Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

90033 matches found

CVE
CVEadded 2026/06/04 11:5 p.m.14 views

CVE-2026-11150

Summary: CVE-2026-11150 is an UXSS (arbitrary script/HTML) in Chrome due to an inappropriate XML implementation. Affected product: Google Chrome (Chromium base); vulnerable component: XML handling in the browser; root cause: improper XML processing leads to script/HTML injection via a crafted HTM...

6.1CVSS6AI score0.00159EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/06/04 11:5 p.m.4 views

CVE-2026-11147

Use after free in WebML in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6.2AI score0.00354EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2026/06/04 11:5 p.m.29 views

CVE-2026-11147

Use after free in WebML in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

0.00354EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/06/04 11:5 p.m.5 views

CVE-2026-11148

Inappropriate implementation in Payments in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00137EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2026/06/04 11:5 p.m.16 views

CVE-2026-11147

The CVE-2026-11147 vulnerability is a use-after-free in WebML within Google Chrome for Windows, located in the Chromium-based WebML implementation. The issue allows a remote attacker to execute arbitrary code inside the sandbox via a crafted HTML page. Affected software/version: Google Chrome on ...

8.8CVSS6.2AI score0.00354EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2026/06/04 11:5 p.m.28 views

CVE-2026-11146

Insufficient validation of untrusted input in Chromoting in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

0.00234EPSS
Exploits0References2
Debian CVE
Debian CVEadded 2026/06/04 11:5 p.m.8 views

CVE-2026-11145

Race in Geolocation in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.3CVSS5.5AI score0.00164EPSS
Exploits0
Debian CVE
Debian CVEadded 2026/06/04 11:5 p.m.8 views

CVE-2026-11146

Insufficient validation of untrusted input in Chromoting in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

9.6CVSS5.5AI score0.00234EPSS
Exploits0
ATTACKERKB
ATTACKERKBadded 2026/06/04 11:5 p.m.5 views

CVE-2026-11146

Insufficient validation of untrusted input in Chromoting in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00234EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2026/06/04 11:5 p.m.28 views

CVE-2026-11145

Race in Geolocation in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

0.00164EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/06/04 11:5 p.m.5 views

CVE-2026-11146

Insufficient validation of untrusted input in Chromoting in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

5.5AI score0.00234EPSS
Exploits0References2
Debian CVE
Debian CVEadded 2026/06/04 11:5 p.m.8 views

CVE-2026-11142

Insufficient policy enforcement in Paint in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.5AI score0.00201EPSS
Exploits0
Vulnrichment
Vulnrichmentadded 2026/06/04 11:5 p.m.6 views

CVE-2026-11142

Insufficient policy enforcement in Paint in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: Medium...

5.5AI score0.00201EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/06/04 11:5 p.m.27 views

CVE-2026-11142

Insufficient policy enforcement in Paint in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: Medium...

0.00201EPSS
Exploits0References2
CVE
CVEadded 2026/06/04 11:5 p.m.16 views

CVE-2026-11140

CVE-2026-11140 corresponds to an out-of-bounds read in Chromecast within Google Chrome before version 149.0.7827.53. The issue is triggered when a renderer process is compromised and processes a crafted HTML page, allowing a remote attacker to read potentially sensitive information from the proce...

6.5CVSS5.8AI score0.00229EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/06/04 11:5 p.m.8 views

CVE-2026-11141

Uninitialized Use in Audio in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

5.5AI score0.0025EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/06/04 11:5 p.m.6 views

CVE-2026-11140

Out of bounds read in Chromecast in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

5.5AI score0.00229EPSS
Exploits0References2
CVE
CVEadded 2026/06/04 11:5 p.m.16 views

CVE-2026-11138

CVE-2026-11138 affects Google Chrome via an uninitialized use flaw in ANGLE. The vulnerability could allow a remote attacker to leak cross-origin data through a crafted HTML page, involving a network attack vector with low attack complexity but requiring user interaction. The published data indic...

6.5CVSS5.8AI score0.0025EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/06/04 11:5 p.m.7 views

CVE-2026-11139

Inappropriate implementation in Paint in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.5AI score0.00176EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/06/04 11:5 p.m.30 views

CVE-2026-11138

Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

0.0025EPSS
Exploits0References2
Rows per page
Query Builder