CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Debian CVE•added 2026/05/14 7:52 p.m.•7 views

CVE-2026-8524

Out of bounds write in WebAudio in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.2AI score0.00383EPSS

ATTACKERKB•added 2026/05/14 7:52 p.m.•11 views

CVE-2026-8523

Use after free in Mojo in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

CVE•added 2026/05/14 7:52 p.m.•14 views

CVE-2026-8523

CVE-2026-8523 : A use-after-free in Mojo within Google Chrome’s renderer can allow a remote attacker who has compromised the renderer to escape the sandbox via a crafted HTML page. Affected: Chrome (Mojo/renderer). Impact per sources: high. Root cause: use-after-free in Mojo. Exploitation context...

Exploits0References2Affected Software1

EUVD•added 2026/05/14 7:52 p.m.•7 views

EUVD-2026-30438

Cvelist•added 2026/05/14 7:52 p.m.•27 views

CVE-2026-8523

0.00207EPSS

Vulnrichment•added 2026/05/14 7:52 p.m.•5 views

CVE-2026-8523

5.8AI score0.00207EPSS

Debian CVE•added 2026/05/14 7:52 p.m.•6 views

CVE-2026-8523

CVE•added 2026/05/14 7:52 p.m.•16 views

CVE-2026-8520

CVE-2026-8520 : A race in the Payments component of Google Chrome before version 148.0.7778.168 could allow a remote attacker to potentially escape the sandbox via a crafted HTML page. The vulnerability is described as critical in Chromium, with a network attack vector and high impact on confiden...

Exploits0References2Affected Software1

ATTACKERKB•added 2026/05/14 7:52 p.m.•7 views

CVE-2026-8518

Use after free in Blink in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Critical...

8.8CVSS6.2AI score0.0028EPSS

ATTACKERKB•added 2026/05/14 7:52 p.m.•3 views

CVE-2026-8520

Race in Payments in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

EUVD•added 2026/05/14 7:52 p.m.•4 views

EUVD-2026-30430

Use after free in Blink in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Critical...

8.8CVSS6.2AI score0.0028EPSS

Vulnrichment•added 2026/05/14 7:52 p.m.•5 views

CVE-2026-8520

Race in Payments in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

5.8AI score0.00166EPSS

EUVD•added 2026/05/14 7:52 p.m.•5 views

EUVD-2026-30432

Race in Payments in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

Cvelist•added 2026/05/14 7:52 p.m.•28 views

CVE-2026-8520

Race in Payments in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

0.00166EPSS

Debian CVE•added 2026/05/14 7:52 p.m.•6 views

CVE-2026-8520

Race in Payments in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

CVE•added 2026/05/14 7:52 p.m.•11 views

CVE-2026-8515

CVE-2026-8515 is a use-after-free in HID handling in Google Chrome prior to 148.0.7778.168 that could allow a remote attacker to cause a sandbox escape when a user interacts with a crafted HTML page via specific UI gestures. Affected software is Chrome/Chromium, with the vulnerability rooted in u...

Exploits0References2Affected Software1

ATTACKERKB•added 2026/05/14 7:52 p.m.•3 views

CVE-2026-8515

Use after free in HID in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

5.8AI score0.00207EPSS

Vulnrichment•added 2026/05/14 7:52 p.m.•6 views

CVE-2026-8515

5.8AI score0.00207EPSS

EUVD•added 2026/05/14 7:52 p.m.•5 views

EUVD-2026-30429

Use after free in Aura in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...