CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

CVE-2026-10982

CVE-2026-10982 : A use-after-free in WebXR within Google Chrome before 149.0.7827.53 allows remote code execution via a crafted HTML page in a sandbox. Affected component is WebXR in Chrome/Chromium; root cause is use-after-free. Impact is high (arbitrary code execution, sandbox break). No exploi...

8.8CVSS6.2AI score0.00077EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2026/05/28 10:25 p.m.•7 views

CVE-2026-9995

Use after free in WebXR in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

6.2AI score0.00077EPSS

Exploits0References2

CVE•added 2025/11/10 8:0 p.m.•17 views

CVE-2025-12443

CVE-2025-12443 corresponds to an out-of-bounds read in WebXR in Google Chrome/Chromium. The issue allows a remote attacker to perform an out-of-bounds memory read via a crafted HTML page. Affected component: WebXR in Chromium-based Chrome; root cause: out-of-bounds read in WebXR implementation. I...

4.3CVSS5.6AI score0.00026EPSS

Exploits0References2Affected Software1

Kaspersky•added 2025/10/31 12:0 a.m.•5 views

KLA89876 Multiple vulnerabilities in Microsoft Browser

Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to spoof user interface, cause denial of service, execute arbitrary code, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Incorrect security UI vulnerability i...

8.8CVSS8.9AI score0.00119EPSS

Exploits2References23

Tenable Nessus•added 2025/10/29 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2025-12443

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Out of bounds read in WebXR in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page...

4.3CVSS5.5AI score0.00026EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2020-7947

Malware in sbrugna...

8.8CVSS9.1AI score0.01648EPSS

Exploits0References12

OSV•added 2022/04/05 1:15 a.m.•3 views

CVE-2022-0809

Out of bounds memory access in WebXR in Google Chrome prior to 99.0.4844.51 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS9.1AI score

Exploits0References3

BDU FSTEC•added 2022/03/16 12:0 a.m.•1 views

The vulnerability of the WebXR components in Google Chrome and Microsoft Edge browsers allows a hacker to trigger a service failure.

The vulnerability of the WebXR components in Google Chrome and Microsoft Edge relates to reading beyond the buffer in memory. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

7.1CVSS8AI score0.00519EPSS

Exploits0References11Affected Software6

RedHat Linux•added 2020/08/26 2:15 p.m.•1 views

chromium-browser: Use after free in WebXR

Use after free in WebXR in Google Chrome prior to 84.0.4147.125 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

9.3CVSS7.4AI score0.22641EPSS

Exploits0References5

CNVD•added 2020/08/11 12:0 a.m.•1 views

Google Chrome Code Execution Vulnerability (CNVD-2020-49874)

Google Chrome is a web browser from Google, an American company. A security vulnerability exists in WebXR in versions prior to Google Chrome 84.0.4147.125. An attacker can exploit this vulnerability to execute arbitrary code or cause a denial of service...

9.3CVSS9.3AI score0.17688EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by