CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2026/05/28 11:16 p.m.•8 views

CVE-2026-9872

Out of bounds write in GPU in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

9.6CVSS0.00271EPSS

NVD•added 2026/05/28 11:16 p.m.•6 views

CVE-2026-9877

Use after free in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

8.3CVSS0.00222EPSS

OSV•added 2026/05/28 11:16 p.m.•3 views

DEBIAN-CVE-2026-9874

Use after free in Dawn in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

9.6CVSS5.8AI score0.00234EPSS

OSV•added 2026/05/28 11:16 p.m.•3 views

DEBIAN-CVE-2026-9875

9.6CVSS5.8AI score0.00253EPSS

OSV•added 2026/05/28 11:16 p.m.•6 views

DEBIAN-CVE-2026-9877

8.3CVSS5.8AI score0.00222EPSS

OSV•added 2026/05/28 11:16 p.m.•6 views

DEBIAN-CVE-2026-10012

Use after free in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS5.8AI score0.00173EPSS

8.3CVSS5.8AI score0.00185EPSS

DEBIAN-CVE-2026-10017

Out of bounds read in Headless in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

CVE-2026-10012

8.3CVSS0.00173EPSS

NVD•added 2026/05/28 11:16 p.m.•6 views

CVE-2026-10014

Use after free in WebMIDI in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS0.00185EPSS

NVD•added 2026/05/28 11:16 p.m.•6 views

CVE-2026-10017

8.3CVSS0.00185EPSS

NVD•added 2026/05/28 11:16 p.m.•8 views

CVE-2026-10020

Insufficient validation of untrusted input in Skia in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

8.3CVSS0.00198EPSS

OSV•added 2026/05/28 11:16 p.m.•3 views

DEBIAN-CVE-2026-10014

8.3CVSS5.8AI score0.00185EPSS

8.3CVSS5.8AI score0.00198EPSS

DEBIAN-CVE-2026-10020

CVE-2026-10007

Use after free in SVG in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS0.00252EPSS

NVD•added 2026/05/28 11:16 p.m.•4 views

CVE-2026-10006

Race in WebAudio in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

7.5CVSS0.0023EPSS

CVE-2026-10001

Use after free in PerformanceManager in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS0.00173EPSS

8.3CVSS5.8AI score0.00173EPSS

DEBIAN-CVE-2026-10001

CVE-2026-10000

Use after free in Passwords in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS0.00185EPSS

8.3CVSS5.8AI score0.00185EPSS

DEBIAN-CVE-2026-10000