Vulnerability-Lookup

OPENSUSE-SU-2026:20277-1

Vulnerability from csaf_opensuse - Published: 2026-02-26 11:50 - Updated: 2026-02-26 11:50

Summary

Security update for chromium

Notes

Title of the patch

Security update for chromium

Description of the patch

This update for chromium fixes the following issues: Changes in chromium: - Chromium 145.0.7632.116 (boo#1258733): * CVE-2026-3061: Out of bounds read in Media * CVE-2026-3062: Out of bounds read and write in Tint * CVE-2025-3063: Inappropriate implementation in DevTools

Patchnames

openSUSE-Leap-16.0-packagehub-142

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for chromium",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for chromium fixes the following issues:\n\nChanges in chromium:\n\n- Chromium 145.0.7632.116 (boo#1258733):\n  * CVE-2026-3061: Out of bounds read in Media\n  * CVE-2026-3062: Out of bounds read and write in Tint\n  * CVE-2025-3063: Inappropriate implementation in DevTools\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Leap-16.0-packagehub-142",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_20277-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1258733",
        "url": "https://bugzilla.suse.com/1258733"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2025-3063 page",
        "url": "https://www.suse.com/security/cve/CVE-2025-3063/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-3061 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-3061/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-3062 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-3062/"
      }
    ],
    "title": "Security update for chromium",
    "tracking": {
      "current_release_date": "2026-02-26T11:50:46Z",
      "generator": {
        "date": "2026-02-26T11:50:46Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2026:20277-1",
      "initial_release_date": "2026-02-26T11:50:46Z",
      "revision_history": [
        {
          "date": "2026-02-26T11:50:46Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "chromedriver-145.0.7632.116-bp160.1.1.aarch64",
                "product": {
                  "name": "chromedriver-145.0.7632.116-bp160.1.1.aarch64",
                  "product_id": "chromedriver-145.0.7632.116-bp160.1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "chromium-145.0.7632.116-bp160.1.1.aarch64",
                "product": {
                  "name": "chromium-145.0.7632.116-bp160.1.1.aarch64",
                  "product_id": "chromium-145.0.7632.116-bp160.1.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "chromedriver-145.0.7632.116-bp160.1.1.ppc64le",
                "product": {
                  "name": "chromedriver-145.0.7632.116-bp160.1.1.ppc64le",
                  "product_id": "chromedriver-145.0.7632.116-bp160.1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "chromium-145.0.7632.116-bp160.1.1.ppc64le",
                "product": {
                  "name": "chromium-145.0.7632.116-bp160.1.1.ppc64le",
                  "product_id": "chromium-145.0.7632.116-bp160.1.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "chromedriver-145.0.7632.116-bp160.1.1.x86_64",
                "product": {
                  "name": "chromedriver-145.0.7632.116-bp160.1.1.x86_64",
                  "product_id": "chromedriver-145.0.7632.116-bp160.1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "chromium-145.0.7632.116-bp160.1.1.x86_64",
                "product": {
                  "name": "chromium-145.0.7632.116-bp160.1.1.x86_64",
                  "product_id": "chromium-145.0.7632.116-bp160.1.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Leap 16.0",
                "product": {
                  "name": "openSUSE Leap 16.0",
                  "product_id": "openSUSE Leap 16.0"
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "chromedriver-145.0.7632.116-bp160.1.1.aarch64 as component of openSUSE Leap 16.0",
          "product_id": "openSUSE Leap 16.0:chromedriver-145.0.7632.116-bp160.1.1.aarch64"
        },
        "product_reference": "chromedriver-145.0.7632.116-bp160.1.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 16.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "chromedriver-145.0.7632.116-bp160.1.1.ppc64le as component of openSUSE Leap 16.0",
          "product_id": "openSUSE Leap 16.0:chromedriver-145.0.7632.116-bp160.1.1.ppc64le"
        },
        "product_reference": "chromedriver-145.0.7632.116-bp160.1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 16.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "chromedriver-145.0.7632.116-bp160.1.1.x86_64 as component of openSUSE Leap 16.0",
          "product_id": "openSUSE Leap 16.0:chromedriver-145.0.7632.116-bp160.1.1.x86_64"
        },
        "product_reference": "chromedriver-145.0.7632.116-bp160.1.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 16.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "chromium-145.0.7632.116-bp160.1.1.aarch64 as component of openSUSE Leap 16.0",
          "product_id": "openSUSE Leap 16.0:chromium-145.0.7632.116-bp160.1.1.aarch64"
        },
        "product_reference": "chromium-145.0.7632.116-bp160.1.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 16.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "chromium-145.0.7632.116-bp160.1.1.ppc64le as component of openSUSE Leap 16.0",
          "product_id": "openSUSE Leap 16.0:chromium-145.0.7632.116-bp160.1.1.ppc64le"
        },
        "product_reference": "chromium-145.0.7632.116-bp160.1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Leap 16.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "chromium-145.0.7632.116-bp160.1.1.x86_64 as component of openSUSE Leap 16.0",
          "product_id": "openSUSE Leap 16.0:chromium-145.0.7632.116-bp160.1.1.x86_64"
        },
