Lucene search
K

364879 matches found

NVD
NVD
•added 2026/06/05 12:17 a.m.•10 views

CVE-2026-11306

Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. Chromium security severity: Low...

8.8CVSS0.00224EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•12 views

CVE-2026-11307

Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. Chromium security severity: Low...

8.8CVSS0.00228EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•15 views

CVE-2026-11308

Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to perform privilege escalation via a crafted Chrome Extension. Chromium security severity: Low...

6.3CVSS0.00099EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•10 views

CVE-2026-11294

Inappropriate implementation in Passwords in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.3CVSS0.00154EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•11 views

CVE-2026-11295

Inappropriate implementation in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform privilege escalation via a crafted HTML page. Chromium security severity: Low...

8.8CVSS0.00206EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•11 views

CVE-2026-11296

Inappropriate implementation in ImageCapture in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via a crafted HTML page. Chromium security severity: Low...

7.5CVSS0.00175EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•10 views

CVE-2026-11297

Insufficient validation of untrusted input in Reader Mode in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to bypass navigation restrictions via a malicious file. Chromium security severity: Low...

7.7CVSS0.00091EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•14 views

CVE-2026-11298

Inappropriate implementation in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: Low...

4.3CVSS0.00159EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•14 views

CVE-2026-11299

Integer overflow in Fonts in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Low...

6.5CVSS0.00198EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•14 views

CVE-2026-11300

Inappropriate implementation in Permissions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.3CVSS0.00154EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•9 views

CVE-2026-11301

Inappropriate implementation in LiveCaption in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform out of bounds memory access via malicious network traffic. Chromium security severity: Low...

8.8CVSS0.00209EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•11 views

CVE-2026-11286

Insufficient validation of untrusted input in Wallet in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.3CVSS0.00154EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•25 views

CVE-2026-11287

Insufficient policy enforcement in Navigation in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...

6.5CVSS0.00233EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•13 views

CVE-2026-11288

Insufficient policy enforcement in CSS in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

6.5CVSS0.00197EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•12 views

CVE-2026-11289

Side-channel information leakage in Paint in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

6.5CVSS0.00197EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•11 views

CVE-2026-11290

Integer overflow in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to cause a denial of service via a malicious file. Chromium security severity: Low...

5CVSS0.00066EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•12 views

CVE-2026-11291

Inappropriate implementation in Android Autofill in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: Low...

4.3CVSS0.00159EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•10 views

CVE-2026-11292

Insufficient policy enforcement in Blink in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass content security policy via a crafted HTML page. Chromium security severity: Low...

4.3CVSS0.00186EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•12 views

CVE-2026-11293

Use after free in Input in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Low...

9.6CVSS0.00202EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•11 views

CVE-2026-11279

Out of bounds read in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Low...

8.8CVSS0.00291EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•17 views

CVE-2026-11280

Inappropriate implementation in Signin in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.3CVSS0.00183EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•15 views

CVE-2026-11281

Integer overflow in Chromoting in Google Chrome on Windows prior to 149.0.7827.53 allowed a local attacker to obtain potentially sensitive information from process memory via a crafted ETW event. Chromium security severity: Low...

5CVSS0.00085EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•14 views

CVE-2026-11282

Insufficient policy enforcement in Sandbox in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Low...

9.6CVSS0.00243EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•12 views

CVE-2026-11283

Insufficient validation of untrusted input in Shortcuts in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a malicious file. Chromium security severity: Low...

6.5CVSS0.002EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•10 views

CVE-2026-11284

Side-channel information leakage in PerformanceAPIs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

6.5CVSS0.00237EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•15 views

CVE-2026-11285

Inappropriate implementation in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.3CVSS0.00183EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•12 views

CVE-2026-11270

Inappropriate implementation in UI in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

6.5CVSS0.00187EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•12 views

CVE-2026-11271

Inappropriate implementation in Passwords in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

6.5CVSS0.00229EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•15 views

CVE-2026-11272

Insufficient validation of untrusted input in Reading List in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform privilege escalation via a crafted HTML page. Chromium security severity: Low...

8.8CVSS0.00234EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•15 views

CVE-2026-11273

Insufficient validation of untrusted input in Omnibox in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: Low...

6.1CVSS0.00159EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•15 views

CVE-2026-11274

Inappropriate implementation in DOM Distiller in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...

4.3CVSS0.00175EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•14 views

CVE-2026-11275

Inappropriate implementation in Page Info in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...

6.5CVSS0.00201EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•12 views

CVE-2026-11276

Inappropriate implementation in Cast in Google Chrome prior to 149.0.7827.53 allowed an attacker on the local network segment to bypass discretionary access control via malicious network traffic. Chromium security severity: Low...

5.1CVSS0.0008EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•13 views

CVE-2026-11277

Insufficient policy enforcement in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to bypass discretionary access control via a crafted HTML page. Chromium security severity: Low...

4.3CVSS0.00213EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•12 views

CVE-2026-11278

Inappropriate implementation in CustomTabs in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

6.5CVSS0.00142EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•15 views

CVE-2026-11263

Insufficient policy enforcement in WebAuthentication in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

6.5CVSS0.00256EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•18 views

CVE-2026-11264

Policy bypass in Content Security Policy in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass content security policy via a crafted HTML page. Chromium security severity: Low...

4.3CVSS0.00182EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•14 views

CVE-2026-11265

Inappropriate implementation in Autofill in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

7.5CVSS0.00203EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•14 views

CVE-2026-11266

Inappropriate implementation in SafeBrowsing in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass Safe Browsing via a malicious file. Chromium security severity: Low...

4.3CVSS0.00168EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•12 views

CVE-2026-11267

Insufficient policy enforcement in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to bypass content security policy via a crafted Chrome Extension. Chromium security severity: Low...

4.3CVSS0.00139EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•12 views

CVE-2026-11268

Uninitialized Use in ANGLE in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

6.5CVSS0.0025EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•14 views

CVE-2026-11269

Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker in a privileged network position to execute arbitrary code inside a sandbox via a crafted Chrome Extension. Chromium security severity: Low...

7.1CVSS0.00102EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•9 views

CVE-2026-11255

Insufficient validation of untrusted input in Storage Access API in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

7.5CVSS0.00264EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•11 views

CVE-2026-11256

Integer overflow in GPU in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Low...

8.3CVSS0.00212EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•8 views

CVE-2026-11257

Inappropriate implementation in Browser in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...

4.3CVSS0.00189EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•13 views

CVE-2026-11258

Inappropriate implementation in File System Access in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass discretionary access control via a crafted HTML page. Chromium security severity: Low...

6.5CVSS0.00201EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•7 views

CVE-2026-11259

Insufficient validation of untrusted input in Cast in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: Low...

4.3CVSS0.00182EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•9 views

CVE-2026-11260

Inappropriate implementation in Permissions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass content security policy via a crafted HTML page. Chromium security severity: Low...

4.3CVSS0.00182EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•9 views

CVE-2026-11261

Inappropriate implementation in PDF in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.3CVSS0.00176EPSS
Exploits0References2
NVD
NVD
•added 2026/06/05 12:17 a.m.•8 views

CVE-2026-11262

Use after free in TabStrip in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Low...

8.8CVSS0.0028EPSS
Exploits0References2
Total number of security vulnerabilities364879