Security
CVE Feed
Latest vulnerabilities from the National Vulnerability Database.
10692
Total
727
Critical
3080
High
3407
Medium
| CVE ID | Severity | Score | Description | Published |
|---|---|---|---|---|
| CVE-2026-6384 | HIGH | 7.3 | A flaw was found in gimp. This buffer overflow vulnerability in the GIF image loading component's `ReadJeffsImage` function allows an attacker to write beyond an … | Apr 15, 2026 |
| CVE-2026-6364 | MEDIUM | 6.5 | Out of bounds read in Skia in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to obtain potentially sensitive information from process memory via … | Apr 15, 2026 |
| CVE-2026-6363 | HIGH | 8.8 | Type Confusion in V8 in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to potentially perform out of bounds memory access via a crafted … | Apr 15, 2026 |
| CVE-2026-6362 | MEDIUM | 6.3 | Use after free in Codecs in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to potentially perform out of bounds memory access via a … | Apr 15, 2026 |
| CVE-2026-6361 | HIGH | 7.2 | Heap buffer overflow in PDFium in Google Chrome on Windows prior to 147.0.7727.101 allowed a remote attacker who convinced a user to engage in specific … | Apr 15, 2026 |
| CVE-2026-6360 | HIGH | 8.8 | Use after free in FileSystem in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. … | Apr 15, 2026 |
| CVE-2026-6359 | HIGH | 8.8 | Use after free in Video in Google Chrome on Windows prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to perform … | Apr 15, 2026 |
| CVE-2026-6358 | HIGH | 8.8 | Use after free in XR in Google Chrome on Android prior to 147.0.7727.101 allowed a remote attacker to perform an out of bounds memory read … | Apr 15, 2026 |
| CVE-2026-6319 | HIGH | 7.5 | Use after free in Payments in Google Chrome on Android prior to 147.0.7727.101 allowed a remote attacker who convinced a user to engage in specific … | Apr 15, 2026 |
| CVE-2026-6318 | HIGH | 8.8 | Use after free in Codecs in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted … | Apr 15, 2026 |
| CVE-2026-6317 | HIGH | 8.8 | Use after free in Cast in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium … | Apr 15, 2026 |
| CVE-2026-6316 | HIGH | 8.8 | Use after free in Forms in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted … | Apr 15, 2026 |
| CVE-2026-6315 | HIGH | 8.8 | Use after free in Permissions in Google Chrome on Android prior to 147.0.7727.101 allowed a remote attacker who convinced a user to engage in specific … | Apr 15, 2026 |
| CVE-2026-6314 | HIGH | 8.3 | Out of bounds write in GPU in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the GPU process to potentially perform … | Apr 15, 2026 |
| CVE-2026-6313 | LOW | 3.1 | Insufficient policy enforcement in CORS in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to leak cross-origin data … | Apr 15, 2026 |
| CVE-2026-6312 | LOW | 3.1 | Insufficient policy enforcement in Passwords in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to leak cross-origin data … | Apr 15, 2026 |
| CVE-2026-6311 | HIGH | 8.3 | Uninitialized Use in Accessibility in Google Chrome on Windows prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to potentially perform … | Apr 15, 2026 |
| CVE-2026-6310 | HIGH | 8.3 | Use after free in Dawn in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to potentially perform a … | Apr 15, 2026 |
| CVE-2026-6309 | HIGH | 8.3 | Use after free in Viz in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to potentially perform a … | Apr 15, 2026 |
| CVE-2026-6308 | HIGH | 7.5 | Out of bounds read in Media in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who convinced a user to engage in specific UI … | Apr 15, 2026 |
| CVE-2026-6307 | HIGH | 8.8 | Type Confusion in Turbofan in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML … | Apr 15, 2026 |
| CVE-2026-6306 | HIGH | 8.8 | Heap buffer overflow in PDFium in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted … | Apr 15, 2026 |
| CVE-2026-6305 | HIGH | 8.8 | Heap buffer overflow in PDFium in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted … | Apr 15, 2026 |
| CVE-2026-6304 | HIGH | 8.3 | Use after free in Graphite in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to potentially perform a … | Apr 15, 2026 |
| CVE-2026-6303 | HIGH | 8.8 | Use after free in Codecs in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted … | Apr 15, 2026 |