CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE-2026-9940

Heap buffer overflow in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

6AI score0.00259EPSS

8.8CVSS6.2AI score0.00319EPSS

CVE-2026-9938

Inappropriate implementation in V8 in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

ATTACKERKB•added 2026/05/28 10:25 p.m.•11 views

CVE-2026-9937

Use after free in UI in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

CVE•added 2026/05/28 10:25 p.m.•38 views

CVE-2026-9938

CVE-2026-9938 concerns an inappropriate implementation in the V8 component of Google Chrome, affecting Chrome versions prior to 148.0.7778.216. The vulnerability allows a remote attacker to execute arbitrary code inside the browser sandbox via a crafted HTML page. The cited sources consistently d...

8.8CVSS6.2AI score0.00319EPSS

Exploits0References2Affected Software1

Cvelist•added 2026/05/28 10:25 p.m.•33 views

CVE-2026-9939

Heap buffer overflow in WebCodecs in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

0.00412EPSS

ATTACKERKB•added 2026/05/28 10:25 p.m.•8 views

CVE-2026-9938

6.2AI score0.00319EPSS

Vulnrichment•added 2026/05/28 10:25 p.m.•7 views

CVE-2026-9939

6.4AI score0.00412EPSS

Cvelist•added 2026/05/28 10:25 p.m.•29 views

CVE-2026-9934

Use after free in Aura in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

0.00255EPSS

ATTACKERKB•added 2026/05/28 10:25 p.m.•9 views

CVE-2026-9936

Use after free in GFX in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS5.8AI score0.00222EPSS

CVE-2026-9936

Debian CVE•added 2026/05/28 10:25 p.m.•8 views

CVE-2026-9935

Uninitialized Use in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

4.3CVSS5.8AI score0.00238EPSS

ATTACKERKB•added 2026/05/28 10:25 p.m.•7 views

CVE-2026-9935

Uninitialized Use in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00238EPSS

CVE•added 2026/05/28 10:25 p.m.•22 views

CVE-2026-9935

Summary (CVE-2026-9935): Uninitialized Use in ANGLE affects Google Chrome’s ANGLE component, prior to version 148.0.7778.216. The root cause is an uninitialized use flaw in ANGLE, allowing a remote attacker to leak cross-origin data through a crafted HTML page. The CVSSv3.1 vector (AV:N/AC:L/PR:N...

4.3CVSS5.8AI score0.00238EPSS

Exploits0References2Affected Software1

CVE-2026-9934

6.2AI score0.00255EPSS

CVE-2026-9936

CVE•added 2026/05/28 10:25 p.m.•19 views

CVE-2026-9933

CVE-2026-9933 affects Google Chrome (Input component) with a use-after-free in the Chromium UI input handling, potentially enabling heap corruption when a user is convinced to perform specific UI gestures via a crafted HTML page. The vulnerability is described as remote and high severity, with af...

7.5CVSS5.8AI score0.00222EPSS

Exploits0References2Affected Software1

CVE-2026-9932

Use after free in ANGLE in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS5.8AI score0.00222EPSS

CVE-2026-9932

8.3CVSS5.8AI score0.00222EPSS

CVE-2026-9931

Use after free in GPU in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...