CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

154 matches found

CVE-2026-13036

Use after free in Blink in Google Chrome prior to 149.0.7827.197 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.3AI score

Exploits0References2

AstraLinux•added 5 days ago•5 views

Astra Linux – Vulnerability in Chromium

The use of "after free" in Blink in Google Chrome before version 87.0.4280.141 allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page...

8.8CVSS8.4AI score0.01353EPSS

Exploits0References1

OSV•added 2026/06/05 12:17 a.m.•6 views

DEBIAN-CVE-2026-11292

Insufficient policy enforcement in Blink in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass content security policy via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.5AI score0.00186EPSS

Exploits0References1

CVE•added 2026/06/04 11:6 p.m.•14 views

CVE-2026-11292

CVE-2026-11292 : A CSP bypass vulnerability in Blink used by Google Chrome prior to 149.0.7827.53 allows remote attackers to bypass content security policy through a crafted HTML page. Affected component is Blink in Chrome/Chromium; exploitation is possible over the network with user interaction ...

4.3CVSS5.8AI score0.00186EPSS

Exploits0References2Affected Software1

CVE•added 2026/06/04 11:5 p.m.•12 views

CVE-2026-11171

CVE-2026-11171 describes an integer overflow in Blink of Google Chrome, affecting the browser prior to version 149.0.7827.53. This vulnerability could allow a remote attacker to execute arbitrary code inside the sandbox via a crafted HTML page. The available references indicate a Chrome stable-ch...

8.8CVSS6.3AI score0.0028EPSS

Exploits0References2Affected Software1

Debian CVE•added 2026/05/14 7:52 p.m.•8 views

CVE-2026-8518

Use after free in Blink in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Critical...

8.8CVSS6.2AI score0.0028EPSS

Exploits0

EUVD•added 2026/05/06 9:31 p.m.•5 views

EUVD-2026-27895

Integer overflow in Blink in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

8.8CVSS5.9AI score0.00281EPSS

Exploits0References3

UbuntuCve•added 2026/05/06 7:16 p.m.•6 views

CVE-2026-7974

Use after free in Blink in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6.2AI score0.00267EPSS

Exploits0References1

Vulnrichment•added 2026/05/06 6:12 p.m.•6 views

CVE-2026-7974

Use after free in Blink in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

6.2AI score0.00267EPSS

Exploits0References2

UbuntuCve•added 2026/04/08 10:16 p.m.•4 views

CVE-2026-5878

Incorrect security UI in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS5.8AI score0.00191EPSS

Exploits0References3

Vulnrichment•added 2026/04/08 9:20 p.m.•3 views

CVE-2026-5878

Incorrect security UI in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00191EPSS

Exploits0References2

ATTACKERKB•added 2026/04/08 9:20 p.m.•1 views

CVE-2026-5875

Policy bypass in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

5.9AI score0.00189EPSS

Exploits0References3Affected Software1

Debian CVE•added 2026/04/08 9:20 p.m.•3 views

CVE-2026-5872

Use after free in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS9AI score0.00303EPSS

Exploits0

Kaspersky•added 2026/03/23 12:0 a.m.•5 views

KLA90950 Multiple vulnerabilities in Microsoft Browser

Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Base can be exploited to...

8.8CVSS6.6AI score0.00415EPSS

Exploits1References23

EUVD•added 2026/03/20 1:34 a.m.•2 views

EUVD-2026-13465

Use after free in Blink in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.8AI score0.00253EPSS

Exploits0References2

FreeBSD•added 2026/03/18 12:0 a.m.•10 views

chromium -- security fixes

Chrome Releases reports: This update includes 26 security fixes: 475877320 Critical CVE-2026-4439: Out of bounds memory access in WebGL. Reported by Goodluck on 2026-01-15 485935305 Critical CVE-2026-4440: Out of bounds read and write in WebGL. Reported by c6eed09fc8b174b0f3eebedcceb1e792 on...

8.8CVSS6.2AI score0.00415EPSS

Exploits1References1

OSV•added 2026/01/20 5:16 a.m.•3 views

CVE-2026-0901

Inappropriate implementation in Blink in Google Chrome on Android prior to 144.0.7559.59 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: High...

5.4CVSS5.8AI score

Exploits0References2