CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE-2026-11224

Use after free in Chromoting in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via malicious network traffic. Chromium security severity: Low...

CVE-2026-11218

Inappropriate implementation in PlatformIntegration in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a malicious file. Chromium security severity: Low...

6.2AI score

Cvelist•added yesterday•21 views

CVE-2026-11218

CVE•added yesterday•6 views

CVE-2026-11218

CVE-2026-11218 affects Google Chrome on Windows prior to 149.0.7827.53. The root cause is an inappropriate implementation in PlatformIntegration, enabling a remote attacker to trigger arbitrary code execution when a user is persuaded to perform specific UI gestures with a malicious file. This is ...

6.8CVSS6.2AI score

Vulnrichment•added yesterday•3 views

CVE-2026-11218

6AI score

CVE•added yesterday•7 views

CVE-2026-11211

Summary: CVE-2026-11211 describes an integer overflow in V8 within Google Chrome before 149.0.7827.53, which could allow a remote attacker to execute arbitrary code inside the browser sandbox via a crafted HTML page. Affected component: V8 engine in Chrome. Impact: arbitrary code execution in san...

6.3AI score

CVE-2026-11211

Integer overflow in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

CVE-2026-11211

Integer overflow in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

6.3AI score

Vulnrichment•added yesterday•3 views

CVE-2026-11205

Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scripts or HTML UXSS via a crafted QR code. Chromium security severity: Medium...

5.6AI score

CVE-2026-11188

Use after free in USB in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

CVE•added yesterday•5 views

CVE-2026-11173

CVE-2026-11173 describes an out-of-bounds write in V8 affecting Google Chrome builds prior to 149.0.7827.53. The issue allows a remote attacker who has compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page. Affected component: V8 in Chrome; vulnerabil...

8.8CVSS6.2AI score

CVE-2026-11171

Integer overflow in Blink in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6.3AI score

CVE•added yesterday•6 views

CVE-2026-11171

CVE-2026-11171 describes an integer overflow in Blink of Google Chrome, affecting the browser prior to version 149.0.7827.53. This vulnerability could allow a remote attacker to execute arbitrary code inside the sandbox via a crafted HTML page. The available references indicate a Chrome stable-ch...

8.8CVSS6.3AI score

Vulnrichment•added yesterday•4 views

CVE-2026-11164

Use after free in Blink in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

6.2AI score

CVE-2026-11147

Use after free in WebML in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

CVE•added yesterday•5 views

CVE-2026-11147

The CVE-2026-11147 vulnerability is a use-after-free in WebML within Google Chrome for Windows, located in the Chromium-based WebML implementation. The issue allows a remote attacker to execute arbitrary code inside the sandbox via a crafted HTML page. Affected software/version: Google Chrome on ...

8.8CVSS6.2AI score

CVE-2026-11147

8.8CVSS6.2AI score

CVE•added yesterday•5 views

CVE-2026-11144

CVE-2026-11144 describes a use-after-free in Google Chrome's Media component, prior to version 149.0.7827.53 . The flaw allows a remote attacker to execute arbitrary code within the Chrome sandbox via a crafted video file. The public description implies the vulnerability exists in Chrome/Chromium...

6.2AI score

Cvelist•added yesterday•21 views

CVE-2026-11144

Use after free in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted video file. Chromium security severity: Medium...