CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Out of bounds read in VideoCapture in Google Chrome prior to 149.0.7827.115 allowed a remote attacker who had compromised the GPU process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

5.3CVSS5.5AI score0.00026EPSS

Exploits0References3

Positive Technologies•added 4 days ago•7 views

PT-2026-48773

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.115 Description An inappropriate implementation in Headless mode allows a remote attacker who has compromised the renderer process to potentially perform a sandbox escape by using a crafted HTML page....

9.6CVSS5.3AI score0.00083EPSS

Exploits0References6

Chainguard•added 5 days ago•20 views

CVE-2026-11645 vulnerabilities

Vulnerabilities for packages: chromium...

8.8CVSS5.7AI score0.0589EPSS

Exploits2

Tenable Nessus•added 6 days ago•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-11676

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient validation of untrusted input in Dawn in Google Chrome on Linux and ChromeOS prior to 149.0.7827.103 allowed a remote attacker who had compromised...

8.3CVSS5.6AI score0.00106EPSS

Exploits0References2

Tenable Nessus•added 6 days ago•6 views

Linux Distros Unpatched Vulnerability : CVE-2026-11671

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in Navigation in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page...

9.6CVSS5.6AI score0.00073EPSS

Exploits0References2

Tenable Nessus•added 6 days ago•4 views

Linux Distros Unpatched Vulnerability : CVE-2026-11682

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in Views in Google Chrome on Linux prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to...

8.3CVSS5.5AI score0.00106EPSS

Exploits0References2

Debian CVE•added last week•5 views

CVE-2026-11693

Inappropriate implementation in Plugins in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Chromium security severity: High...

8.1CVSS5.4AI score0.00014EPSS

Exploits0

Positive Technologies•added 2026/06/08 12:0 a.m.•7 views

PT-2026-47468

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.103 Description A use after free issue in Web Apps allows a remote attacker who has compromised the renderer process to potentially perform a sandbox escape by using a crafted HTML page. Use after fre...

9.6CVSS6.1AI score0.0589EPSS

Exploits2References81

RedhatCVE•added 2026/06/07 4:53 a.m.•5 views

CVE-2026-11082

An use after free flaw was found in the GPU component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=500079715...

9.6CVSS5.4AI score0.00073EPSS

Exploits0References5

SUSE CVE•added 2026/06/07 4:46 a.m.•5 views

SUSE CVE-2026-11048

Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to bypass same origin policy via a crafted Chrome Extension. Chromium security severity: Medium...

6.5CVSS5.4AI score0.00007EPSS

Exploits0References2

Wolfi•added 2026/06/05 7:48 p.m.•6 views

GHSA-V4C4-Q9W7-M653 vulnerabilities

Vulnerabilities for packages: chromium...

5.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by