247112 matches found
CVE-2026-11003
Use after free in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-11003
Use after free in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-11003
Use after free in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-11000
Use after free in Fonts in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-11000
Summary : CVE-2026-11000 affects Google Chrome on Linux. The vulnerable component is the Fonts code in Chromium, with the underlying issue described as a use-after-free. This leads to the possibility of remote code execution inside the browser sandbox via a crafted HTML page. Public references in...
CVE-2026-11000
Use after free in Fonts in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-10991
CVE-2026-10991 is a use-after-free in V8 affecting Google Chrome prior to 149.0.7827.53. The vulnerability could allow a remote attacker to execute arbitrary code inside the browser sandbox if a user is tricked into performing specific UI gestures on a crafted HTML page. This is tied to the V8 en...
CVE-2026-10991
Use after free in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-10987
Integer overflow in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...
CVE-2026-10987
Integer overflow in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...
CVE-2026-10987
Summary: A vulnerability in Google Chrome’s V8 engine allows remote code execution via a crafted HTML page, caused by an integer overflow. This affects Chrome versions prior to 149.0.7827.53. The issue enables sandbox-exploiting code execution without demonstrated exploitation details in the prov...
CVE-2026-10987
Integer overflow in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...
CVE-2026-10986
Integer overflow in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a malicious file. Chromium security severity: High...
CVE-2026-10986
Integer overflow in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a malicious file. Chromium security severity: High...
CVE-2026-10986
This CVE affects Google Chrome’s Media component, with an integer overflow in the Media path prior to version 149.0.7827.53. The underlying root cause is an integer overflow that could allow a remote attacker to execute arbitrary code inside Chromium’s sandbox when processing a malicious file. Th...
CVE-2026-10982
Use after free in WebXR in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...
CVE-2026-10982
Use after free in WebXR in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...
CVE-2026-10982
CVE-2026-10982 : A use-after-free in WebXR within Google Chrome before 149.0.7827.53 allows remote code execution via a crafted HTML page in a sandbox. Affected component is WebXR in Chrome/Chromium; root cause is use-after-free. Impact is high (arbitrary code execution, sandbox break). No exploi...
CVE-2026-10978
Use after free in Chromoting in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via malicious network traffic. Chromium security severity: High...
CVE-2026-10978
Summary of CVE-2026-10978 (Chromoting) : A use-after-free defect in Chromoting within Google Chrome on Windows allows a remote attacker to execute arbitrary code via crafted network traffic. Affected component is Chromoting/Chromium-based Chrome; vulnerable version range is Windows builds prior t...