CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

9.6CVSS5.5AI score0.00233EPSS

DEBIAN-CVE-2026-11029

Insufficient validation of untrusted input in Drag and Drop in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

NVD•added 2026/06/04 11:17 p.m.•9 views

CVE-2026-11025

Insufficient policy enforcement in Navigation in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to bypass content security policy via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.00272EPSS

NVD•added 2026/06/04 11:17 p.m.•9 views

CVE-2026-11029

9.6CVSS0.00233EPSS

6.5CVSS5.5AI score0.00272EPSS

DEBIAN-CVE-2026-11025

NVD•added 2026/06/04 11:17 p.m.•4 views

CVE-2026-11012

Use after free in Serial in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

8.3CVSS0.00278EPSS

NVD•added 2026/06/04 11:17 p.m.•7 views

CVE-2026-11019

Inappropriate implementation in Payments in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to perform domain spoofing via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.00254EPSS

6.5CVSS5.5AI score0.00254EPSS

DEBIAN-CVE-2026-11019

OSV•added 2026/06/04 11:17 p.m.•2 views

DEBIAN-CVE-2026-11012

8.3CVSS5.5AI score0.00278EPSS

NVD•added 2026/06/04 11:17 p.m.•6 views

CVE-2026-11010

Use after free in WebShare in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

8.3CVSS0.00278EPSS

NVD•added 2026/06/04 11:17 p.m.•4 views

CVE-2026-11007

Insufficient validation of untrusted input in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.00299EPSS

8.3CVSS5.5AI score0.00278EPSS

DEBIAN-CVE-2026-11010

6.5CVSS5.5AI score0.00299EPSS

DEBIAN-CVE-2026-11007

NVD•added 2026/06/04 11:17 p.m.•5 views

CVE-2026-10984

Inappropriate implementation in Accessibility in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: High...

5.4CVSS0.00227EPSS

OSV•added 2026/06/04 11:17 p.m.•5 views

DEBIAN-CVE-2026-10984

5.4CVSS5.5AI score0.00227EPSS

OSV•added 2026/06/04 11:16 p.m.•3 views

DEBIAN-CVE-2026-10967

Use after free in SurfaceCapture in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS5.5AI score0.0026EPSS

NVD•added 2026/06/04 11:16 p.m.•6 views

CVE-2026-10967

8.3CVSS0.0026EPSS

NVD•added 2026/06/04 11:16 p.m.•4 views

CVE-2026-10959

Use after free in Input in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS0.00351EPSS

OSV•added 2026/06/04 11:16 p.m.•4 views

DEBIAN-CVE-2026-10959

8.8CVSS6AI score0.00351EPSS

NVD•added 2026/06/04 11:16 p.m.•3 views

CVE-2026-10953

Use after free in Core in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS0.00278EPSS