CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 4 hours ago•5 views

CVE-2026-10944

6.5CVSS5.5AI score0.00035EPSS

RedhatCVE•added 4 hours ago•5 views

CVE-2026-10951

Use after free in Autofill in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.5AI score0.00035EPSS

OSV•added yesterday•3 views

RLSA-2026:22325 Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: Incorrect boundary conditions in the JavaScript Engine: JIT component CVE-2026-8388 firefox: Other issue in the JavaScript Engine component CVE-2026-8391 firefox: Sandbox escape in the Profile Backup component...

7.5CVSS5.5AI score0.00164EPSS

Exploits0References20

SUSE Linux•added yesterday•3 views

Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issues Updated to Mozilla Thunderbird 140.11 bsc1265212 MFSA 2026-44: CVE-2026-8090: Use-after-free in the DOM: Networking component. CVE-2026-8092: Memory safety bugs fixed in Thunderbird ESR 140.10.2 and Thunderbird 150.0.2. CVE-2026-8094:...

8.8CVSS5.5AI score0.00164EPSS

Exploits0References48

EUVD•added yesterday•7 views

EUVD-2026-34752

Inappropriate implementation in Android Autofill in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00016EPSS

EUVD•added yesterday•3 views

EUVD-2026-34726

Inappropriate implementation in Autofill in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

EUVD-2026-34668

Insufficient validation of untrusted input in Autofill in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via malicious network traffic. Chromium security severity: Medium...

5.8AI score0.00047EPSS

EUVD-2026-34592

Use after free in Autofill in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

EUVD•added yesterday•3 views

EUVD-2026-34596

Insufficient policy enforcement in Autofill in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass discretionary access control via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00016EPSS

EUVD-2026-34451

Use after free in Autofill in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

EUVD-2026-34400

EUVD-2026-34393

EUVD-2026-34399

8.3CVSS5.8AI score0.00068EPSS

EUVD-2026-34383

OSV•added yesterday•3 views

DEBIAN-CVE-2026-11291

4.3CVSS5.5AI score0.00016EPSS

NVD•added yesterday•5 views

CVE-2026-11291

4.3CVSS0.00016EPSS

Exploits0References2

OSV•added yesterday•2 views

DEBIAN-CVE-2026-11265

Inappropriate implementation in Autofill in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

7.5CVSS5.5AI score0.00035EPSS