CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2026/06/04 11:16 p.m.•5 views

DEBIAN-CVE-2026-10891

Use after free in GFX in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

8.8CVSS5.6AI score0.00325EPSS

Exploits0References1

ATTACKERKB•added 2026/06/04 11:6 p.m.•7 views

CVE-2026-11256

Integer overflow in GPU in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Low...

5.5AI score0.00212EPSS

Vulnrichment•added 2026/06/04 11:6 p.m.•7 views

CVE-2026-11256

5.5AI score0.00212EPSS

Cvelist•added 2026/06/04 11:5 p.m.•31 views

CVE-2026-11203

Inappropriate implementation in GPU in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

0.00229EPSS

Debian CVE•added 2026/06/04 11:5 p.m.•7 views

CVE-2026-11203

Inappropriate implementation in GPU in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.5AI score0.00229EPSS

ATTACKERKB•added 2026/06/04 11:5 p.m.•5 views

CVE-2026-11203

Inappropriate implementation in GPU in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00229EPSS

ATTACKERKB•added 2026/06/04 11:5 p.m.•6 views

CVE-2026-11182

Inappropriate implementation in SVG in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00247EPSS

Debian CVE•added 2026/06/04 11:5 p.m.•6 views

CVE-2026-11180

Inappropriate implementation in SVG in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.5AI score0.00229EPSS

ATTACKERKB•added 2026/06/04 11:5 p.m.•8 views

CVE-2026-11180

Inappropriate implementation in SVG in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00229EPSS

CVE•added 2026/06/04 11:5 p.m.•19 views

CVE-2026-11180

CVE-2026-11180 describes an insecure SVG handling in Google Chrome before version 149.0.7827.53, where an improper implementation could allow a remote attacker to leak cross-origin data via a crafted HTML page. The impact is data disclosure with network access as the attack vector, and user inter...

6.5CVSS5.8AI score0.00229EPSS

Exploits0References2Affected Software1

Debian CVE•added 2026/06/04 11:5 p.m.•7 views

CVE-2026-11166

Inappropriate implementation in SVG in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: Medium...

6.8CVSS5.6AI score0.00205EPSS

Vulnrichment•added 2026/06/04 11:5 p.m.•6 views

CVE-2026-11137

Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

5.5AI score0.0025EPSS

Debian CVE•added 2026/06/04 11:5 p.m.•8 views

CVE-2026-11111

Out of bounds read in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. Chromium security severity: Medium...

8.1CVSS5.5AI score0.00228EPSS

CVE•added 2026/06/04 11:4 p.m.•18 views

CVE-2026-11098

CVE-2026-11098 affects the GPU component in Google Chrome (Chromium-based) where there is insufficient validation of untrusted input prior to version 149.0.7827.53. The vulnerability could allow a remote attacker who has compromised the renderer process to leak cross-origin data through a crafted...

5.3CVSS5.8AI score0.00233EPSS

Exploits0References2Affected Software1

Debian CVE•added 2026/06/04 11:4 p.m.•6 views

CVE-2026-11090

Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.5AI score0.0025EPSS

CVE•added 2026/06/04 11:4 p.m.•14 views

CVE-2026-11090

CVE-2026-11090 describes an uninitialized use in ANGLE within Google Chrome prior to version 149.0.7827.53 , enabling a remote attacker to leak cross-origin data via a crafted HTML page. The issue affects ANGLE components used by Chrome; the underlying impact is described as potential exposure of...

6.5CVSS5.8AI score0.0025EPSS

Exploits0References2Affected Software1

Debian CVE•added 2026/06/04 11:4 p.m.•7 views

CVE-2026-11085

Integer overflow in GPU in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS5.5AI score0.00247EPSS

Cvelist•added 2026/06/04 11:4 p.m.•28 views

CVE-2026-11082

Race in GPU in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

0.00234EPSS

Debian CVE•added 2026/06/04 11:4 p.m.•7 views

CVE-2026-11082

9.6CVSS5.5AI score0.00234EPSS