CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

58 matches found

EUVD-2026-34616

Inappropriate implementation in CSS in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00035EPSS

Exploits0References3

EUVD•added yesterday•4 views

EUVD-2026-34466

Inappropriate implementation in Link Preview in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00016EPSS

Exploits0References3

EUVD•added yesterday•3 views

EUVD-2026-34469

Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted XML file. Chromium security severity: Medium...

5.8AI score0.00035EPSS

Exploits0References3

NVD•added 2 days ago•2 views

CVE-2026-11153

Side-channel information leakage in Forms in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

9.1CVSS0.00035EPSS

Exploits0References2

OSV•added 2 days ago•2 views

DEBIAN-CVE-2026-11121

Insufficient validation of untrusted input in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.5AI score0.00047EPSS

Exploits0References1

OSV•added 2 days ago•2 views

DEBIAN-CVE-2026-11106

Inappropriate implementation in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.5AI score0.00035EPSS

Exploits0References1

NVD•added 2 days ago•2 views

CVE-2026-11020

Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted XML file. Chromium security severity: Medium...

0.00035EPSS

Exploits0References2

ATTACKERKB•added 2 days ago•4 views

CVE-2026-11156

Inappropriate implementation in CSS in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00035EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2 days ago•3 views

CVE-2026-11138

Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.5AI score0.00035EPSS

Exploits0References2

Vulnrichment•added 2 days ago•3 views

CVE-2026-11134

Inappropriate implementation in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.5AI score0.00035EPSS

Exploits0References2

Debian CVE•added 2 days ago•3 views

CVE-2026-11066

Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

9.6CVSS5.5AI score0.00047EPSS

Exploits0

Debian CVE•added 2 days ago•2 views

CVE-2026-11044

Integer overflow in ANGLE in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.5AI score0.00035EPSS

Exploits0

CVE•added 2 days ago•4 views

CVE-2026-11040

Summary : CVE-2026-11040 describes a use-after-free in ANGLE used by Google Chrome/Chromium prior to 149.0.7827.53. If a renderer process is compromised, an attacker could potentially escape the sandbox by loading a crafted HTML page. The vulnerability is categorized with a Chromium security seve...

8.3CVSS5.8AI score0.00035EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2 days ago•5 views

PT-2026-46536

Insufficient validation of untrusted input in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00043EPSS

Exploits0References3

Positive Technologies•added 2 days ago•6 views

PT-2026-46654

Inappropriate implementation in WebAPKs in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform domain spoofing via a crafted WebAPK. Chromium security severity: Medium...

5.8AI score0.00032EPSS

Exploits0References3

NVD•added 2026/05/14 8:17 p.m.•8 views

CVE-2026-8570

Type Confusion in V8 in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.0003EPSS

Exploits0References2

EUVD•added 2026/05/14 7:52 p.m.•4 views

EUVD-2026-30382

Integer overflow in ANGLE in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS5.9AI score0.00041EPSS

Exploits0References2

SUSE CVE•added 2026/05/08 2:26 a.m.•5 views

SUSE CVE-2026-7962

Insufficient policy enforcement in DirectSockets in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to perform arbitrary read/write via a crafted Chrome Extension. Chromium security severity: Medium...

5.4CVSS5.9AI score0.00045EPSS

Exploits0References3

EUVD•added 2026/05/06 9:31 p.m.•0 views

EUVD-2026-28059

Inappropriate implementation in Companion in Google Chrome on Mac prior to 148.0.7778.96 allowed a remote attacker to perform OS-level privilege escalation via malicious network traffic. Chromium security severity: Medium...

8.1CVSS5.8AI score0.00119EPSS

Exploits0References3

Cvelist•added 2026/05/06 6:13 p.m.•26 views

CVE-2026-7994

Inappropriate implementation in Chromoting in Google Chrome on Windows prior to 148.0.7778.96 allowed a local attacker to perform OS-level privilege escalation via a malicious file. Chromium security severity: Medium...

0.00005EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by