CVE-2026-11641

Use after free in Bluetooth in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. Chromium security severity: Critical...

CVE-2026-11641

The CVE-2026-11641 entry documents a use-after-free in Bluetooth handling within Google Chrome on Windows to 149.0.7827.103 and earlier. The underlying issue is a use-after-free in Bluetooth code that allows a remote attacker to execute arbitrary code if the user is tricked into performing specif...

CVE-2026-11638

Use after free in Printing in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

CVE-2026-11638

Use after free in Printing in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

CVE-2026-11639

Use after free in Compositing in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Critical...

CVE-2026-11639

Use after free in Compositing in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Critical...

CVE-2026-11639

CVE-2026-11639 describes a use-after-free in the Compositing path of Google Chrome on macOS prior to version 149.0.7827.103, allowing a remote attacker to execute arbitrary code via a crafted HTML page. The issue is labeled Critical in Chromium terms, with network attack vector, high impact on co...

CVE-2026-11638

Concrete details found: CVE-2026-11638 affects Google Chrome (Printing) before 149.0.7827.103. The vulnerability is a use-after-free in the Printing component that could allow a remote attacker to potentially escape the Chrome sandbox via a crafted HTML page (severity: Critical). Impact is sandbo...

CVE-2026-11637

Use after free in Views in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Critical...

CVE-2026-11636

Use after free in Autofill in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

CVE-2026-11637

Use after free in Views in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Critical...

CVE-2026-11636

Use after free in Autofill in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

CVE-2026-11636

Use after free in Autofill in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

CVE-2026-11636

Use after free in Autofill in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

CVE-2026-11636

CVE-2026-11636 is a use-after-free in Chrome’s Autofill on Windows prior to 149.0.7827.103, enabling a remote attacker who entices a user to perform specific UI gestures to potentially trigger heap corruption via a crafted HTML page. The issue affects the Chromium-based browser and is addressed i...

CVE-2026-11637

CVE-2026-11637 is a use-after-free vulnerability in Chrome's Views on macOS, exploitable via a crafted HTML page to achieve remote code execution. Affected software is Google Chrome for macOS with versions earlier than 149.0.7827.103 (Chromium). The underlying cause is use-after-free in the Views...

CVE-2026-11635

Use after free in Bluetooth in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

CVE-2026-11635

Use after free in Bluetooth in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

CVE-2026-11635

Summary: CVE-2026-11635 is a use-after-free in Chrome’s Bluetooth stack on macOS prior to 149.0.7827.103. If a renderer process is already compromised, this flaw could enable a sandbox escape via a crafted HTML page. Affected product/version: Google Chrome on macOS, before version 149.0.7827.103....

CVE-2026-11634

Use after free in Gamepad in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...