246447 matches found
CVE-2026-10957
CVE-2026-10957 describes a use-after-free in Glic within Google Chrome prior to 149.0.7827.53 . A remote attacker could execute arbitrary code inside the sandbox via a crafted HTML page. The description indicates a high-severity Chromium issue. The vulnerability affects Chrome versions older than...
CVE-2026-10956
Use after free in MimeHandlerView in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...
CVE-2026-10956
CVE-2026-10956 : Use-after-free in Chrome’s MimeHandlerView allows a remote attacker to execute arbitrary code inside the sandbox via a crafted HTML page. Affected: Google Chrome (MimeHandlerView). Root cause: use-after-free condition in handling MIME content. Impact: arbitrary code execution wit...
CVE-2026-10954
CVE-2026-10954 describes a use-after-free in the Chrome component “Actor,” allowing a remote attacker to execute arbitrary code inside the Chrome sandbox via a crafted HTML page. Affected software: Google Chrome prior to version 149.0.7827.53 . Impact: remote code execution in sandbox context. Mi...
CVE-2026-10954
Use after free in Actor in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...
CVE-2026-10947
Use after free in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...
CVE-2026-10947
Affected software: Google Chrome. The CVE-2026-10947 describes a use-after-free in WebRTC that affects Chrome versions prior to 149.0.7827.53. Root cause: use-after-free in WebRTC code path exploited via a crafted HTML page. Impact: remote attacker could execute arbitrary code inside Chrome’s san...
CVE-2026-10948
Use after free in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...
CVE-2026-10945
Use after free in PDF in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code inside a sandbox via a crafted PDF file. Chromium security severity: High...
CVE-2026-10946
CVE-2026-10946 describes a heap buffer overflow in Chrome’s Media component before version 149.0.7827.53. A remote attacker could entice a user to perform specific UI gestures on a crafted HTML page to execute arbitrary code within Chrome’s sandbox. The NVD/CVE records confirm the issue and its i...
CVE-2026-10946
Heap buffer overflow in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...
CVE-2026-10945
CVE-2026-10945 describes a use-after-free in Chrome’s PDF handling prior to 149.0.7827.53. A remote attacker could convince a user to perform specific UI gestures, leading to arbitrary code execution inside a sandbox via a crafted PDF file. Affected software is Google Chrome (Chromium-based); exa...
CVE-2026-10943
CVE-2026-10943 describes a use-after-free in WebRTC within Google Chrome prior to version 149.0.7827.53, allowing a remote attacker to execute arbitrary code inside the sandbox via a crafted HTML page. Affected product: Google Chrome (WebRTC component). Root cause: use-after-free in WebRTC. Impac...
CVE-2026-10941
Out of bounds memory access in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...
CVE-2026-10941
Out of bounds memory access in Skia within Google Chrome (prior to 149.0.7827.53) could allow a remote attacker to execute arbitrary code in the sandbox via a crafted HTML page. Affected product: Google Chrome; component: Skia. Severity: High. Root cause: memory access error in Skia that arises b...
CVE-2026-10939
Use after free in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...
CVE-2026-10939
CVE-2026-10939 describes a use-after-free in WebRTC within Google Chrome before version 149.0.7827.53, enabling a remote attacker to execute arbitrary code inside the browser sandbox via a crafted HTML page. Affected product is Google Chrome; underlying issue is a WebRTC use-after-free (details n...
CVE-2026-10936
CVE-2026-10936 : Type Confusion in V8 within Google Chrome (pre-149.0.7827.53) allows remote attackers to execute arbitrary code inside the sandbox via a crafted HTML page. Affected product/component: Google Chrome, using the V8 JavaScript engine. Root cause: type confusion in V8 as stated in the...
CVE-2026-10935
CVE-2026-10935: Type Confusion in V8 in Google Chrome prior to 149.0.7827.53 allows a remote attacker to execute arbitrary code inside the sandbox via a crafted HTML page. This affects Google Chrome's V8 engine before the specified version. Practical impact is high, as code execution occurs in th...
CVE-2026-10935
Type Confusion in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...