CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

983 matches found

EUVD-2026-36351

Inappropriate implementation in Views in Google Chrome on Windows prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS5.5AI score

Exploits0References3

EUVD•added 8 hours ago•4 views

EUVD-2026-36352

Inappropriate implementation in Passwords in Google Chrome on Android prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Chromium security severity: High...

3.1CVSS5.4AI score

Exploits0References3

EUVD•added 8 hours ago•5 views

EUVD-2026-36332

Use after free in WebMIDI in Google Chrome on Windows prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

8.3CVSS5.5AI score

Exploits0References3

NVD•added yesterday•5 views

CVE-2026-12032

3.1CVSS

Exploits0References2

NVD•added yesterday•5 views

CVE-2026-12022

Race in Safe Browsing in Google Chrome on Mac prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a malicious file. Chromium security severity: High...

8.3CVSS

Exploits0References2

Vulnrichment•added yesterday•4 views

CVE-2026-12031

5.5AI score

Exploits0References2

Vulnrichment•added yesterday•3 views

CVE-2026-12025

Insufficient validation of untrusted input in Network in Google Chrome prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

5.5AI score

Exploits0References2

Cvelist•added yesterday•10 views

CVE-2026-12015

Use after free in Autofill in Google Chrome prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: High...

Exploits0References2

CVE•added yesterday•11 views

CVE-2026-12010

Heap buffer overflow in the GPU component of Google Chrome on Android (vulnerable before 149.0.7827.115) could allow a remote attacker who has compromised the renderer process to potentially escape the sandbox via a crafted HTML page. The issue affects Chrome on Android and is classified as Criti...

8.3CVSS5.8AI score

Exploits0References2

SUSE CVE•added 2 days ago•3 views

SUSE CVE-2026-11682

Inappropriate implementation in Views in Google Chrome on Linux prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS5.5AI score0.0009EPSS

Exploits0References3

SUSE CVE•added 2 days ago•4 views

SUSE CVE-2026-11686

Insufficient validation of untrusted input in Dawn in Google Chrome on macOS prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

3.1CVSS5.5AI score0.00033EPSS

Exploits0References3

NVD•added 3 days ago•6 views

CVE-2026-9279

Logseq exposes an IPC handler that allows the renderer process to execute shell commands. While an allowlist restricts the command name e.g. git, pandoc, grep, the argument string is concatenated with the command and passed to childprocess.spawn with the shell: true option, allowing shell...

8.7CVSS0.00085EPSS

Exploits0References2

EUVD•added 3 days ago•5 views

EUVD-2026-35272

Heap buffer overflow in GPU in Google Chrome on Android prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00062EPSS

Exploits0References3

EUVD•added 3 days ago•7 views

EUVD-2026-35247

Use after free in Printing in Google Chrome on Android prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS5.5AI score0.00108EPSS

Exploits0References3

OSV•added 3 days ago•3 views

DEBIAN-CVE-2026-11692

Use after free in Read Anything in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS5.5AI score0.00068EPSS

Exploits0References1

OSV•added 3 days ago•4 views

DEBIAN-CVE-2026-11672

8.3CVSS5.8AI score0.00062EPSS

Exploits0References1

NVD•added 3 days ago•5 views

CVE-2026-11676

Insufficient validation of untrusted input in Dawn in Google Chrome on Linux and ChromeOS prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS0.0009EPSS

Exploits0References2

OSV•added 3 days ago•3 views

DEBIAN-CVE-2026-11642

Use after free in Web Apps in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

8.3CVSS5.5AI score0.001EPSS

Exploits0References1

Cvelist•added 4 days ago•33 views

CVE-2026-11692

0.00068EPSS

Exploits0References2

Vulnrichment•added 4 days ago•4 views

CVE-2026-11692

5.5AI score0.00068EPSS

Exploits0References2

Rows per page