CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE-2026-11163

Use after free in Messages in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

0.00035EPSS

Debian CVE•added 2 days ago•2 views

CVE-2026-11163

9.6CVSS5.5AI score0.00035EPSS

CVE•added 2 days ago•3 views

CVE-2026-11165

CVE-2026-11165 describes a use-after-free in WebMIDI for Google Chrome on iOS, prior to version 149.0.7827.53. The vulnerability could allow a remote attacker to potentially perform a sandbox escape via a crafted HTML page. The description also notes Chromium security severity as Medium and shows...

9.6CVSS5.8AI score0.00032EPSS

CVE•added 2 days ago•4 views

CVE-2026-11158

Google Chrome on macOS is affected by CVE-2026-11158 due to insufficient validation of untrusted input in Downloads. A local attacker could potentially escape the sandbox via a crafted AppleScript command, with the issue present in versions prior to 149.0.7827.53. The vulnerability, described as ...

8.6CVSS5.8AI score0.00016EPSS

Debian CVE•added 2 days ago•3 views

CVE-2026-11158

Insufficient validation of untrusted input in Downloads in Google Chrome on Mac prior to 149.0.7827.53 allowed a local attacker to potentially perform a sandbox escape via a crafted AppleScript command. Chromium security severity: Medium...

8.6CVSS5.4AI score0.00016EPSS

CVE-2026-11158

0.00016EPSS

CVE-2026-11158

5.4AI score0.00016EPSS

ATTACKERKB•added 2 days ago•3 views

CVE-2026-11158

5.8AI score0.00016EPSS

Exploits0References3Affected Software1

CVE•added 2 days ago•4 views

CVE-2026-11154

CVE-2026-11154 affects Google Chrome (Dawn component) with a use-after-free in Dawn prior to Chrome 149.0.7827.53. The vulnerability could allow a remote attacker who has already compromised the renderer process to escape the browser sandbox via a crafted HTML page. This is a Chromium-based issue...

7.5CVSS5.8AI score0.00035EPSS

CVE-2026-11154

Use after free in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

5.5AI score0.00035EPSS

ATTACKERKB•added 2 days ago•4 views

CVE-2026-11154

5.8AI score0.00035EPSS

Exploits0References3Affected Software1

CVE-2026-11154

0.00035EPSS

Debian CVE•added 2 days ago•2 views

CVE-2026-11154

7.5CVSS5.5AI score0.00035EPSS

CVE-2026-11151

Insufficient validation of untrusted input in Password Manager in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

0.00047EPSS

Debian CVE•added 2 days ago•2 views

CVE-2026-11152

Object lifecycle issue in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

9.6CVSS5.5AI score0.00035EPSS

CVE-2026-11151

5.5AI score0.00047EPSS

CVE-2026-11152

Object lifecycle issue in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

5.5AI score0.00035EPSS

ATTACKERKB•added 2 days ago•3 views

CVE-2026-11151

5.8AI score0.00047EPSS

Exploits0References3Affected Software1

CVE-2026-11152

Object lifecycle issue in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

0.00035EPSS