CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 21 hours ago•10 views

CVE-2026-10958

Use after free in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.0008EPSS

RedhatCVE•added 21 hours ago•8 views

CVE-2026-11202

Inappropriate implementation in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS5.5AI score0.00047EPSS

RedhatCVE•added 21 hours ago•8 views

CVE-2026-11214

Inappropriate implementation in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.5AI score0.00035EPSS

EUVD•added yesterday•5 views

EUVD-2026-34741

Inappropriate implementation in Signin in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00047EPSS

EUVD•added yesterday•6 views

EUVD-2026-34746

Inappropriate implementation in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00035EPSS

EUVD•added yesterday•3 views

EUVD-2026-34675

5.8AI score0.00035EPSS

Tenable Nessus•added yesterday•3 views

Linux Distros Unpatched Vulnerability : CVE-2026-10885

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a crafted HTML page...

8.8CVSS6.2AI score0.0008EPSS

NVD•added 2 days ago•4 views

CVE-2026-10950

Insufficient policy enforcement in Autofill in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

6.5CVSS0.00035EPSS

OSV•added 2 days ago•2 views

DEBIAN-CVE-2026-10950

6.5CVSS5.5AI score0.00035EPSS

NVD•added 2 days ago•3 views

CVE-2026-10885

Use after free in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Critical...

8.8CVSS0.0008EPSS

ATTACKERKB•added 2 days ago•6 views

CVE-2026-11298

Inappropriate implementation in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.5AI score0.00016EPSS

Exploits0References3Affected Software1

Cvelist•added 2 days ago•33 views

CVE-2026-11285

0.00035EPSS

Cvelist•added 2 days ago•22 views

CVE-2026-11205

Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scripts or HTML UXSS via a crafted QR code. Chromium security severity: Medium...

0.00073EPSS

Debian CVE•added 2 days ago•5 views

CVE-2026-11202

8.8CVSS5.5AI score0.00047EPSS

Exploits0

Cvelist•added 2 days ago•24 views

CVE-2026-11202

0.00047EPSS

Debian CVE•added 2 days ago•3 views

CVE-2026-10961

Use after free in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS5.5AI score0.00068EPSS

Exploits0

Debian CVE•added 2026/05/14 7:52 p.m.•6 views

CVE-2026-8585

Inappropriate implementation in Media in Google Chrome on iOS prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory read via a crafted HTML page. Chromium security severity: Medium...

7.5CVSS5.8AI score0.00096EPSS

Exploits0

Positive Technologies•added 2026/05/14 12:0 a.m.•5 views

PT-2026-41113

Name of the Vulnerable Software and Affected Versions Google Chrome on iOS versions prior to 148.0.7778.168 Description An inappropriate implementation in Views allows a remote attacker who has compromised the renderer process to perform UI spoofing using a crafted HTML page. UI spoofing is a...

8.8CVSS5.9AI score0.00139EPSS

Exploits0References86

CNNVD•added 2026/04/07 12:0 a.m.•4 views

Google Chrome for iOS 安全漏洞

Google Chrome for iOS is a web browser based on the iOS platform developed by Google Inc. Versions of Google Chrome for iOS prior to 147.0.7727.55 contained a security vulnerability. This vulnerability stemmed from incorrect Omnibox security UI behavior, which could allow remote attackers to...

4.3CVSS7.3AI score0.00029EPSS