CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

73589 matches found

EUVD-2026-34599

Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.8AI score

Exploits0References3

EUVD•added 5 hours ago•3 views

EUVD-2026-34600

Inappropriate implementation in Paint in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.8AI score

Exploits0References3

EUVD•added 5 hours ago•3 views

EUVD-2026-34500

Out of bounds read in ANGLE in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

5.8AI score

Exploits0References3

EUVD•added 5 hours ago•3 views

EUVD-2026-34426

Uninitialized Use in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

5.8AI score

Exploits0References3

NVD•added 6 hours ago•3 views

CVE-2026-11247

Insufficient policy enforcement in CustomTabs in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

Exploits0References2

NVD•added yesterday•4 views

CVE-2026-11212

Insufficient policy enforcement in DevTools in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. Chromium security severity: Medium...

Exploits0References2

NVD•added yesterday•3 views

CVE-2026-11196

Type Confusion in XML in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted XML file. Chromium security severity: Medium...

Exploits0References2

NVD•added yesterday•2 views

CVE-2026-11168

Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

Exploits0References2

NVD•added yesterday•3 views

CVE-2026-11145

Race in Geolocation in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

Exploits0References2

NVD•added yesterday•3 views

CVE-2026-11141

Uninitialized Use in Audio in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

Exploits0References2

NVD•added yesterday•2 views

CVE-2026-11123

Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

Exploits0References2

NVD•added yesterday•2 views

CVE-2026-11121

Insufficient validation of untrusted input in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

Exploits0References2

NVD•added yesterday•3 views

CVE-2026-10994

Exploits0References2

NVD•added yesterday•4 views

CVE-2026-10973

Uninitialized Use in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

Exploits0References2

CVE•added yesterday•5 views

CVE-2026-11242

CVE-2026-11242 describes insufficient validation of untrusted input in Google Chrome’s Plugins, prior to version 149.0.7827.53. A remote attacker who has compromised the renderer process could leak cross-origin data via a crafted HTML page. Affected software: Google Chrome (Chromium-based). Root ...

5.8AI score

Exploits0References2

CVE•added yesterday•6 views

CVE-2026-11203

CVE-2026-11203 concerns Google Chrome on macOS with an inappropriate GPU implementation that, prior to version 149.0.7827.53, could allow a remote attacker to leak cross-origin data via a crafted HTML page. This is a GPU-related issue in Chrome’s rendering path, enabling an attacker to exfiltrate...

5.8AI score

Exploits0References2

ATTACKERKB•added yesterday•3 views

CVE-2026-11203

Inappropriate implementation in GPU in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.8AI score

Exploits0References3Affected Software1

ATTACKERKB•added yesterday•3 views

CVE-2026-11194

Inappropriate implementation in Network in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.8AI score

Exploits0References3Affected Software1

CVE•added yesterday•6 views

CVE-2026-11182

The CVE-2026-11182 entry describes an Inappropriate implementation in SVG in Google Chrome, before version 149.0.7827.53, that could allow a remote attacker to leak cross-origin data via a crafted HTML page. Affected software is Google Chrome (SVG handling in Chromium-derived components). The roo...

5.8AI score

Exploits0References2

Cvelist•added yesterday•8 views

CVE-2026-11162

Inappropriate implementation in CSS in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by