CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7481 matches found

DEBIAN-CVE-2026-10946

Heap buffer overflow in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

7.5CVSS6.3AI score0.00071EPSS

Exploits0References1

NVD•added 4 days ago•4 views

CVE-2026-10945

Use after free in PDF in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code inside a sandbox via a crafted PDF file. Chromium security severity: High...

8.8CVSS0.0008EPSS

Exploits0References2

OSV•added 4 days ago•4 views

DEBIAN-CVE-2026-10942

Inappropriate implementation in UI in Google Chrome on Windows prior to 149.0.7827.53 allowed a local attacker to perform privilege escalation via a malicious file. Chromium security severity: High...

7.8CVSS5.4AI score0.00007EPSS

Exploits0References1

NVD•added 4 days ago•4 views

CVE-2026-10942

7.8CVSS0.00007EPSS

Exploits0References2

OSV•added 4 days ago•4 views

DEBIAN-CVE-2026-10922

Insufficient validation of untrusted input in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass same origin policy via malicious network traffic. Chromium security severity: High...

8.8CVSS5.5AI score0.00046EPSS

Exploits0References1

NVD•added 4 days ago•4 views

CVE-2026-10922

8.8CVSS0.00046EPSS

Exploits0References2

NVD•added 4 days ago•6 views

CVE-2026-10872

A vulnerability was found in Shibby Tomato 1.28.0000. This issue affects the function startvpnserver of the file /sbin/rc of the component Web UI. Performing a manipulation results in os command injection. The attack can be initiated remotely. The exploit has been made public and could be used...

8.6CVSS0.00129EPSS

Exploits0References6

Vulnrichment•added 4 days ago•4 views

CVE-2026-11309

Insufficient policy enforcement in History in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

5.5AI score0.00013EPSS

Exploits0References2

ATTACKERKB•added 4 days ago•4 views

CVE-2026-11309

Insufficient policy enforcement in History in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

5.5AI score0.00013EPSS

Exploits0References3Affected Software1

Cvelist•added 4 days ago•34 views

CVE-2026-11294

Inappropriate implementation in Passwords in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

0.00022EPSS

Exploits0References2

Vulnrichment•added 4 days ago•5 views

CVE-2026-11280

Inappropriate implementation in Signin in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

5.5AI score0.00025EPSS

Exploits0References2

ATTACKERKB•added 4 days ago•4 views

CVE-2026-11273

Insufficient validation of untrusted input in Omnibox in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: Low...

6.1CVSS5.6AI score0.00025EPSS

Exploits0References3Affected Software1

ATTACKERKB•added 4 days ago•4 views

CVE-2026-11271

Inappropriate implementation in Passwords in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

6.5CVSS5.5AI score0.00028EPSS

Exploits0References3Affected Software1

Vulnrichment•added 4 days ago•5 views

CVE-2026-11271

5.5AI score0.00028EPSS

Exploits0References2

Cvelist•added 4 days ago•32 views

CVE-2026-11270

Inappropriate implementation in UI in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

0.00014EPSS

Exploits0References2

Debian CVE•added 4 days ago•5 views

CVE-2026-11271

6.5CVSS5.5AI score0.00028EPSS

Exploits0

Vulnrichment•added 4 days ago•6 views

CVE-2026-11254

Inappropriate implementation in Permissions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

5.5AI score0.00017EPSS

Exploits0References2

Debian CVE•added 4 days ago•4 views

CVE-2026-11228

Inappropriate implementation in File Input in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.5AI score0.00022EPSS

Exploits0

Cvelist•added 4 days ago•23 views

CVE-2026-11228

0.00022EPSS

Exploits0References2

Cvelist•added 4 days ago•26 views

CVE-2026-11225

Inappropriate implementation in WebUI in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform domain spoofing via a crafted domain name. Chromium security severity: Low...

0.0002EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by