29453 matches found
CVE-2026-11185
Use after free in V8 in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code inside a sandbox via a crafted Chrome Extension. Chromium security severity: Medium...
CVE-2026-11185
Use after free in V8 in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code inside a sandbox via a crafted Chrome Extension. Chromium security severity: Medium...
CVE-2026-11173
Out of bounds write in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-11173
CVE-2026-11173 describes an out-of-bounds write in V8 affecting Google Chrome builds prior to 149.0.7827.53. The issue allows a remote attacker who has compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page. Affected component: V8 in Chrome; vulnerabil...
CVE-2026-11173
Out of bounds write in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-11171
CVE-2026-11171 describes an integer overflow in Blink of Google Chrome, affecting the browser prior to version 149.0.7827.53. This vulnerability could allow a remote attacker to execute arbitrary code inside the sandbox via a crafted HTML page. The available references indicate a Chrome stable-ch...
CVE-2026-11154
Use after free in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-11090
CVE-2026-11090 describes an uninitialized use in ANGLE within Google Chrome prior to version 149.0.7827.53 , enabling a remote attacker to leak cross-origin data via a crafted HTML page. The issue affects ANGLE components used by Chrome; the underlying impact is described as potential exposure of...
CVE-2026-11075
CVE-2026-11075 describes an out-of-bounds read in V8 within Google Chrome prior to 149.0.7827.53, enabling a remote attacker to potentially reading sensitive data from a process’s memory through a crafted HTML page. Affected component is V8 (JavaScript engine) in Chrome; impact is information dis...
CVE-2026-11075
Out of bounds read in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-11075
Out of bounds read in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-11050
Use after free in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-11050
Use after free in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-11050
Use after free in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-10999
Integer overflow in ANGLE in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-10991
CVE-2026-10991 is a use-after-free in V8 affecting Google Chrome prior to 149.0.7827.53. The vulnerability could allow a remote attacker to execute arbitrary code inside the browser sandbox if a user is tricked into performing specific UI gestures on a crafted HTML page. This is tied to the V8 en...
CVE-2026-10991
Use after free in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-10989
Inappropriate implementation in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...
CVE-2026-10989
Inappropriate implementation in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...
CVE-2026-10989
Inappropriate implementation in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...