CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

433 matches found

EUVD-2026-37542

Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.155 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Chromium security severity: High...

4.2CVSS5.3AI score0.0023EPSS

Exploits0References3

NVD•added yesterday•3 views

CVE-2026-12465

Object lifecycle issue in Metrics in Google Chrome prior to 149.0.7827.155 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS0.00298EPSS

Exploits0References2

EUVD•added 6 days ago•6 views

EUVD-2026-36329

Use after free in DigitalCredentials in Google Chrome prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

8.3CVSS5.5AI score0.00221EPSS

Exploits0References3

OSV•added last week•1 views

DEBIAN-CVE-2026-12034

Insufficient validation of untrusted input in Linux Toolkit Theming in Google Chrome on Linux prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a malicious file. Chromium security severity: High...

8.3CVSS5.4AI score0.00172EPSS

Exploits0References1

OSV•added last week•2 views

DEBIAN-CVE-2026-12032

Inappropriate implementation in Passwords in Google Chrome on Android prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Chromium security severity: High...

3.1CVSS5.3AI score0.00129EPSS

Exploits0References1

NVD•added last week•6 views

CVE-2026-12034

8.3CVSS0.00172EPSS

Exploits0References2

NVD•added last week•8 views

CVE-2026-12025

Insufficient validation of untrusted input in Network in Google Chrome prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

5.3CVSS0.00217EPSS

Exploits0References2

OSV•added last week•1 views

DEBIAN-CVE-2026-12025

5.3CVSS5.4AI score0.00217EPSS

Exploits0References1

OSV•added last week•3 views

DEBIAN-CVE-2026-12022

Race in Safe Browsing in Google Chrome on Mac prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a malicious file. Chromium security severity: High...

8.3CVSS5.4AI score0.00148EPSS

Exploits0References1

Cvelist•added last week•24 views

CVE-2026-12034

0.00172EPSS

Exploits0References2

CVE•added last week•16 views

CVE-2026-12034

The CVE-2026-12034 entry describes an issue in Google Chrome on Linux where Linux Toolkit Theming mishandles untrusted input, allowing a renderer process in a compromised sandbox to escape via a malicious file. Affected software: Google Chrome on Linux (pre-149.0.7827.115). Root cause: insufficie...

8.3CVSS5.5AI score0.00172EPSS

Exploits0References2Affected Software1

Vulnrichment•added last week•6 views

CVE-2026-12032

5.4AI score0.00129EPSS

Exploits0References2

Debian CVE•added last week•4 views

CVE-2026-12031

Inappropriate implementation in Views in Google Chrome on Windows prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS5.4AI score0.00171EPSS

Exploits0

Debian CVE•added last week•5 views

CVE-2026-12027

Inappropriate implementation in Headless in Google Chrome prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

9.6CVSS5.4AI score0.00224EPSS

Exploits0

Vulnrichment•added last week•5 views

CVE-2026-12022

5.5AI score0.00148EPSS

Exploits0References2

Vulnrichment•added last week•5 views

CVE-2026-12023

Use after free in GPU in Google Chrome on Mac prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

5.5AI score0.00206EPSS

Exploits0References2

Debian CVE•added last week•5 views

CVE-2026-12019

Heap buffer overflow in Codecs in Google Chrome on Linux and ChromeOS prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS5.7AI score0.00227EPSS

Exploits0

Vulnrichment•added last week•5 views

CVE-2026-12017

Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Chromium security severity: High...

5.4AI score0.00184EPSS

Exploits0References2

CVE•added last week•14 views

CVE-2026-12017

Google Chrome extension component (Extensions) is affected by CVE-2026-12017. An insufficient input validation in the Extensions path allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Affected product: Google Chrome (Extensions). ...

3.1CVSS5.4AI score0.00184EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2026/06/11 12:0 a.m.•6 views

PT-2026-48777

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.115 Description An inappropriate implementation in Views allows a remote attacker who has compromised the renderer process to potentially perform a sandbox escape by using a crafted HTML page. A sandb...

9.6CVSS5.3AI score0.00244EPSS

Exploits0References34

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by