CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2 days ago•4 views

CVE-2026-11202

Summary: CVE-2026-11202 concerns Chrome for iOS (Google Chrome on iOS) prior to 149.0.7827.53, where an inappropriate implementation allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. The vulnerability is tied to Chromium-based behavior on iOS, with a mediu...

8.8CVSS5.8AI score0.00047EPSS

Exploits0References2Affected Software1

Debian CVE•added 2 days ago•2 views

CVE-2026-11202

Inappropriate implementation in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS5.5AI score0.00047EPSS

Cvelist•added 2 days ago•22 views

CVE-2026-11202

0.00047EPSS

CVE-2026-11202

5.8AI score0.00047EPSS

CVE-2026-11202

5.5AI score0.00047EPSS

Cvelist•added 2 days ago•22 views

CVE-2026-11198

Insufficient validation of untrusted input in Codecs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted video file. Chromium security severity: Medium...

0.00047EPSS

CVE-2026-11198

5.8AI score0.00047EPSS

CVE•added 2 days ago•6 views

CVE-2026-11198

CVE-2026-11198 describes an issue in Google Chrome where insufficient validation of untrusted input in the Codecs component could enable a remote attacker to cause a sandbox escape via a crafted video file. Affected product: Google Chrome (Chromium-based). Root cause: insufficient input validatio...

9.6CVSS5.8AI score0.00047EPSS

Exploits0References2Affected Software1

Debian CVE•added 2 days ago•2 views

CVE-2026-11198

9.6CVSS5.5AI score0.00047EPSS

CVE-2026-11198

5.5AI score0.00047EPSS

CVE-2026-11188

Use after free in USB in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00035EPSS

Cvelist•added 2 days ago•23 views

CVE-2026-11188

0.00035EPSS

Vulnrichment•added 2 days ago•4 views

CVE-2026-11188

5.5AI score0.00035EPSS

Debian CVE•added 2 days ago•2 views

CVE-2026-11188

8.8CVSS5.5AI score0.00035EPSS

CVE•added 2 days ago•5 views

CVE-2026-11188

The connected sources confirm CVE-2026-11188 is a use-after-free in the USB handling of Google Chrome on Android, prior to version 149.0.7827.53, enabling a remote attacker to potentially escape the sandbox via a crafted HTML page. Affected software: Google Chrome on Android; vulnerable component...

8.8CVSS5.8AI score0.00035EPSS

Exploits0References2Affected Software1

CVE-2026-11185

Use after free in V8 in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code inside a sandbox via a crafted Chrome Extension. Chromium security severity: Medium...

5.9AI score0.00009EPSS

Debian CVE•added 2 days ago•3 views

CVE-2026-11173

Out of bounds write in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6AI score0.0008EPSS

8.8CVSS6.2AI score0.0008EPSS

CVE-2026-11173

CVE-2026-11167

Inappropriate implementation in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

5.5AI score0.00032EPSS