Lucene search
K

1260 matches found

NVD
NVD
added 2026/06/04 11:16 p.m.6 views

CVE-2026-10890

Use after free in Cast in Google Chrome prior to 149.0.7827.53 allowed an attacker on the local network segment to potentially exploit heap corruption via malicious network traffic. Chromium security severity: Critical...

8.8CVSS0.00183EPSS
Exploits0References2
OSV
OSV
added 2026/06/04 11:16 p.m.6 views

DEBIAN-CVE-2026-10888

Use after free in Cast Streaming in Google Chrome prior to 149.0.7827.53 allowed an attacker on the local network segment to execute arbitrary code via malicious network traffic. Chromium security severity: Critical...

8.8CVSS6AI score0.00187EPSS
Exploits0References1
OSV
OSV
added 2026/06/04 11:16 p.m.4 views

DEBIAN-CVE-2026-10890

Use after free in Cast in Google Chrome prior to 149.0.7827.53 allowed an attacker on the local network segment to potentially exploit heap corruption via malicious network traffic. Chromium security severity: Critical...

8.8CVSS5.5AI score0.00183EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/04 11:6 p.m.38 views

CVE-2026-11276

Inappropriate implementation in Cast in Google Chrome prior to 149.0.7827.53 allowed an attacker on the local network segment to bypass discretionary access control via malicious network traffic. Chromium security severity: Low...

0.0008EPSS
Exploits0References2
CVE
CVE
added 2026/06/04 11:6 p.m.27 views

CVE-2026-11276

CVE-2026-11276 concerns Google Chrome (Cast) with an inappropriate implementation allowing a local-network attacker to bypass discretionary access control through malicious traffic, prior to version 149.0.7827.53. Public references in NVD/EUVD/CVEs reiterate the same underlying issue and confirm ...

5.1CVSS5.8AI score0.0008EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/04 11:6 p.m.8 views

CVE-2026-11276

Inappropriate implementation in Cast in Google Chrome prior to 149.0.7827.53 allowed an attacker on the local network segment to bypass discretionary access control via malicious network traffic. Chromium security severity: Low...

5.1CVSS5.8AI score0.0008EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/04 11:6 p.m.7 views

CVE-2026-11276

Inappropriate implementation in Cast in Google Chrome prior to 149.0.7827.53 allowed an attacker on the local network segment to bypass discretionary access control via malicious network traffic. Chromium security severity: Low...

5.8AI score0.0008EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/06/04 11:6 p.m.7 views

CVE-2026-11276

Inappropriate implementation in Cast in Google Chrome prior to 149.0.7827.53 allowed an attacker on the local network segment to bypass discretionary access control via malicious network traffic. Chromium security severity: Low...

5.1CVSS5.5AI score0.0008EPSS
Exploits0
Cvelist
Cvelist
added 2026/06/04 11:6 p.m.37 views

CVE-2026-11259

Insufficient validation of untrusted input in Cast in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: Low...

0.00182EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/04 11:6 p.m.5 views

CVE-2026-11259

Insufficient validation of untrusted input in Cast in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.5AI score0.00182EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/04 11:6 p.m.6 views

CVE-2026-11259

Insufficient validation of untrusted input in Cast in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: Low...

5.5AI score0.00182EPSS
Exploits0References2
CVE
CVE
added 2026/06/04 11:6 p.m.20 views

CVE-2026-11259

CVE-2026-11259 : In Google Chrome, the Cast feature allowed a remote attacker to bypass the same-origin policy due to insufficient validation of untrusted input. This affects Chrome versions prior to 149.0.7827.53. The issue is limited to a policy bypass and is described with a Low severity in Ch...

4.3CVSS5.8AI score0.00182EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2026/06/04 11:6 p.m.8 views

CVE-2026-11259

Insufficient validation of untrusted input in Cast in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.5AI score0.00182EPSS
Exploits0
Cvelist
Cvelist
added 2026/06/04 11:5 p.m.36 views

CVE-2026-11241

Insufficient validation of untrusted input in Cast in Google Chrome prior to 149.0.7827.53 allowed an attacker on the local network segment to perform privilege escalation via a crafted HTML page. Chromium security severity: Low...

0.00112EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/04 11:5 p.m.6 views

CVE-2026-11241

Insufficient validation of untrusted input in Cast in Google Chrome prior to 149.0.7827.53 allowed an attacker on the local network segment to perform privilege escalation via a crafted HTML page. Chromium security severity: Low...

8CVSS5.8AI score0.00112EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/06/04 11:5 p.m.18 views

CVE-2026-11241

Affected product: Google Chrome (Cast feature). Vulnerability: insufficient validation of untrusted input in Chrome prior to 149.0.7827.53 could allow privilege escalation. Root cause: untrusted HTML crafted page enabling local network attacker to escalate privileges. Impact: described as privile...

8CVSS5.8AI score0.00112EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/04 11:5 p.m.8 views

CVE-2026-11241

Insufficient validation of untrusted input in Cast in Google Chrome prior to 149.0.7827.53 allowed an attacker on the local network segment to perform privilege escalation via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00112EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/04 11:4 p.m.30 views

CVE-2026-11077

Bad cast in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

0.0028EPSS
Exploits0References2
CVE
CVE
added 2026/06/04 11:4 p.m.19 views

CVE-2026-11077

CVE-2026-11077 affects Google Chrome (Dawn) and is caused by a bad cast in Dawn that allows a remote attacker to execute arbitrary code inside Chrome’s sandbox via a crafted HTML page. Affected version range is before 149.0.7827.53; the vulnerability is fixed in that release. The CVSS/metrics ind...

8.8CVSS6.2AI score0.0028EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/06/04 11:4 p.m.26 views

CVE-2026-11069

Insufficient validation of untrusted input in Cast in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: Medium...

0.00209EPSS
Exploits0References2
Rows per page
Query Builder