CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Debian CVE•added 5 days ago•5 views

CVE-2026-13032

9.6CVSS5.9AI score0.00217EPSS

Cvelist•added 5 days ago•27 views

CVE-2026-13028

0.00217EPSS

AstraLinux•added 2026/06/19 11:10 a.m.•7 views

Astra Linux – Vulnerability in Firefox and Thunderbird

A compromised web process was able to trigger unauthorized reads and writes in a more privileged process by using manipulated WebGL textures. This vulnerability has been fixed in Firefox 144, Firefox ESR 115.29, Firefox ESR 140.4, Thunderbird 144, and Thunderbird 140.4...

9.8CVSS5.7AI score0.00385EPSS

NVD•added 2026/06/12 10:16 p.m.•10 views

CVE-2026-41157

A web page that contains unusual WebGPU content loaded into the GPU GLES render process and can trigger an out-of-bound write in the GPU user-space driver, leading to memory corruption and possible browser/GPU process crash. The software computes a required memory size from untrusted input, but...

9.8CVSS0.00358EPSS

Exploits0References1

EUVD•added 2026/06/05 12:31 a.m.•8 views

EUVD-2026-34521

Use after free in WebGL in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00229EPSS

Microsoft CVE•added 2026/05/31 2:0 p.m.•11 views

Chromium: CVE-2026-9876 Use after free in WebGL

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

9.6CVSS5.8AI score0.00243EPSS

Microsoft CVE•added 2026/05/29 11:20 p.m.•18 views

Chromium: CVE-2026-9929 Inappropriate implementation in WebGL

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS5.8AI score0.00209EPSS

EUVD•added 2026/05/29 12:38 a.m.•12 views

EUVD-2026-33085

Out of bounds read in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00209EPSS

EUVD•added 2026/05/29 12:38 a.m.•15 views

EUVD-2026-33224

Inappropriate implementation in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

5.8AI score0.00209EPSS

EUVD•added 2026/05/29 12:38 a.m.•13 views

EUVD-2026-33171

Use after free in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

5.8AI score0.00243EPSS

OSV•added 2026/05/28 11:16 p.m.•7 views

DEBIAN-CVE-2026-9880

Insufficient validation of untrusted input in WebGL in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

8.3CVSS5.8AI score0.00228EPSS

Exploits0References1

Cvelist•added 2026/05/28 10:25 p.m.•35 views

CVE-2026-9943

Out of bounds read in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

0.00209EPSS

Vulnrichment•added 2026/05/28 10:25 p.m.•10 views

CVE-2026-9929

5.8AI score0.00209EPSS

AlpineLinux•added 2026/05/28 10:25 p.m.•5 views

CVE-2026-9919

Out of bounds read in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

4.3CVSS5.5AI score0.00218EPSS

CVE•added 2026/05/28 10:25 p.m.•27 views

CVE-2026-9917

CVE-2026-9917 involves an uninitialized use flaw in the WebGL component of Google Chrome for Android. The issue, reported as affecting Chrome on Android prior to version 148.0.7778.216, could allow a remote attacker to read potentially sensitive information from a process’s memory via a crafted H...

6.5CVSS5.8AI score0.0027EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2026/05/28 12:0 a.m.•11 views

PT-2026-44585

Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 148.0.7778.216 Description A use after free issue in WebGL allows a remote attacker to potentially perform a sandbox escape by using a crafted HTML page. Use after free is a memory corruption flaw tha...

9.6CVSS5.8AI score0.00355EPSS

Exploits0References160

CNNVD•added 2026/05/27 12:0 a.m.•11 views

Google Chrome on Android 安全漏洞

Google Chrome on Android is a web browser in the Android operating system developed by Google Inc. Versions prior to 148.0.7778.216 of Google Chrome on Android had a security vulnerability. This vulnerability stemmed from the WebGL component not being initialized properly, which could allow remot...

6.5CVSS5.8AI score0.0027EPSS

CNNVD•added 2026/05/27 12:0 a.m.•17 views

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser developed by Google Inc. In versions of Google Chrome on Android prior to 148.0.7778.216, there was a resource management vulnerability. This vulnerability stemmed from the WebGL component’s tendency to reuse resources after they were released, which could allow...

9.6CVSS5.9AI score0.00243EPSS

CNNVD•added 2026/05/27 12:0 a.m.•10 views

Google Chrome 输入验证错误漏洞

Google Chrome is a web browser developed by Google Inc. Versions of Google Chrome prior to 148.0.7778.216 contained a vulnerability related to input validation. This vulnerability stemmed from insufficient validation of untrusted inputs by the WebGL component, which could allow a remote attacker...

8.3CVSS5.9AI score0.00228EPSS