CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2026/06/11 10:16 p.m.•19 views

CVE-2026-12010

Heap buffer overflow in GPU in Google Chrome on Android prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

8.3CVSS0.00244EPSS

NVD•added 2026/06/11 10:16 p.m.•7 views

CVE-2026-12011

Use after free in WebMIDI in Google Chrome on Windows prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

8.3CVSS0.00221EPSS

NVD•added 2026/06/11 10:16 p.m.•7 views

CVE-2026-12007

Use after free in Core in Google Chrome on Windows prior to 149.0.7827.115 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Critical...

8.8CVSS0.00286EPSS

Cvelist•added 2026/06/11 8:48 p.m.•26 views

CVE-2026-12033

Out of bounds read in VideoCapture in Google Chrome prior to 149.0.7827.115 allowed a remote attacker who had compromised the GPU process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

0.00169EPSS

Vulnrichment•added 2026/06/11 8:48 p.m.•6 views

CVE-2026-12035

Use after free in Views in Google Chrome on Windows prior to 149.0.7827.115 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

5.4AI score0.00187EPSS

CVE•added 2026/06/11 8:48 p.m.•94 views

CVE-2026-12033

CVE-2026-12033 affects Google Chrome’s VideoCapture component. The issue is an out-of-bounds read in VideoCapture that could allow a remote attacker who has compromised the GPU process to read potentially sensitive data from process memory via a crafted HTML page. The vulnerability is tied to Chr...

5.3CVSS5.5AI score0.00169EPSS

Debian CVE•added 2026/06/11 8:48 p.m.•9 views

CVE-2026-12035

8.8CVSS5.5AI score0.00187EPSS

CVE•added 2026/06/11 8:48 p.m.•29 views

CVE-2026-12035

CVE-2026-12035 affects Google Chrome on Windows (Views component). Affected: Chrome versions prior to 149.0.7827.115. Root cause: Use-after-free in Views leading to potential heap corruption via a crafted HTML page. Impact: potential remote code execution via heap corruption (per the vulnerabilit...

8.8CVSS5.6AI score0.00187EPSS

Cvelist•added 2026/06/11 8:48 p.m.•27 views

CVE-2026-12032

Inappropriate implementation in Passwords in Google Chrome on Android prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Chromium security severity: High...

0.00129EPSS

Vulnrichment•added 2026/06/11 8:48 p.m.•6 views

CVE-2026-12032

5.4AI score0.00129EPSS

CVE•added 2026/06/11 8:48 p.m.•21 views

CVE-2026-12031

Google Chrome on Windows before 149.0.7827.115 is affected by CVE-2026-12031 due to an inappropriate implementation in Views that can allow a remote attacker, who has compromised the renderer process, to potentially escape the sandbox via a crafted HTML page. The issue is rated High (CVSS 3.1: AV...

8.3CVSS5.5AI score0.00171EPSS

Debian CVE•added 2026/06/11 8:48 p.m.•5 views

CVE-2026-12032

3.1CVSS5.3AI score0.00129EPSS

Cvelist•added 2026/06/11 8:48 p.m.•28 views

CVE-2026-12028

Use after free in GPU in Google Chrome on Android prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

0.00206EPSS

Cvelist•added 2026/06/11 8:48 p.m.•26 views

CVE-2026-12030

Out of bounds write in GPU in Google Chrome on Android prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

0.00171EPSS

Vulnrichment•added 2026/06/11 8:48 p.m.•7 views

CVE-2026-12030

5.5AI score0.00171EPSS

CVE•added 2026/06/11 8:48 p.m.•20 views

CVE-2026-12029

CVE-2026-12029: Use-after-free in Video on Google Chrome for Windows (pre-149.0.7827.115) allows a remote attacker with renderer access to escape the sandbox via a crafted HTML page. Impact: high. Root cause: use-after-free in Video; Exploitation context requires a compromised renderer. A fix is ...

8.3CVSS5.5AI score0.00171EPSS

CVE•added 2026/06/11 8:48 p.m.•19 views

CVE-2026-12028

The CVE-2026-12028 issue affects Google Chrome on Android (before 149.0.7827.115) and is caused by a use-after-free in the GPU code. A compromised renderer process could potentially escape the Chrome sandbox via a crafted HTML page. The connected sources confirm the vulnerability detail and indic...

8.3CVSS5.5AI score0.00206EPSS

CVE•added 2026/06/11 8:48 p.m.•17 views

CVE-2026-12030

CVE-2026-12030: Out-of-bounds write in Chrome’s GPU code on Android (pre-149.0.7827.115) potentially enables a sandbox escape when a renderer process is compromised via a crafted HTML page. Affected: Google Chrome for Android; impact: high. Exploitation requires renderer access; remediation: Goog...

8.3CVSS5.5AI score0.00171EPSS

Debian CVE•added 2026/06/11 8:48 p.m.•6 views

CVE-2026-12029

Use after free in Video in Google Chrome on Windows prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS5.4AI score0.00171EPSS