Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

451 matches found

RedhatCVE
RedhatCVEadded 3 days ago3 views

CVE-2026-11694

An use after free flaw was found in the ServiceWorker component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=517705966...

9CVSS5.4AI score0.0008EPSS
Exploits0References5
NVD
NVDadded 4 days ago6 views

CVE-2026-11656

Use after free in ServiceWorker in Google Chrome prior to 149.0.7827.103 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted Chrome Extension. Chromium security severity: High...

8.3CVSS0.00029EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 5 days ago4 views

CVE-2026-11694

Use after free in ServiceWorker in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

7.5CVSS6AI score0.0008EPSS
Exploits0References3Affected Software1
CVE
CVEadded 5 days ago13 views

CVE-2026-11694

Technical details (affected product, root cause, exploitability) are not publicly available in the provided documents. Monitor for updates.

7.5CVSS6AI score0.0008EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 5 days ago3 views

CVE-2026-11694

Use after free in ServiceWorker in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

6AI score0.0008EPSS
Exploits0References2
Debian CVE
Debian CVEadded 5 days ago4 views

CVE-2026-11656

Use after free in ServiceWorker in Google Chrome prior to 149.0.7827.103 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted Chrome Extension. Chromium security severity: High...

8.3CVSS5.4AI score0.00029EPSS
Exploits0
CVE
CVEadded 5 days ago14 views

CVE-2026-11656

CVE-2026-11656 affects Google Chrome via a Use-after-Free in the ServiceWorker component, enabling a sandbox escape when a user installs a crafted malicious extension. Public descriptions consistently state the vulnerability occurs in Chrome versions prior to 149.0.7827.103. The available sources...

8.3CVSS5.4AI score0.00029EPSS
Exploits0References2Affected Software1
FreeBSD
FreeBSDadded 5 days ago4 views

chromium -- security fixes

Chrome Releases reports: This update includes 74 security fixes: 516501794 Critical CVE-2026-11628: Use after free in Ozone. 516674532 Critical CVE-2026-11629: Use after free in Ozone. 516677924 Critical CVE-2026-11630: Use after free in File Input. 516691130 Critical CVE-2026-11631: Use after fr...

9.6CVSS5.8AI score0.05467EPSS
Exploits2References1
Positive Technologies
Positive Technologiesadded 5 days ago7 views

PT-2026-47482

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.103 Description A use after free issue exists in the ServiceWorker component. This occurs when a user is convinced to install a malicious extension, allowing an attacker to potentially perform a sandb...

9.6CVSS6AI score0.05467EPSS
Exploits2References81
RedhatCVE
RedhatCVEadded 6 days ago5 views

CVE-2026-11201

An use after free flaw was found in the ServiceWorker component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=505068950...

8.8CVSS5.4AI score0.00021EPSS
Exploits0References5
SUSE CVE
SUSE CVEadded 6 days ago5 views

SUSE CVE-2026-11201

Use after free in ServiceWorker in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension. Chromium security severity: Medium...

8.8CVSS6AI score0.00021EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2026/06/05 7:43 p.m.7 views

CVE-2026-8879

Version 3.0.7 of the Securly Chrome Extension dynamically registers content13.min.js as a content script via chrome.scripting.registerContentScripts at runtime. This script is NOT declared in manifest.json and bypasses Chrome Web Store static security review. It runs on all URLs and immediately...

7.5CVSS5.5AI score0.00052EPSS
Exploits0References1
Microsoft CVE
Microsoft CVEadded 2026/06/05 2:0 p.m.5 views

Chromium: CVE-2026-11201 Use after free in ServiceWorker

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS5.4AI score0.00021EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2026/06/05 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-11206

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient policy enforcement in ServiceWorker in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML...

6.5CVSS5.5AI score0.00039EPSS
Exploits0References2
OSV
OSVadded 2026/06/04 11:17 p.m.4 views

DEBIAN-CVE-2026-11201

Use after free in ServiceWorker in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension. Chromium security severity: Medium...

8.8CVSS6AI score0.00021EPSS
Exploits0References1
NVD
NVDadded 2026/06/04 11:17 p.m.7 views

CVE-2026-11201

Use after free in ServiceWorker in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension. Chromium security severity: Medium...

8.8CVSS0.00021EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/06/04 11:5 p.m.5 views

CVE-2026-11206

Insufficient policy enforcement in ServiceWorker in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.5AI score0.00039EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/06/04 11:5 p.m.7 views

CVE-2026-11206

Insufficient policy enforcement in ServiceWorker in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00039EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2026/06/04 11:5 p.m.6 views

CVE-2026-11201

The CVE-2026-11201 entry reports a use-after-free in Chrome’s ServiceWorker that could allow arbitrary code execution when a user is convinced to install a crafted Chrome Extension, affecting Google Chrome versions prior to 149.0.7827.53. The vulnerability is linked to the Chromium-based extensio...

8.8CVSS6.2AI score0.00021EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2026/06/03 6:11 p.m.32 views

CVE-2026-8879 CVE-2026-8879

Version 3.0.7 of the Securly Chrome Extension dynamically registers content13.min.js as a content script via chrome.scripting.registerContentScripts at runtime. This script is NOT declared in manifest.json and bypasses Chrome Web Store static security review. It runs on all URLs and immediately...

0.00052EPSS
Exploits0References1
Rows per page
Query Builder