CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

280 matches found

EUVD•added 2026/05/29 12:38 a.m.•13 views

EUVD-2026-33106

Use after free in Bluetooth in Google Chrome on Mac prior to 148.0.7778.216 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension. Chromium security severity: High...

6.2AI score0.0007EPSS

Exploits0References3

OSV•added 2026/05/28 11:16 p.m.•5 views

DEBIAN-CVE-2026-9964

8.1CVSS6.2AI score0.0007EPSS

Exploits0References1

NVD•added 2026/05/28 11:16 p.m.•10 views

CVE-2026-10022

Type Confusion in V8 in Google Chrome prior to 148.0.7778.216 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code inside a sandbox via a crafted Chrome Extension. Chromium security severity: Medium...

7.5CVSS0.00021EPSS

Exploits0References2

CVE•added 2026/05/28 10:25 p.m.•21 views

CVE-2026-9891

CVE-2026-9891 is a use-after-free vulnerability in Chrome’s Extensions component (Chromium) that affects pre-148.0.7778.216 builds. The issue arises when a renderer process is compromised, potentially enabling a sandbox escape via a crafted Chrome Extension. The vulnerability is discussed across ...

9CVSS5.8AI score0.00156EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2026/05/27 12:0 a.m.•8 views

PT-2026-44578

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.216 Description A type confusion issue exists in V8, the JavaScript and WebAssembly engine. This allows an attacker to execute arbitrary code within a sandbox if a user is convinced to install a...

9.6CVSS6.2AI score0.00148EPSS

Exploits0References161

CNNVD•added 2026/05/27 12:0 a.m.•4 views

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser developed by Google Inc. In versions prior to 148.0.7778.216 for Mac, there was a resource management vulnerability. This vulnerability stemmed from the Bluetooth component reusing resources after release, which could allow attackers to execute a sandbox escape...

9CVSS5.9AI score0.00039EPSS

Exploits0References3

NVD•added 2026/05/14 8:17 p.m.•6 views

CVE-2026-8565

Inappropriate implementation in Downloads in Google Chrome on Mac prior to 148.0.7778.168 allowed an attacker who convinced a user to install a malicious extension to perform UI spoofing via a crafted Chrome Extension. Chromium security severity: Medium...

4.7CVSS0.00017EPSS

Exploits0References2

CVE•added 2026/05/14 7:52 p.m.•16 views

CVE-2026-8587

CVE-2026-8587 describes a use-after-free in Chrome’s Extensions on macOS that allows arbitrary code execution when a user is convinced to install a crafted (malicious) extension. Affected product: Google Chrome running on Mac. Vulnerable component: Extensions subsystem (use-after-free in extensio...

8.8CVSS6.2AI score0.00021EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2026/05/14 7:52 p.m.•5 views

CVE-2026-8587

Use after free in Extensions in Google Chrome on Mac prior to 148.0.7778.168 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension. Chromium security severity: Medium...

6.2AI score0.00021EPSS

Exploits0References2

ATTACKERKB•added 2026/05/14 7:52 p.m.•7 views

CVE-2026-8587

8.8CVSS6.2AI score0.00021EPSS

Exploits0References3Affected Software1

Debian CVE•added 2026/05/14 7:52 p.m.•10 views

CVE-2026-8587

8.8CVSS6.2AI score0.00021EPSS

Exploits0

EUVD•added 2026/05/14 7:52 p.m.•7 views

EUVD-2026-30384

4.7CVSS5.8AI score0.00017EPSS

Exploits0References2

ATTACKERKB•added 2026/05/14 7:52 p.m.•5 views

CVE-2026-8565

4.7CVSS5.8AI score0.00017EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2026/05/14 7:52 p.m.•5 views

CVE-2026-8565

5.8AI score0.00017EPSS

Exploits0References2

Debian CVE•added 2026/05/14 7:52 p.m.•6 views

CVE-2026-8565

4.7CVSS5.8AI score0.00017EPSS

Exploits0

EUVD•added 2026/05/06 9:31 p.m.•2 views

EUVD-2026-28119

Inappropriate implementation in DevTools in Google Chrome prior to 148.0.7778.96 allowed an attacker who convinced a user to install a malicious extension to perform UI spoofing via a crafted Chrome Extension. Chromium security severity: Low...

5.4CVSS5.8AI score0.00021EPSS

Exploits0References3

EUVD•added 2026/05/06 9:31 p.m.•1 views

EUVD-2026-27977

Insufficient policy enforcement in DevTools in Google Chrome prior to 148.0.7778.96 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension. Chromium security severity: Medium...

3.1CVSS5.8AI score0.00018EPSS

Exploits0References3

NVD•added 2026/05/06 7:16 p.m.•3 views

CVE-2026-7976

Use after free in Views in Google Chrome prior to 148.0.7778.96 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension. Chromium security severity: Medium...

7.5CVSS0.00021EPSS

Exploits0References2

NVD•added 2026/05/06 7:16 p.m.•3 views

CVE-2026-7958

Inappropriate implementation in ServiceWorker in Google Chrome prior to 148.0.7778.96 allowed an attacker who convinced a user to install a malicious extension to inject arbitrary scripts or HTML UXSS via a crafted Chrome Extension. Chromium security severity: Medium...

5.4CVSS0.00018EPSS

Exploits0References2

NVD•added 2026/05/06 7:16 p.m.•2 views

CVE-2026-7949

Out of bounds read in Skia in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted Chrome Extension. Chromium security severity: Medium...

3.1CVSS0.00034EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by