246724 matches found
CVE-2026-11136
Use after free in Canvas in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-11136
CVE-2026-11136: Use-after-free in Canvas in Google Chrome before 149.0.7827.53 allows a remote attacker to execute arbitrary code inside the sandbox via a crafted HTML page. Affected product: Google Chrome (Canvas component); root cause: use-after-free condition in Canvas handling. Impact: potent...
CVE-2026-11130
Use after free in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-11130
CVE-2026-11130 affects Google Chrome on all platforms, with a use-after-free in Media that allows remote code execution inside the sandbox via a crafted HTML page. Affects Chrome versions prior to 149.0.7827.53; the vulnerability’s impact is described as high (CVE metrics show CVSSv3.1: AV:N/AC:L...
CVE-2026-11125
Use after free in Compositing in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-11125
Use after free in Compositing in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-11118
Use after free in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-11118
Use after free in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-11118
CVE-2026-11118 : This vulnerability describes a use-after-free in WebRTC in Google Chrome prior to 149.0.7827.53. Exploitation via a crafted HTML page could allow a remote attacker to execute arbitrary code inside the Chrome sandbox. The issue, reported with Chromium as the underlying engine, is ...
CVE-2026-11117
Use after free in Views in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-11117
Use after free in Views in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-11117
CVE-2026-11117 is a use-after-free in the Views component of Google Chrome on Windows, prior to version 149.0.7827.53. The vulnerability allows a remote attacker to trigger arbitrary code execution by presenting a crafted HTML page. The underlying issue is a use-after-free flaw in the Views handl...
CVE-2026-11116
CVE-2026-11116 affects Chromoting in Google Chrome before version 149.0.7827.53. The vulnerability is a use-after-free in Chromoting that could allow a remote attacker to execute arbitrary code via malicious network traffic. The Chromium security advisory rates the risk as Medium. Affected compon...
CVE-2026-11116
Use after free in Chromoting in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via malicious network traffic. Chromium security severity: Medium...
CVE-2026-11102
Inappropriate implementation in Isolated Web Apps in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a malicious file. Chromium security severity: Medium...
CVE-2026-11102
CVE-2026-11102 affects Google Chrome’s Isolated Web Apps prior to 149.0.7827.53. The issue is described as an inappropriate implementation that allows a remote attacker to execute arbitrary code inside the sandbox via a malicious file. This indicates a sandbox escape or misuse within IWAs, enabli...
CVE-2026-11086
Inappropriate implementation in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-11086
Inappropriate implementation in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-11077
Bad cast in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...
CVE-2026-11076
Type Confusion in CSS in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...