CVE-2026-11201

Use after free in ServiceWorker in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension. Chromium security severity: Medium...

CVE-2026-7958

An inappropriate implementation flaw was found in the ServiceWorker component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=496632973...

EUVD-2026-27921

Inappropriate implementation in ServiceWorker in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Chromium security severity: High...

CVE-2026-7909

Inappropriate implementation in ServiceWorker in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Chromium security severity: High...

CVE-2026-7909

The CVE-2026-7909 entry concerns Google Chrome’s ServiceWorker. Affected component: Chrome’s ServiceWorker. Root cause: Inappropriate implementation allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Impact: bypass of site isolatio...

Google Chrome < 140.0.7339.127 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 140.0.7339.127. It is, therefore, affected by multiple vulnerabilities as referenced in the 202509stable-channel-update-for-desktop9 advisory. - Inappropriate implementation in Mojo in Google Chrome on Android, Linux,...