CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2073 matches found

EUVD-2026-34597

Use after free in Canvas in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6.2AI score

Exploits0References3

EUVD•added 12 hours ago•5 views

EUVD-2026-34529

Inappropriate implementation in Canvas in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: Medium...

5.8AI score

Exploits0References3

NVD•added yesterday•3 views

CVE-2026-11136

Use after free in Canvas in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS

Exploits0References2

NVD•added yesterday•3 views

CVE-2026-11081

Inappropriate implementation in Canvas in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: Medium...

Exploits0References2

Vulnrichment•added yesterday•3 views

CVE-2026-11136

Use after free in Canvas in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

6.2AI score

Exploits0References2

Cvelist•added yesterday•13 views

CVE-2026-11136

Use after free in Canvas in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

Exploits0References2

CVE•added yesterday•5 views

CVE-2026-11136

CVE-2026-11136: Use-after-free in Canvas in Google Chrome before 149.0.7827.53 allows a remote attacker to execute arbitrary code inside the sandbox via a crafted HTML page. Affected product: Google Chrome (Canvas component); root cause: use-after-free condition in Canvas handling. Impact: potent...

8.8CVSS6.2AI score

Exploits0References2

Cvelist•added yesterday•12 views

CVE-2026-11081

Inappropriate implementation in Canvas in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: Medium...

Exploits0References2

CVE•added yesterday•5 views

CVE-2026-11081

Chrome earlier than 149.0.7827.53 has an inappropriate Canvas implementation that allowed a remote attacker to bypass the same-origin policy via a crafted HTML page. Affected software: Google Chrome (Canvas). Root cause: insecure Canvas handling enabling cross-origin bypass. Impact: potential rem...

5.8AI score

Exploits0References2

Positive Technologies•added yesterday•5 views

PT-2026-46663

Use after free in Canvas in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

6.2AI score

Exploits0References3

Positive Technologies•added yesterday•5 views

PT-2026-46609

Inappropriate implementation in Canvas in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: Medium...

5.8AI score

Exploits0References3

Mageia•added 3 days ago•9 views

Updated libcaca packages fix security vulnerability

Heap OOB write in canvas import functions caused by int overflow. CVE-2026-42046...

7.8CVSS5.9AI score0.00086EPSS

Exploits0References4

OSV•added 3 days ago•5 views

MGASA-2026-0171 Updated libcaca packages fix security vulnerability

Heap OOB write in canvas import functions caused by int overflow. CVE-2026-42046...

7.8CVSS5.8AI score0.00086EPSS

Exploits0References5

NVD•added last week•10 views

CVE-2026-49386