544870 matches found
CVE-2026-11229
CVE-2026-11229 : Google Chrome (Enterprise) prior to 149.0.7827.53 is affected by an “inappropriate implementation” issue that enables a local attacker with physical access to escalate privileges. The exact vulnerable component/root cause beyond the description is not detailed in the provided doc...
CVE-2026-11229
Inappropriate implementation in Enterprise in Google Chrome prior to 149.0.7827.53 allowed a local attacker to perform privilege escalation via physical access to the device. Chromium security severity: Low...
CVE-2026-11210
CVE-2026-11210 : In Google Chrome, the Safe Browsing implementation before version 149.0.7827.53 is affected by an inappropriate implementation that allows a remote attacker to bypass discretionary access control via a crafted RAR file (Chromium security severity: Medium). Affected software: Goog...
CVE-2026-11210
Inappropriate implementation in Safe Browsing in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass discretionary access control via a crafted RAR file. Chromium security severity: Medium...
CVE-2026-11210
Inappropriate implementation in Safe Browsing in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass discretionary access control via a crafted RAR file. Chromium security severity: Medium...
CVE-2026-11209
Inappropriate implementation in Passwords in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-11193
Insufficient policy enforcement in Password Manager in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass discretionary access control via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-11190
Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to bypass discretionary access control via a crafted Chrome Extension. Chromium security severity: Medium...
CVE-2026-11190
Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to bypass discretionary access control via a crafted Chrome Extension. Chromium security severity: Medium...
CVE-2026-11191
The CVE-2026-11191 entry describes an out-of-bounds memory access in ANGLE affecting Google Chrome prior to version 149.0.7827.53, exploitable via a crafted HTML page. The vulnerability is rated Medium by Chromium, and the described impact is remote execution of out-of-bounds access through a cra...
CVE-2026-11190
The CVE describes an inadequate implementation in Google Chrome's Extensions before version 149.0.7827.53, where a user-convincing malicious extension could bypass discretionary access control. Affected component: Chrome Extensions. Root cause: incorrect enforcement within extension handling. Imp...
CVE-2026-11191
Out of bounds memory access in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-11191
Out of bounds memory access in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-11170
Inappropriate implementation in Chromoting in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to perform OS-level privilege escalation via malicious network traffic. Chromium security severity: Medium...
CVE-2026-11168
The CVE-2026-11168 issue affects Google Chrome’s Extensions component. An inappropriate implementation in Chrome extensions prior to version 149.0.7827.53 allowed a remote attacker who already had renderer access to exfiltrate potentially sensitive data from process memory via a crafted HTML page...
CVE-2026-11160
Out of bounds read in Input in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-11140
Chromecast in Google Chrome is affected by CVE-2026-11140: an out-of-bounds read in the renderer allows a remote attacker who has compromised the renderer to read potentially sensitive data from process memory via a crafted HTML page. Affected version: Chrome prior to 149.0.7827.53. Mitigation: u...
CVE-2026-11135
This entry concerns CVE-2026-11135 affecting Google Chrome Autofill. Affected component: Autofill in Chrome prior to 149.0.7827.53. Root cause: insufficient policy enforcement allowing a crafted HTML page to bypass discretionary access control. Impact: potential unauthorized access control bypass...
CVE-2026-11135
Insufficient policy enforcement in Autofill in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass discretionary access control via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-11123
Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...