CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2026/06/04 11:4 p.m.•15 views

CVE-2026-10979

CVE-2026-10979 describes an out-of-bounds read in ANGLE used by Google Chrome before 149.0.7827.53. The issue enables a remote attacker to potentially read sensitive data from a process’s memory via a crafted HTML page. The CVE is linked to Chromium components and Chrome update advisories (stable...

6.5CVSS5.8AI score0.00308EPSS

Cvelist•added 2026/06/04 11:4 p.m.•28 views

CVE-2026-10979

0.00308EPSS

Cvelist•added 2026/06/04 11:4 p.m.•27 views

CVE-2026-10977

Uninitialized Use in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

0.00336EPSS

Debian CVE•added 2026/06/04 11:4 p.m.•8 views

CVE-2026-10975

Use after free in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00456EPSS

Vulnrichment•added 2026/06/04 11:4 p.m.•8 views

CVE-2026-10976

Uninitialized Use in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

5.5AI score0.00336EPSS

CVE•added 2026/06/04 11:4 p.m.•21 views

CVE-2026-10975

CVE-2026-10975 describes a use-after-free in Chrome's WebRTC prior to build 149.0.7827.53, enabling a remote attacker to execute arbitrary code inside Chrome’s sandbox via a crafted HTML page. The vulnerability is labeled High severity with a network attack vector, requiring user interaction. Aff...

8.8CVSS6.2AI score0.00456EPSS

CVE•added 2026/06/04 11:4 p.m.•13 views

CVE-2026-10976

CVE-2026-10976 concerns uninitialized use in Dawn within Google Chrome prior to 149.0.7827.53, enabling a remote attacker to potentially read sensitive data from process memory through a crafted HTML page. The vulnerability affects Chrome/Dawn components; the root cause is described as uninitiali...

7.4CVSS5.8AI score0.00336EPSS

Vulnrichment•added 2026/06/04 11:4 p.m.•6 views

CVE-2026-10975

Use after free in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

6.2AI score0.00456EPSS

Cvelist•added 2026/06/04 11:4 p.m.•28 views

CVE-2026-10976

0.00336EPSS

CVE•added 2026/06/04 11:4 p.m.•26 views

CVE-2026-10973

CVE-2026-10973 describes an uninitialized use in Dawn within Google Chrome, affecting Chrome builds prior to 149.0.7827.53. This vulnerability could allow a remote attacker to leak cross-origin data via a crafted HTML page. The description attributes impact to data leakage with network-exposed at...

7.4CVSS5.8AI score0.00985EPSS

Debian CVE•added 2026/06/04 11:4 p.m.•6 views

CVE-2026-10974

Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

9.6CVSS5.5AI score0.00325EPSS

Debian CVE•added 2026/06/04 11:4 p.m.•6 views

CVE-2026-10973

Uninitialized Use in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

7.4CVSS5.5AI score0.00985EPSS

Vulnrichment•added 2026/06/04 11:4 p.m.•9 views

CVE-2026-10973

Uninitialized Use in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

5.5AI score0.00985EPSS

Debian CVE•added 2026/06/04 11:4 p.m.•8 views

CVE-2026-10972

Use after free in Ozone in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

9.6CVSS5.5AI score0.00325EPSS

Vulnrichment•added 2026/06/04 11:4 p.m.•5 views

CVE-2026-10972

Use after free in Ozone in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

5.5AI score0.00325EPSS

CVE•added 2026/06/04 11:4 p.m.•18 views

CVE-2026-10972

Use-after-free in Ozone within Google Chrome on Linux, fixed by patch to 149.0.7827.53 or newer. The flaw could allow a remote attacker to escape the sandbox via a crafted HTML page. Affected component: Ozone in Chrome; root cause: use-after-free. Impact: high (sandbox escape, remote code executi...

9.6CVSS5.8AI score0.00325EPSS

Cvelist•added 2026/06/04 11:4 p.m.•30 views

CVE-2026-10972

Use after free in Ozone in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

0.00325EPSS

Debian CVE•added 2026/06/04 11:4 p.m.•7 views

CVE-2026-10970

Insufficient validation of untrusted input in InterestGroups in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS5.5AI score0.00285EPSS

Debian CVE•added 2026/06/04 11:4 p.m.•8 views

CVE-2026-10971

Insufficient validation of untrusted input in Printing in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

9.6CVSS5.5AI score0.00324EPSS