CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

924 matches found

CVE-2026-6220

A vulnerability was identified in HummerRisk up to 1.5.0. This vulnerability affects the function ServerService.addServer of the file ServerService.java of the component Video File Download URL Handler. Such manipulation of the argument streamIp leads to server-side request forgery. It is possibl...

5.8CVSS5.2AI score0.00047EPSS

Exploits0References1

EUVD•added 3 days ago•5 views

EUVD-2026-34527

Insufficient validation of untrusted input in Codecs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform an out of bounds memory write via a crafted video file. Chromium security severity: Medium...

5.8AI score0.00066EPSS

Exploits0References3

EUVD•added 3 days ago•4 views

EUVD-2026-34430

Insufficient validation of untrusted input in Codecs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted video file. Chromium security severity: High...

5.8AI score0.00032EPSS

Exploits0References3

EUVD•added 3 days ago•4 views

EUVD-2026-34415

Inappropriate implementation in Codecs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted video file. Chromium security severity: High...

5.8AI score0.00078EPSS

Exploits0References3

Tenable Nessus•added 3 days ago•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-10966

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in Codecs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted...

9.6CVSS5.6AI score0.00078EPSS

Exploits0References2

Tenable Nessus•added 3 days ago•7 views

Linux Distros Unpatched Vulnerability : CVE-2026-11037

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Out of bounds write in Codecs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted video file...

9.6CVSS5.6AI score0.00068EPSS

Exploits0References2

OSV•added 4 days ago•4 views

DEBIAN-CVE-2026-11198

Insufficient validation of untrusted input in Codecs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted video file. Chromium security severity: Medium...

9.6CVSS5.5AI score0.0009EPSS

Exploits0References1

NVD•added 4 days ago•6 views

CVE-2026-11198

9.6CVSS0.0009EPSS

Exploits0References2

NVD•added 4 days ago•3 views

CVE-2026-11037

Out of bounds write in Codecs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted video file. Chromium security severity: Medium...

9.6CVSS0.00068EPSS

Exploits0References2

OSV•added 4 days ago•4 views

DEBIAN-CVE-2026-10966

9.6CVSS5.5AI score0.00078EPSS

Exploits0References1

ATTACKERKB•added 4 days ago•4 views

CVE-2026-11198

5.8AI score0.0009EPSS

Exploits0References3Affected Software1

CVE•added 4 days ago•8 views

CVE-2026-11198

CVE-2026-11198 describes an issue in Google Chrome where insufficient validation of untrusted input in the Codecs component could enable a remote attacker to cause a sandbox escape via a crafted video file. Affected product: Google Chrome (Chromium-based). Root cause: insufficient input validatio...

9.6CVSS5.8AI score0.0009EPSS

Exploits0References2Affected Software1

Debian CVE•added 4 days ago•3 views

CVE-2026-11144

Use after free in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted video file. Chromium security severity: Medium...

8.8CVSS6AI score0.0008EPSS

Exploits0

Vulnrichment•added 4 days ago•6 views

CVE-2026-11144

Use after free in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted video file. Chromium security severity: Medium...

6AI score0.0008EPSS

Exploits0References2

Debian CVE•added 4 days ago•6 views

CVE-2026-11079

8.8CVSS5.5AI score0.00066EPSS

Exploits0

Cvelist•added 4 days ago•21 views

CVE-2026-11079

0.00066EPSS

Exploits0References2

Vulnrichment•added 4 days ago•5 views

CVE-2026-11079

5.5AI score0.00066EPSS

Exploits0References2

CVE•added 4 days ago•5 views

CVE-2026-11079

CVE-2026-11079 concerns Google Chrome’s Codecs. The issue is caused by insufficient validation of untrusted input in codecs, enabling a remote attacker to trigger an out-of-bounds memory write via a crafted video file. Affected product: Google Chrome (before 149.0.7827.53). The impact, as describ...

8.8CVSS5.8AI score0.00066EPSS

Exploits0References2

Vulnrichment•added 4 days ago•6 views

CVE-2026-11037

Out of bounds write in Codecs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted video file. Chromium security severity: Medium...

5.5AI score0.00068EPSS

Exploits0References2

Cvelist•added 4 days ago•22 views

CVE-2026-10981

0.00032EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by