CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2 days ago•7 views

CVE-2026-11303

Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. Chromium security severity: Low...

8.8CVSS0.0008EPSS

OSV•added 2 days ago•2 views

DEBIAN-CVE-2026-11306

Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. Chromium security severity: Low...

OSV•added 2 days ago•2 views

DEBIAN-CVE-2026-11303

Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. Chromium security severity: Low...

Tenable Nessus•added 2 days ago•3 views

Linux Distros Unpatched Vulnerability : CVE-2026-11307

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file...

8.8CVSS5.9AI score0.0008EPSS

Cvelist•added 3 days ago•31 views

CVE-2026-11307

Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. Chromium security severity: Low...

0.0008EPSS

Debian CVE•added 3 days ago•3 views

CVE-2026-11305

Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. Chromium security severity: Low...

ATTACKERKB•added 3 days ago•5 views

Exploits0

CVE-2026-11303

Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. Chromium security severity: Low...

Exploits0References3Affected Software1

Microsoft CVE•added 2026/05/29 11:20 p.m.•11 views

Chromium: CVE-2026-9958 Use after free in PDFium

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS5.8AI score0.00118EPSS

Exploits0

Tenable Nessus•added 2026/05/29 12:0 a.m.•10 views

Linux Distros Unpatched Vulnerability : CVE-2026-10002

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in PDFium in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file...

8.8CVSS5.9AI score0.00073EPSS

Tenable Nessus•added 2026/05/29 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2026-9960

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in PDFium in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to execute arbitrary code...

7.5CVSS6.4AI score0.00102EPSS

NVD•added 2026/05/28 11:16 p.m.•10 views

CVE-2026-9958

Use after free in PDFium in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. Chromium security severity: High...

8.8CVSS0.00118EPSS

Positive Technologies•added 2026/05/27 12:0 a.m.•10 views

PT-2026-44558

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.216 Description A use after free issue in PDFium allows a remote attacker to potentially exploit heap corruption through a crafted PDF file. Use after free occurs when an application continues to use ...

9.6CVSS5.8AI score0.00156EPSS

Exploits0References158

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в chromium

Uninitialized data in PDFium in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted PDF file...

5.5CVSS6.3AI score0.00468EPSS

RedhatCVE•added 2026/04/16 2:14 a.m.•3 views

CVE-2026-6361

A heap buffer overflow flaw was found in the PDFium component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=500036290...

8.8CVSS6AI score0.00026EPSS

Exploits0References5

Tenable Nessus•added 2026/04/15 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2026-6305

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap buffer overflow in PDFium in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF...

8.8CVSS6.5AI score0.00037EPSS

Tenable Nessus•added 2026/04/09 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2026-5889

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cryptographic Flaw in PDFium in Google Chrome prior to 147.0.7727.55 allowed an attacker to read potentially sensitive information from encrypted PDFs via a...

4.3CVSS7.3AI score0.00007EPSS

OSV•added 2026/04/08 10:16 p.m.•2 views

DEBIAN-CVE-2026-5889

Cryptographic Flaw in PDFium in Google Chrome prior to 147.0.7727.55 allowed an attacker to read potentially sensitive information from encrypted PDFs via a brute-force attack. Chromium security severity: Medium...

4.3CVSS8.3AI score0.00007EPSS

Cvelist•added 2026/04/08 9:20 p.m.•18 views

CVE-2026-5889

0.00007EPSS