VulnerableCode Package Details - pkg:deb/debian/chromium@135.0.7049.52-1?distro=trixie

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-4a82-wdqx-2ub1	Inappropriate implementation in Custom Tabs in Google Chrome prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)	CVE-2025-3072
VCID-699p-7mfs-2yf5	Inappropriate implementation in Downloads in Google Chrome prior to 135.0.7049.52 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)	CVE-2025-3074
VCID-6fhm-q7k7-n3dw	Inappropriate implementation in Navigations in Google Chrome prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass same origin policy via a crafted HTML page. (Chromium security severity: Low)	CVE-2025-3071
VCID-kj7m-t28f-akce	Inappropriate implementation in Autofill in Google Chrome prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)	CVE-2025-3073
VCID-nku3-ejb7-e7av	Inappropriate implementation in Extensions in Google Chrome prior to 135.0.7049.52 allowed a remote attacker to perform privilege escalation via a crafted HTML page. (Chromium security severity: Medium)	CVE-2025-3069
VCID-rs7n-jww2-k7fa	Inappropriate implementation in Intents in Google Chrome on Android prior to 135.0.7049.52 allowed a remote attacker to perform privilege escalation via a crafted HTML page. (Chromium security severity: Medium)	CVE-2025-3068
VCID-vrrj-pznc-cfdx	Insufficient validation of untrusted input in Extensions in Google Chrome prior to 135.0.7049.52 allowed a remote attacker to perform privilege escalation via a crafted HTML page. (Chromium security severity: Medium)	CVE-2025-3070
VCID-wv9g-rq72-hfct	Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform privilege escalation via a crafted app. (Chromium security severity: Medium)	CVE-2025-3067

Vulnerability

Summary

Aliases

VCID-4a82-wdqx-2ub1

Inappropriate implementation in Custom Tabs in Google Chrome prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)

CVE-2025-3072

VCID-699p-7mfs-2yf5

Inappropriate implementation in Downloads in Google Chrome prior to 135.0.7049.52 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)

CVE-2025-3074

VCID-6fhm-q7k7-n3dw

Inappropriate implementation in Navigations in Google Chrome prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass same origin policy via a crafted HTML page. (Chromium security severity: Low)

CVE-2025-3071

VCID-kj7m-t28f-akce

Inappropriate implementation in Autofill in Google Chrome prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)

CVE-2025-3073

VCID-nku3-ejb7-e7av

Inappropriate implementation in Extensions in Google Chrome prior to 135.0.7049.52 allowed a remote attacker to perform privilege escalation via a crafted HTML page. (Chromium security severity: Medium)

CVE-2025-3069

VCID-rs7n-jww2-k7fa

Inappropriate implementation in Intents in Google Chrome on Android prior to 135.0.7049.52 allowed a remote attacker to perform privilege escalation via a crafted HTML page. (Chromium security severity: Medium)

CVE-2025-3068

VCID-vrrj-pznc-cfdx

Insufficient validation of untrusted input in Extensions in Google Chrome prior to 135.0.7049.52 allowed a remote attacker to perform privilege escalation via a crafted HTML page. (Chromium security severity: Medium)

CVE-2025-3070

VCID-wv9g-rq72-hfct

Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 135.0.7049.52 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform privilege escalation via a crafted app. (Chromium security severity: Medium)

CVE-2025-3067

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-17T22:42:14.480095+00:00	Debian Importer	Fixing	VCID-699p-7mfs-2yf5	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:42:14.349016+00:00	Debian Importer	Fixing	VCID-kj7m-t28f-akce	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:42:14.217574+00:00	Debian Importer	Fixing	VCID-4a82-wdqx-2ub1	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:42:14.085482+00:00	Debian Importer	Fixing	VCID-6fhm-q7k7-n3dw	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:42:13.956194+00:00	Debian Importer	Fixing	VCID-vrrj-pznc-cfdx	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:42:13.833882+00:00	Debian Importer	Fixing	VCID-nku3-ejb7-e7av	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:42:13.709706+00:00	Debian Importer	Fixing	VCID-rs7n-jww2-k7fa	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:42:13.575516+00:00	Debian Importer	Fixing	VCID-wv9g-rq72-hfct	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-12T17:48:48.854648+00:00	Debian Importer	Fixing	VCID-699p-7mfs-2yf5	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-12T17:48:48.767450+00:00	Debian Importer	Fixing	VCID-kj7m-t28f-akce	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-12T17:48:48.681107+00:00	Debian Importer	Fixing	VCID-4a82-wdqx-2ub1	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-12T17:48:48.595061+00:00	Debian Importer	Fixing	VCID-6fhm-q7k7-n3dw	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-12T17:48:48.508401+00:00	Debian Importer	Fixing	VCID-vrrj-pznc-cfdx	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-12T17:48:48.422345+00:00	Debian Importer	Fixing	VCID-nku3-ejb7-e7av	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-12T17:48:48.336448+00:00	Debian Importer	Fixing	VCID-rs7n-jww2-k7fa	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-12T17:48:48.250531+00:00	Debian Importer	Fixing	VCID-wv9g-rq72-hfct	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:21:01.879302+00:00	Debian Importer	Fixing	VCID-699p-7mfs-2yf5	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:21:01.844502+00:00	Debian Importer	Fixing	VCID-kj7m-t28f-akce	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:21:01.813755+00:00	Debian Importer	Fixing	VCID-4a82-wdqx-2ub1	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:21:01.782661+00:00	Debian Importer	Fixing	VCID-6fhm-q7k7-n3dw	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:21:01.752811+00:00	Debian Importer	Fixing	VCID-vrrj-pznc-cfdx	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:21:01.722533+00:00	Debian Importer	Fixing	VCID-nku3-ejb7-e7av	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:21:01.692577+00:00	Debian Importer	Fixing	VCID-rs7n-jww2-k7fa	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:21:01.662204+00:00	Debian Importer	Fixing	VCID-wv9g-rq72-hfct	https://security-tracker.debian.org/tracker/data/json	38.1.0