Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

191803 matches found

CVE
CVEadded 2026/06/04 11:5 p.m.9 views

CVE-2026-11166

CVE-2026-11166 concerns an Inappropriate implementation in SVG in Google Chrome (Chromium) prior to 149.0.7827.53. The vulnerability allows a remote attacker to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. Affected software is Google Chrome’s SVG handling in the Chromium stack...

6.8CVSS6AI score0.00032EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2026/06/04 11:5 p.m.24 views

CVE-2026-11158

Insufficient validation of untrusted input in Downloads in Google Chrome on Mac prior to 149.0.7827.53 allowed a local attacker to potentially perform a sandbox escape via a crafted AppleScript command. Chromium security severity: Medium...

0.00011EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/06/04 11:5 p.m.4 views

CVE-2026-11153

Side-channel information leakage in Forms in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.5AI score0.00036EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/06/04 11:5 p.m.4 views

CVE-2026-11153

Side-channel information leakage in Forms in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00036EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2026/06/04 11:5 p.m.9 views

CVE-2026-11135

CVE-2026-11135 describes insufficient policy enforcement in Chrome Autofill, allowing a remote attacker to bypass discretionary access control via a crafted HTML page. Affected software is Google Chrome (Chromium) prior to 149.0.7827.53. Root cause: incomplete enforcement of policy in Autofill fu...

6.5CVSS5.8AI score0.00021EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2026/06/04 11:5 p.m.26 views

CVE-2026-11133

Insufficient policy enforcement in Paint in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: Medium...

0.00011EPSS
Exploits0References2
Debian CVE
Debian CVEadded 2026/06/04 11:5 p.m.5 views

CVE-2026-11127

Inappropriate implementation in WebAPKs in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform domain spoofing via a crafted WebAPK. Chromium security severity: Medium...

6.5CVSS5.5AI score0.00021EPSS
Exploits0
Debian CVE
Debian CVEadded 2026/06/04 11:5 p.m.6 views

CVE-2026-11126

Inappropriate implementation in DevTools in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. Chromium security severity: Medium...

4.3CVSS5.4AI score0.00037EPSS
Exploits0
CVE
CVEadded 2026/06/04 11:4 p.m.7 views

CVE-2026-11096

CVE-2026-11096 details an out-of-bounds read in WebRTC for Google Chrome, prior to 149.0.7827.53. The issue could allow a remote attacker to obtain potentially sensitive information from a process’s memory via a crafted HTML page. Affected product/component: WebRTC in Chrome (Chromium-based). Roo...

6.5CVSS5.8AI score0.00028EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/06/04 11:4 p.m.5 views

CVE-2026-11079

Insufficient validation of untrusted input in Codecs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform an out of bounds memory write via a crafted video file. Chromium security severity: Medium...

5.5AI score0.00106EPSS
Exploits0References2
CVE
CVEadded 2026/06/04 11:4 p.m.10 views

CVE-2026-11069

CVE-2026-11069 concerns Google Chrome prior to 149.0.7827.53, where cast-related input validation on untrusted data is insufficient. The underlying issue permits a remote attacker to bypass the same-origin policy via a crafted HTML page, with the impact described as Medium. The vulnerability affe...

6.5CVSS5.8AI score0.00032EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2026/06/04 11:4 p.m.6 views

CVE-2026-11062

CVE-2026-11062 affects Google Chrome extensions: insufficient policy enforcement in Extensions allows an attacker to inject scripts/HTML into a privileged page when a user installs a crafted malicious extension. Impact is partial integrity compromise of privileged pages; exploit not confirmed in ...

4.3CVSS5.8AI score0.00019EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVEadded 2026/06/04 11:4 p.m.4 views

CVE-2026-11033

Uninitialized Use in WebML in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.5AI score0.00028EPSS
Exploits0
Debian CVE
Debian CVEadded 2026/06/04 11:4 p.m.6 views

CVE-2026-11030

Use after free in Network in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially exploit heap corruption via malicious network traffic. Chromium security severity: Medium...

8.8CVSS5.5AI score0.00073EPSS
Exploits0
Debian CVE
Debian CVEadded 2026/06/04 11:4 p.m.5 views

CVE-2026-11031

Insufficient validation of untrusted input in Password Manager in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via malicious network traffic. Chromium security severity: Medium...

4.3CVSS5.5AI score0.00055EPSS
Exploits0
Debian CVE
Debian CVEadded 2026/06/04 11:4 p.m.5 views

CVE-2026-11024

Stack buffer overflow in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially exploit stack corruption via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS5.9AI score0.00079EPSS
Exploits0
Cvelist
Cvelistadded 2026/06/04 11:4 p.m.26 views

CVE-2026-10996

Inappropriate implementation in Workers in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: Medium...

0.00013EPSS
Exploits0References2
CVE
CVEadded 2026/06/04 11:4 p.m.38 views

CVE-2026-10984

Summary: CVE-2026-10984 affects Google Chrome on Android due to an inappropriate Accessibility implementation, enabling UI spoofing via a crafted HTML page. The issue lies in older Android builds before 149.0.7827.53; upgrading to 149.0.7827.53 or later mitigates the vulnerability. The vulnerabil...

5.4CVSS5.8AI score0.00063EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVEadded 2026/06/04 11:4 p.m.7 views

CVE-2026-10984

Inappropriate implementation in Accessibility in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: High...

5.4CVSS5.5AI score0.00063EPSS
Exploits0
Vulnrichment
Vulnrichmentadded 2026/06/04 11:3 p.m.6 views

CVE-2026-10956

Use after free in MimeHandlerView in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

6.2AI score0.00139EPSS
Exploits0References2
Rows per page
Query Builder