Security
CVE Feed
Latest vulnerabilities from the National Vulnerability Database.
10192
Total
692
Critical
2939
High
3205
Medium
| CVE ID | Severity | Score | Description | Published |
|---|---|---|---|---|
| CVE-2026-8532 | HIGH | 8.8 | Integer overflow in XML in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML … | May 14, 2026 |
| CVE-2026-8531 | HIGH | 8.8 | Heap buffer overflow in WebML in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to potentially exploit heap corruption via a crafted … | May 14, 2026 |
| CVE-2026-8530 | HIGH | 8.3 | Use after free in Network in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to potentially … | May 14, 2026 |
| CVE-2026-8529 | HIGH | 8.8 | Heap buffer overflow in Codecs in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted … | May 14, 2026 |
| CVE-2026-8528 | MEDIUM | 4.3 | Insufficient validation of untrusted input in SiteIsolation in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to bypass … | May 14, 2026 |
| CVE-2026-8527 | HIGH | 8.8 | Insufficient validation of untrusted input in Downloads in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code via a crafted HTML … | May 14, 2026 |
| CVE-2026-8526 | HIGH | 8.8 | Out of bounds write in WebRTC in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a … | May 14, 2026 |
| CVE-2026-8525 | HIGH | 8.3 | Heap buffer overflow in ANGLE in Google Chrome on Mac prior to 148.0.7778.168 allowed a remote attacker to potentially perform a sandbox escape via a … | May 14, 2026 |
| CVE-2026-8524 | HIGH | 8.8 | Out of bounds write in WebAudio in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a … | May 14, 2026 |
| CVE-2026-8523 | HIGH | 8.3 | Use after free in Mojo in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to potentially perform a … | May 14, 2026 |
| CVE-2026-8522 | HIGH | 8.8 | Use after free in Downloads in Google Chrome on Mac prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code via a crafted HTML … | May 14, 2026 |
| CVE-2026-8521 | HIGH | 7.5 | Use after free in Tab Groups in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code via malicious network traffic. (Chromium … | May 14, 2026 |
| CVE-2026-8520 | HIGH | 8.3 | Race in Payments in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium … | May 14, 2026 |
| CVE-2026-8519 | HIGH | 8.8 | Integer overflow in ANGLE in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to perform an out of bounds memory write via … | May 14, 2026 |
| CVE-2026-8518 | HIGH | 8.8 | Use after free in Blink in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted … | May 14, 2026 |
| CVE-2026-8517 | HIGH | 8.8 | Object lifecycle issue in WebShare in Google Chrome on Mac prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific … | May 14, 2026 |
| CVE-2026-8516 | MEDIUM | 5.3 | Insufficient validation of untrusted input in DataTransfer in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific … | May 14, 2026 |
| CVE-2026-8515 | HIGH | 8.3 | Use after free in HID in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures … | May 14, 2026 |
| CVE-2026-8514 | HIGH | 8.3 | Use after free in Aura in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to potentially perform a … | May 14, 2026 |
| CVE-2026-8513 | HIGH | 8.3 | Use after free in Input in Google Chrome on Android prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to potentially … | May 14, 2026 |
| CVE-2026-8512 | HIGH | 8.3 | Use after free in FileSystem in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures … | May 14, 2026 |
| CVE-2026-8511 | CRITICAL | 9.6 | Use after free in UI in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML … | May 14, 2026 |
| CVE-2026-8510 | HIGH | 7.5 | Integer overflow in Skia in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform an … | May 14, 2026 |
| CVE-2026-8509 | HIGH | 8.8 | Heap buffer overflow in WebML in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted … | May 14, 2026 |
| CVE-2026-46356 | UNKNOWN | — | Fleet is open source device management software. Prior to version 4.80.1, a vulnerability in Fleet's IP extraction logic allows unauthenticated attackers to bypass API rate … | May 14, 2026 |