CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added yesterday•2 views

CVE-2026-10918

8.3CVSS

CVE•added yesterday•6 views

CVE-2026-10918

CVE-2026-10918 describes a use-after-free in Viz for Google Chrome that could let a renderer-compromised attacker perform a sandbox escape via a crafted HTML page before Chrome 149.0.7827.53. Affected product/version: Google Chrome (Viz), prior to 149.0.7827.53. Root cause: use-after-free in Viz ...

8.3CVSS5.8AI score

Vulnrichment•added yesterday•4 views

CVE-2026-10918

5.8AI score

Cvelist•added yesterday•18 views

CVE-2026-10918

Positive Technologies•added yesterday•5 views

PT-2026-46447

5.8AI score

vulnersOsv•added 2026/05/14 4:37 p.m.•7 views

@ardeora/start-devtools (>=1.0.0 <=1.0.1), @carvajalconsultants/headstart (>=1.0.0 <=1.0.2) +27 more potentially affected by unknown CVE via @tanstack/start-server-core (>=1.121.0-alpha.28 <=1.167.3)

@tanstack/start-server-core NPM version =1.121.0-alpha.28, =1.0.0, =1.0.0, =0.0.14, =1.20.3-alpha.1, =1.111.10, =1.121.23, =0.0.1, =1.121.0-alpha.28, =1.20.3-alpha.1, =1.114.29, =1.121.23, =1.121.0-alpha.28, =1.97.4, =1.111.10, =1.121.0-alpha.28, =1.169.18 and more Source cves: unknown CVE Source...

5.8AI score

Microsoft CVE•added 2026/04/17 2:0 p.m.•1 views

Chromium: CVE-2026-6309 Use after free in Viz

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.3CVSS5.7AI score0.00045EPSS

SUSE CVE•added 2026/04/17 12:4 p.m.•1 views

SUSE CVE-2026-6309

Use after free in Viz in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

RedhatCVE•added 2026/04/16 2:14 a.m.•0 views

CVE-2026-6309

An use after free flaw was found in the Viz component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=497846428...

9CVSS5.7AI score0.00045EPSS

Exploits0References5

CNVD•added 2026/04/16 12:0 a.m.•4 views

Google Chrome Viz Component Memory Misreference Vulnerability

Google Chrome is a web browser developed by Google. A memory misreference vulnerability exists in the Viz component of Google Chrome. The vulnerability stems from a failure of the Viz component to properly handle memory objects, which can be exploited by an attacker to potentially sandbox escape ...

EUVD•added 2026/04/15 9:30 p.m.•0 views

EUVD-2026-23060

NVD•added 2026/04/15 8:16 p.m.•1 views

CVE-2026-6309

8.3CVSS0.00045EPSS

Debian CVE•added 2026/04/15 7:4 p.m.•1 views

CVE-2026-6309

8.3CVSS5.3AI score0.00045EPSS

Vulnrichment•added 2026/04/15 7:4 p.m.•3 views

CVE-2026-6309

5.8AI score0.00045EPSS

Cvelist•added 2026/04/15 7:4 p.m.•13 views

CVE-2026-6309

0.00045EPSS

CVE•added 2026/04/15 7:4 p.m.•6 views

CVE-2026-6309

CVE-2026-6309 describes a use-after-free in Viz within Google Chrome prior to version 147.0.7727.101. If an attacker compromised the renderer process via a crafted HTML page, they could potentially perform a sandbox escape. The entry notes a high severity. Affected software/version: Google Chrome...

Exploits0References2Affected Software1

AlpineLinux•added 2026/04/15 7:4 p.m.•0 views

CVE-2026-6309

Tenable Nessus•added 2026/04/15 12:0 a.m.•0 views

Linux Distros Unpatched Vulnerability : CVE-2026-6309

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in Viz in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to potentially perform a sandb...

CNNVD•added 2026/04/15 12:0 a.m.•4 views

Google Chrome 安全漏洞