Security
CVE Feed
Latest vulnerabilities from the National Vulnerability Database.
10692
Total
727
Critical
3080
High
3407
Medium
| CVE ID | Severity | Score | Description | Published |
|---|---|---|---|---|
| CVE-2026-8012 | MEDIUM | 5.4 | Inappropriate implementation in MHTML in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to inject arbitrary scripts or … | May 06, 2026 |
| CVE-2026-8011 | MEDIUM | 4.3 | Insufficient policy enforcement in Search in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium … | May 06, 2026 |
| CVE-2026-8010 | MEDIUM | 6.3 | Insufficient validation of untrusted input in SiteIsolation in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to bypass … | May 06, 2026 |
| CVE-2026-8009 | MEDIUM | 5.0 | Inappropriate implementation in Cast in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via … | May 06, 2026 |
| CVE-2026-8008 | MEDIUM | 5.4 | Inappropriate implementation in DevTools in Google Chrome prior to 148.0.7778.96 allowed an attacker who convinced a user to install a malicious extension to perform UI … | May 06, 2026 |
| CVE-2026-8007 | HIGH | 7.5 | Insufficient validation of untrusted input in Cast in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to perform … | May 06, 2026 |
| CVE-2026-8006 | MEDIUM | 5.4 | Insufficient policy enforcement in DevTools in Google Chrome prior to 148.0.7778.96 allowed an attacker who convinced a user to install a malicious extension to perform … | May 06, 2026 |
| CVE-2026-8005 | MEDIUM | 4.3 | Insufficient validation of untrusted input in Cast in Google Chrome prior to 148.0.7778.96 allowed an attacker on the local network segment to bypass same origin … | May 06, 2026 |
| CVE-2026-8004 | MEDIUM | 4.3 | Insufficient policy enforcement in DevTools in Google Chrome prior to 148.0.7778.96 allowed an attacker who convinced a user to install a malicious extension to leak … | May 06, 2026 |
| CVE-2026-8003 | MEDIUM | 5.4 | Insufficient validation of untrusted input in TabGroups in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to perform UI spoofing via malicious network traffic. … | May 06, 2026 |
| CVE-2026-8002 | HIGH | 8.8 | Use after free in Audio in Google Chrome on Mac prior to 148.0.7778.96 allowed a remote attacker to execute arbitrary code inside a sandbox via … | May 06, 2026 |
| CVE-2026-8001 | HIGH | 8.3 | Use After Free in Printing in Google Chrome on Linux, Mac, ChromeOS prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process … | May 06, 2026 |
| CVE-2026-8000 | HIGH | 8.8 | Insufficient validation of untrusted input in ChromeDriver in Google Chrome on Windows prior to 148.0.7778.96 allowed a remote attacker to execute arbitrary code via a … | May 06, 2026 |
| CVE-2026-7999 | MEDIUM | 4.3 | Inappropriate implementation in V8 in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted … | May 06, 2026 |
| CVE-2026-7998 | MEDIUM | 5.4 | Insufficient validation of untrusted input in Dialog in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to perform … | May 06, 2026 |
| CVE-2026-7997 | HIGH | 7.8 | Insufficient validation of untrusted input in Updater in Google Chrome on Mac prior to 148.0.7778.96 allowed a local attacker to perform OS-level privilege escalation via … | May 06, 2026 |
| CVE-2026-7996 | MEDIUM | 4.2 | Insufficient validation of untrusted input in SSL in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to perform … | May 06, 2026 |
| CVE-2026-7995 | HIGH | 8.8 | Out of bounds read in AdFilter in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to execute arbitrary code inside a sandbox via a … | May 06, 2026 |
| CVE-2026-7994 | HIGH | 7.8 | Inappropriate implementation in Chromoting in Google Chrome on Windows prior to 148.0.7778.96 allowed a local attacker to perform OS-level privilege escalation via a malicious file. … | May 06, 2026 |
| CVE-2026-7993 | MEDIUM | 4.2 | Insufficient validation of untrusted input in Payments in Google Chrome on Android prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process … | May 06, 2026 |
| CVE-2026-7992 | HIGH | 8.8 | Insufficient validation of untrusted input in UI in Google Chrome on Linux, ChromeOS prior to 148.0.7778.96 allowed a remote attacker who convinced a user to … | May 06, 2026 |
| CVE-2026-7991 | HIGH | 8.8 | Use after free in UI in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to execute arbitrary code … | May 06, 2026 |
| CVE-2026-7990 | HIGH | 7.8 | Insufficient validation of untrusted input in Updater in Google Chrome on Windows prior to 148.0.7778.96 allowed a local attacker to perform OS-level privilege escalation via … | May 06, 2026 |
| CVE-2026-7989 | MEDIUM | 4.2 | Insufficient data validation in DataTransfer in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to perform arbitrary read/write … | May 06, 2026 |
| CVE-2026-7988 | HIGH | 8.8 | Type Confusion in WebRTC in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML … | May 06, 2026 |