 |
| scoring_system |
epss |
| scoring_elements |
0.20802 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00067 |
| scoring_system |
epss |
| scoring_elements |
0.20794 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5895 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5895
|
| risk_score |
1.9 |
| exploitability |
0.5 |
| weighted_severity |
3.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-xz23-yr7q-1fgq |
|
| 58 |
| url |
VCID-y6r7-wj7c-p3bn |
| vulnerability_id |
VCID-y6r7-wj7c-p3bn |
| summary |
Insufficient policy enforcement in browser UI in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5891 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09357 |
| published_at |
2026-04-09T12:55:00Z |
|
| 1 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09366 |
| published_at |
2026-04-11T12:55:00Z |
|
| 2 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09338 |
| published_at |
2026-04-12T12:55:00Z |
|
| 3 |
| value |
0.00032 |
| scoring_system |
epss |
| scoring_elements |
0.09325 |
| published_at |
2026-04-13T12:55:00Z |
|
| 4 |
| value |
0.00054 |
| scoring_system |
epss |
| scoring_elements |
0.16831 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00054 |
| scoring_system |
epss |
| scoring_elements |
0.16794 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00054 |
| scoring_system |
epss |
| scoring_elements |
0.16799 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5891 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5891
|
| risk_score |
1.9 |
| exploitability |
0.5 |
| weighted_severity |
3.7 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-y6r7-wj7c-p3bn |
|
| 59 |
| url |
VCID-z2gp-g2h2-x3bm |
| vulnerability_id |
VCID-z2gp-g2h2-x3bm |
| summary |
Insufficient validation of untrusted input in Downloads in Google Chrome on Windows prior to 147.0.7727.55 allowed a remote attacker to bypass download restrictions via a crafted HTML page. (Chromium security severity: Medium) |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5887 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00021 |
| scoring_system |
epss |
| scoring_elements |
0.05561 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00021 |
| scoring_system |
epss |
| scoring_elements |
0.05608 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.00021 |
| scoring_system |
epss |
| scoring_elements |
0.0558 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00021 |
| scoring_system |
epss |
| scoring_elements |
0.05568 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10283 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10179 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00035 |
| scoring_system |
epss |
| scoring_elements |
0.10152 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-5887 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| url |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| purl |
pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1sea-z3vg-wfc4 |
|
| 1 |
| vulnerability |
VCID-212t-kjka-pbe4 |
|
| 2 |
| vulnerability |
VCID-3c8j-6wcw-83ax |
|
| 3 |
| vulnerability |
VCID-47az-428z-bkar |
|
| 4 |
| vulnerability |
VCID-7x3z-8d6t-vfen |
|
| 5 |
| vulnerability |
VCID-8j9g-6zs1-13am |
|
| 6 |
| vulnerability |
VCID-97y1-b8j2-xfb5 |
|
| 7 |
| vulnerability |
VCID-9amk-6z38-qbb1 |
|
| 8 |
| vulnerability |
VCID-9h91-43nj-7qgy |
|
| 9 |
| vulnerability |
VCID-dzf3-492x-budu |
|
| 10 |
| vulnerability |
VCID-erxp-a8pr-zyff |
|
| 11 |
| vulnerability |
VCID-fk6m-8k4f-hyhz |
|
| 12 |
| vulnerability |
VCID-hyew-s4ya-43bv |
|
| 13 |
| vulnerability |
VCID-jd9x-rsee-ekfk |
|
| 14 |
| vulnerability |
VCID-jku3-pwsy-bufq |
|
| 15 |
| vulnerability |
VCID-jqs4-fgj9-63g7 |
|
| 16 |
| vulnerability |
VCID-k82r-r6dh-qfem |
|
| 17 |
| vulnerability |
VCID-mjv9-578z-3kej |
|
| 18 |
| vulnerability |
VCID-mp8f-94vu-jyf9 |
|
| 19 |
| vulnerability |
VCID-my86-8n81-y3hd |
|
| 20 |
| vulnerability |
VCID-ndkj-5v64-cfa9 |
|
| 21 |
| vulnerability |
VCID-p4dd-y4mm-fqam |
|
| 22 |
| vulnerability |
VCID-q17c-ud54-5ydd |
|
| 23 |
| vulnerability |
VCID-qrwz-k5dg-27b2 |
|
| 24 |
| vulnerability |
VCID-thk2-w3k4-jfep |
|
| 25 |
| vulnerability |
VCID-uded-9de1-xkdj |
|
| 26 |
| vulnerability |
VCID-usvm-2xea-ffd6 |
|
| 27 |
| vulnerability |
VCID-uyu5-b3md-37cm |
|
| 28 |
| vulnerability |
VCID-x1xm-1qpa-u7c1 |
|
| 29 |
| vulnerability |
VCID-x688-21pv-7yf8 |
|
| 30 |
| vulnerability |
VCID-ywwf-hc75-nbdm |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie |
|
| 5 |
|
|
| aliases |
CVE-2026-5887
|
| risk_score |
1.9 |
| exploitability |
0.5 |
| weighted_severity |
3.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-z2gp-g2h2-x3bm |
|