Lucene search
K

364894 matches found

NVD
NVD
•added 2026/06/04 11:17 p.m.•10 views

CVE-2026-11223

Insufficient validation of untrusted input in Network in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. Chromium security severity: Low...

6.5CVSS0.00176EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•15 views

CVE-2026-11224

Use after free in Chromoting in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via malicious network traffic. Chromium security severity: Low...

8.1CVSS0.00244EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•9 views

CVE-2026-11226

Insufficient policy enforcement in PreviewTab in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass same origin policy via a crafted HTML page. Chromium security severity: Low...

6.5CVSS0.00151EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•12 views

CVE-2026-11227

Incorrect security UI in Tab Hover Cards in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform domain spoofing via a crafted domain name. Chromium security severity: Low...

6.5CVSS0.00158EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•14 views

CVE-2026-11228

Inappropriate implementation in File Input in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.3CVSS0.00154EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•10 views

CVE-2026-11229

Inappropriate implementation in Enterprise in Google Chrome prior to 149.0.7827.53 allowed a local attacker to perform privilege escalation via physical access to the device. Chromium security severity: Low...

6.1CVSS0.00094EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•15 views

CVE-2026-11231

Inappropriate implementation in Safe Browsing in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a malicious file. Chromium security severity: Low...

8.1CVSS0.00218EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•10 views

CVE-2026-11225

Inappropriate implementation in WebUI in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform domain spoofing via a crafted domain name. Chromium security severity: Low...

6.5CVSS0.00158EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•12 views

CVE-2026-11215

Inappropriate implementation in Cronet in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform domain spoofing via a crafted domain name. Chromium security severity: Medium...

6.5CVSS0.00158EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•9 views

CVE-2026-11217

Inappropriate implementation in Fenced Frames in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Chromium security severity: Low...

6.5CVSS0.0015EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•10 views

CVE-2026-11219

Inappropriate implementation in Navigation in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Low...

4.3CVSS0.00154EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•11 views

CVE-2026-11221

Insufficient validation of untrusted input in PointerLock in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.3CVSS0.00149EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•10 views

CVE-2026-11216

Incorrect security UI in File Input in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.3CVSS0.0015EPSS
Exploits1References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•12 views

CVE-2026-11218

Inappropriate implementation in PlatformIntegration in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a malicious file. Chromium security severity: Low...

6.8CVSS0.002EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•10 views

CVE-2026-11220

Insufficient validation of untrusted input in Navigation in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Chromium security severity: Low...

6.5CVSS0.00176EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•12 views

CVE-2026-11222

Incorrect security UI in Tab Strip in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform domain spoofing via a crafted HTML page. Chromium security severity: Low...

6.5CVSS0.00171EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•12 views

CVE-2026-11208

Use after free in Codecs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.00229EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•12 views

CVE-2026-11210

Inappropriate implementation in Safe Browsing in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass discretionary access control via a crafted RAR file. Chromium security severity: Medium...

6.5CVSS0.00185EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•7 views

CVE-2026-11209

Inappropriate implementation in Passwords in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.00229EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•17 views

CVE-2026-11211

Integer overflow in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS0.0028EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•12 views

CVE-2026-11212

Insufficient policy enforcement in DevTools in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. Chromium security severity: Medium...

4.3CVSS0.00137EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•10 views

CVE-2026-11213

Insufficient validation of untrusted input in Reading Mode in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

9.6CVSS0.00195EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•12 views

CVE-2026-11214

Inappropriate implementation in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.00161EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•11 views

CVE-2026-11199

Inappropriate implementation in WebRTC in Google Chrome prior to 149.0.7827.53 allowed an attacker in a privileged network position to leak cross-origin data via malicious network traffic. Chromium security severity: Medium...

5.9CVSS0.00189EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•9 views

CVE-2026-11202

Inappropriate implementation in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS0.00234EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•11 views

CVE-2026-11203

Inappropriate implementation in GPU in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.00229EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•12 views

CVE-2026-11205

Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scripts or HTML UXSS via a crafted QR code. Chromium security severity: Medium...

6.1CVSS0.00147EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•10 views

CVE-2026-11206

Insufficient policy enforcement in ServiceWorker in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.00229EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•12 views

CVE-2026-11200

Inappropriate implementation in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.00176EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•10 views

CVE-2026-11201

Use after free in ServiceWorker in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension. Chromium security severity: Medium...

8.8CVSS0.00206EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•10 views

CVE-2026-11204

Inappropriate implementation in Signin in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.00201EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•9 views

CVE-2026-11207

Insufficient validation of untrusted input in Autofill in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via malicious network traffic. Chromium security severity: Medium...

9.6CVSS0.00216EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•8 views

CVE-2026-11190

Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to bypass discretionary access control via a crafted Chrome Extension. Chromium security severity: Medium...

6.5CVSS0.00165EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•10 views

CVE-2026-11191

Out of bounds memory access in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS0.00272EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•9 views

CVE-2026-11192

Insufficient validation of untrusted input in Password Manager in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via malicious network traffic. Chromium security severity: Medium...

4.3CVSS0.00176EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•8 views

CVE-2026-11193

Insufficient policy enforcement in Password Manager in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass discretionary access control via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.00216EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•24 views

CVE-2026-11194

Inappropriate implementation in Network in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.00183EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•9 views

CVE-2026-11196

Type Confusion in XML in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted XML file. Chromium security severity: Medium...

6.5CVSS0.00228EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•9 views

CVE-2026-11197

Insufficient policy enforcement in Workers in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.00201EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•12 views

CVE-2026-11195

Inappropriate implementation in MHTML in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.0019EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•11 views

CVE-2026-11198

Insufficient validation of untrusted input in Codecs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted video file. Chromium security severity: Medium...

9.6CVSS0.00216EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•10 views

CVE-2026-11186

Inappropriate implementation in CSS in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to inject arbitrary scripts or HTML UXSS via a crafted HTML page. Chromium security severity: Medium...

6.1CVSS0.00159EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•8 views

CVE-2026-11188

Use after free in USB in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS0.00234EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•7 views

CVE-2026-11181

Inappropriate implementation in Media Session in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: Medium...

6.3CVSS0.00137EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•10 views

CVE-2026-11182

Inappropriate implementation in SVG in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS0.00247EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•9 views

CVE-2026-11183

Out of bounds read in GWP-ASan in Google Chrome prior to 149.0.7827.53 allowed a local attacker to obtain potentially sensitive information from process memory via a malicious file. Chromium security severity: Medium...

6.5CVSS0.00169EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•10 views

CVE-2026-11184

Insufficient policy enforcement in Actor in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

6.3CVSS0.00158EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•12 views

CVE-2026-11185

Use after free in V8 in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code inside a sandbox via a crafted Chrome Extension. Chromium security severity: Medium...

8.1CVSS0.00201EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•9 views

CVE-2026-11187

Inappropriate implementation in Glic in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

6.3CVSS0.00152EPSS
Exploits0References2
NVD
NVD
•added 2026/06/04 11:17 p.m.•8 views

CVE-2026-11189

Insufficient validation of untrusted input in DevTools in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension. Chromium security severity: Medium...

6.5CVSS0.00172EPSS
Exploits0References2
Total number of security vulnerabilities364894