        "product_reference": "chromium-145.0.7632.116-bp160.1.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 16.0"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-3063",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2025-3063"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The Shopper Approved Reviews plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the ajax_callback_update_sa_option() function in versions 2.0 to 2.1. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update arbitrary options on the WordPress site. This can be leveraged to update the default role for registration to administrator and enable user registration for attackers to gain administrative user access to a vulnerable site.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 16.0:chromedriver-145.0.7632.116-bp160.1.1.aarch64",
          "openSUSE Leap 16.0:chromedriver-145.0.7632.116-bp160.1.1.ppc64le",
          "openSUSE Leap 16.0:chromedriver-145.0.7632.116-bp160.1.1.x86_64",
          "openSUSE Leap 16.0:chromium-145.0.7632.116-bp160.1.1.aarch64",
          "openSUSE Leap 16.0:chromium-145.0.7632.116-bp160.1.1.ppc64le",
          "openSUSE Leap 16.0:chromium-145.0.7632.116-bp160.1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2025-3063",
          "url": "https://www.suse.com/security/cve/CVE-2025-3063"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 16.0:chromedriver-145.0.7632.116-bp160.1.1.aarch64",
            "openSUSE Leap 16.0:chromedriver-145.0.7632.116-bp160.1.1.ppc64le",
            "openSUSE Leap 16.0:chromedriver-145.0.7632.116-bp160.1.1.x86_64",
            "openSUSE Leap 16.0:chromium-145.0.7632.116-bp160.1.1.aarch64",
            "openSUSE Leap 16.0:chromium-145.0.7632.116-bp160.1.1.ppc64le",
            "openSUSE Leap 16.0:chromium-145.0.7632.116-bp160.1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-02-26T11:50:46Z",
          "details": "important"
        }
      ],
      "title": "CVE-2025-3063"
    },
    {
      "cve": "CVE-2026-3061",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-3061"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Out of bounds read in Media in Google Chrome prior to 145.0.7632.116 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 16.0:chromedriver-145.0.7632.116-bp160.1.1.aarch64",
          "openSUSE Leap 16.0:chromedriver-145.0.7632.116-bp160.1.1.ppc64le",
          "openSUSE Leap 16.0:chromedriver-145.0.7632.116-bp160.1.1.x86_64",
          "openSUSE Leap 16.0:chromium-145.0.7632.116-bp160.1.1.aarch64",
          "openSUSE Leap 16.0:chromium-145.0.7632.116-bp160.1.1.ppc64le",
          "openSUSE Leap 16.0:chromium-145.0.7632.116-bp160.1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-3061",
          "url": "https://www.suse.com/security/cve/CVE-2026-3061"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1258733 for CVE-2026-3061",
          "url": "https://bugzilla.suse.com/1258733"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 16.0:chromedriver-145.0.7632.116-bp160.1.1.aarch64",
            "openSUSE Leap 16.0:chromedriver-145.0.7632.116-bp160.1.1.ppc64le",
            "openSUSE Leap 16.0:chromedriver-145.0.7632.116-bp160.1.1.x86_64",
            "openSUSE Leap 16.0:chromium-145.0.7632.116-bp160.1.1.aarch64",
            "openSUSE Leap 16.0:chromium-145.0.7632.116-bp160.1.1.ppc64le",
            "openSUSE Leap 16.0:chromium-145.0.7632.116-bp160.1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.1,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 16.0:chromedriver-145.0.7632.116-bp160.1.1.aarch64",
            "openSUSE Leap 16.0:chromedriver-145.0.7632.116-bp160.1.1.ppc64le",
            "openSUSE Leap 16.0:chromedriver-145.0.7632.116-bp160.1.1.x86_64",
            "openSUSE Leap 16.0:chromium-145.0.7632.116-bp160.1.1.aarch64",
            "openSUSE Leap 16.0:chromium-145.0.7632.116-bp160.1.1.ppc64le",
            "openSUSE Leap 16.0:chromium-145.0.7632.116-bp160.1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-02-26T11:50:46Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2026-3061"
    },
    {
      "cve": "CVE-2026-3062",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-3062"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Out of bounds read and write in Tint in Google Chrome on Mac prior to 145.0.7632.116 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 16.0:chromedriver-145.0.7632.116-bp160.1.1.aarch64",
          "openSUSE Leap 16.0:chromedriver-145.0.7632.116-bp160.1.1.ppc64le",
          "openSUSE Leap 16.0:chromedriver-145.0.7632.116-bp160.1.1.x86_64",
          "openSUSE Leap 16.0:chromium-145.0.7632.116-bp160.1.1.aarch64",
          "openSUSE Leap 16.0:chromium-145.0.7632.116-bp160.1.1.ppc64le",
          "openSUSE Leap 16.0:chromium-145.0.7632.116-bp160.1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-3062",
          "url": "https://www.suse.com/security/cve/CVE-2026-3062"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1258733 for CVE-2026-3062",
          "url": "https://bugzilla.suse.com/1258733"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 16.0:chromedriver-145.0.7632.116-bp160.1.1.aarch64",
            "openSUSE Leap 16.0:chromedriver-145.0.7632.116-bp160.1.1.ppc64le",
            "openSUSE Leap 16.0:chromedriver-145.0.7632.116-bp160.1.1.x86_64",
            "openSUSE Leap 16.0:chromium-145.0.7632.116-bp160.1.1.aarch64",
            "openSUSE Leap 16.0:chromium-145.0.7632.116-bp160.1.1.ppc64le",
            "openSUSE Leap 16.0:chromium-145.0.7632.116-bp160.1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 16.0:chromedriver-145.0.7632.116-bp160.1.1.aarch64",
            "openSUSE Leap 16.0:chromedriver-145.0.7632.116-bp160.1.1.ppc64le",
            "openSUSE Leap 16.0:chromedriver-145.0.7632.116-bp160.1.1.x86_64",
            "openSUSE Leap 16.0:chromium-145.0.7632.116-bp160.1.1.aarch64",
            "openSUSE Leap 16.0:chromium-145.0.7632.116-bp160.1.1.ppc64le",
            "openSUSE Leap 16.0:chromium-145.0.7632.116-bp160.1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-02-26T11:50:46Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2026-3062"
    }
  ]
}

CVE-2025-3063 (GCVE-0-2025-3063)

Vulnerability from cvelistv5 – Published: 2025-04-02 09:21 – Updated: 2025-04-02 14:03

Title

Shopper Approved Reviews 2.0 - 2.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Options Update

Summary

The Shopper Approved Reviews plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the ajax_callback_update_sa_option() function in versions 2.0 to 2.1. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update arbitrary options on the WordPress site. This can be leveraged to update the default role for registration to administrator and enable user registration for attackers to gain administrative user access to a vulnerable site.

Severity ?

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE

CWE-862 - Missing Authorization

Assigner

Wordfence

References

URL

Tags

	https://www.wordfence.com/threat-intel/vulnerabil…
	https://plugins.trac.wordpress.org/browser/shoppe…

Impacted products

	Vendor	Product	Version
	shopperapprovedapp	Shopper Approved Reviews	Affected: 2.0 , ≤ 2.1 (semver)

Credits

Kenneth Dunn

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-3063",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-04-02T14:00:55.342633Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-04-02T14:03:20.932Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Shopper Approved Reviews",
          "vendor": "shopperapprovedapp",
          "versions": [
            {
              "lessThanOrEqual": "2.1",
              "status": "affected",
              "version": "2.0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "Kenneth Dunn"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "The Shopper Approved Reviews plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the ajax_callback_update_sa_option() function in versions 2.0 to 2.1. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update arbitrary options on the WordPress site. This can be leveraged to update the default role for registration to administrator and enable user registration for attackers to gain administrative user access to a vulnerable site."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-862",
              "description": "CWE-862 Missing Authorization",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-04-02T09:21:45.582Z",
        "orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599",
        "shortName": "Wordfence"
      },
      "references": [
        {
          "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/c042b347-2884-436d-abd3-6931548f18d6?source=cve"
        },
        {
          "url": "https://plugins.trac.wordpress.org/browser/shopperapproved-reviews/trunk/shopperapproved.php#L154"
        }
      ],
      "timeline": [
        {
          "lang": "en",
          "time": "2025-04-01T20:28:58.000Z",
          "value": "Disclosed"
        }
      ],
      "title": "Shopper Approved Reviews 2.0 - 2.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Options Update"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599",
    "assignerShortName": "Wordfence",
    "cveId": "CVE-2025-3063",
    "datePublished": "2025-04-02T09:21:45.582Z",
    "dateReserved": "2025-03-31T22:22:17.046Z",
    "dateUpdated": "2025-04-02T14:03:20.932Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2026-3061 (GCVE-0-2026-3061)

Vulnerability from cvelistv5 – Published: 2026-02-23 22:17 – Updated: 2026-02-26 14:44

Summary

Out of bounds read in Media in Google Chrome prior to 145.0.7632.116 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)

Severity ?

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE

CWE-125 - Out of bounds read

Assigner

Chrome

References

URL

Tags

	https://chromereleases.googleblog.com/2026/02/sta…
	https://issues.chromium.org/issues/482862710

Impacted products

	Vendor	Product	Version
	Google	Chrome	Affected: 145.0.7632.116 , < 145.0.7632.116 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 8.8,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "REQUIRED",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2026-3061",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-02-25T04:55:32.928056Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-125",
                "description": "CWE-125 Out-of-bounds Read",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-02-26T14:44:10.813Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Chrome",
          "vendor": "Google",
          "versions": [
            {
              "lessThan": "145.0.7632.116",
              "status": "affected",
              "version": "145.0.7632.116",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Out of bounds read in Media in Google Chrome prior to 145.0.7632.116 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-125",
              "description": "Out of bounds read",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-02-23T22:17:17.394Z",
        "orgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
        "shortName": "Chrome"
      },
      "references": [
        {
          "url": "https://chromereleases.googleblog.com/2026/02/stable-channel-update-for-desktop_23.html"
        },
        {
          "url": "https://issues.chromium.org/issues/482862710"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
    "assignerShortName": "Chrome",
    "cveId": "CVE-2026-3061",
    "datePublished": "2026-02-23T22:17:17.394Z",
    "dateReserved": "2026-02-23T18:41:53.196Z",
    "dateUpdated": "2026-02-26T14:44:10.813Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-3062 (GCVE-0-2026-3062)

Vulnerability from cvelistv5 – Published: 2026-02-23 22:17 – Updated: 2026-02-26 14:44

Summary

Out of bounds read and write in Tint in Google Chrome on Mac prior to 145.0.7632.116 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)

Severity ?

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE

Out of bounds read and write

Assigner

Chrome

References

URL

Tags

	https://chromereleases.googleblog.com/2026/02/sta…
	https://issues.chromium.org/issues/483751167

Impacted products

	Vendor	Product	Version
	Google	Chrome	Affected: 145.0.7632.116 , < 145.0.7632.116 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 8.8,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "REQUIRED",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2026-3062",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-02-25T04:55:31.844397Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-125",
                "description": "CWE-125 Out-of-bounds Read",
                "lang": "en",
                "type": "CWE"
              }
            ]
          },
          {
            "descriptions": [
              {
                "cweId": "CWE-787",
                "description": "CWE-787 Out-of-bounds Write",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-02-26T14:44:10.668Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Chrome",
          "vendor": "Google",
          "versions": [
            {
              "lessThan": "145.0.7632.116",
              "status": "affected",
              "version": "145.0.7632.116",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Out of bounds read and write in Tint in Google Chrome on Mac prior to 145.0.7632.116 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Out of bounds read and write",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-02-23T22:17:18.843Z",
        "orgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
        "shortName": "Chrome"
      },
      "references": [
        {
          "url": "https://chromereleases.googleblog.com/2026/02/stable-channel-update-for-desktop_23.html"
        },
        {
          "url": "https://issues.chromium.org/issues/483751167"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
    "assignerShortName": "Chrome",
    "cveId": "CVE-2026-3062",
    "datePublished": "2026-02-23T22:17:18.843Z",
    "dateReserved": "2026-02-23T18:41:53.536Z",
    "dateUpdated": "2026-02-26T14:44:10.668Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

OPENSUSE-SU-2026:20277-1

CVE-2025-3063 (GCVE-0-2025-3063)

CVE-2026-3061 (GCVE-0-2026-3061)

CVE-2026-3062 (GCVE-0-2026-3062)

Tags

Sightings

Nomenclature