Security
CVE Feed
Latest vulnerabilities from the National Vulnerability Database.
23287
Total
1655
Critical
7324
High
7394
Medium
| CVE ID | Severity | Score | Description | Published |
|---|---|---|---|---|
| CVE-2026-11695 | MEDIUM | 4.3 | Inappropriate implementation in Passwords in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security … | Jun 09, 2026 |
| CVE-2026-11694 | HIGH | 7.5 | Use after free in ServiceWorker in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to execute arbitrary code … | Jun 09, 2026 |
| CVE-2026-11693 | HIGH | 8.1 | Inappropriate implementation in Plugins in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to bypass site isolation via … | Jun 09, 2026 |
| CVE-2026-11692 | HIGH | 8.3 | Use after free in Read Anything in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform … | Jun 09, 2026 |
| CVE-2026-11691 | LOW | 3.1 | Insufficient validation of untrusted input in New Tab Page in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process … | Jun 09, 2026 |
| CVE-2026-11690 | HIGH | 7.5 | Out of bounds read and write in Media in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer … | Jun 09, 2026 |
| CVE-2026-11689 | HIGH | 8.1 | Insufficient policy enforcement in Passwords in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to bypass site isolation … | Jun 09, 2026 |
| CVE-2026-11688 | HIGH | 8.8 | Inappropriate implementation in SVG in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML … | Jun 09, 2026 |
| CVE-2026-11687 | HIGH | 8.8 | Use after free in Dawn in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to potentially exploit heap corruption via a crafted … | Jun 09, 2026 |
| CVE-2026-11686 | LOW | 3.1 | Insufficient validation of untrusted input in Dawn in Google Chrome on macOS prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process … | Jun 09, 2026 |
| CVE-2026-11685 | MEDIUM | 4.3 | Inappropriate implementation in MediaCapture in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to leak cross-origin data via a crafted HTML page. … | Jun 09, 2026 |
| CVE-2026-11684 | LOW | 3.1 | Insufficient policy enforcement in Network in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the utility process to leak cross-origin data … | Jun 09, 2026 |
| CVE-2026-11683 | HIGH | 8.8 | Use after free in WebCodecs in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted … | Jun 09, 2026 |
| CVE-2026-11682 | HIGH | 8.3 | Inappropriate implementation in Views in Google Chrome on Linux prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform … | Jun 09, 2026 |
| CVE-2026-11681 | HIGH | 8.8 | Use after free in Ozone in Google Chrome on Linux prior to 149.0.7827.103 allowed a remote attacker to potentially exploit heap corruption via a crafted … | Jun 09, 2026 |
| CVE-2026-11680 | HIGH | 8.8 | Use after free in Media in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via … | Jun 09, 2026 |
| CVE-2026-11679 | HIGH | 8.3 | Use after free in Codecs in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially … | Jun 09, 2026 |
| CVE-2026-11678 | MEDIUM | 5.3 | Integer overflow in libyuv in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information … | Jun 09, 2026 |
| CVE-2026-11677 | HIGH | 8.3 | Race in Network in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker who had compromised the network process to potentially perform a … | Jun 09, 2026 |
| CVE-2026-11676 | HIGH | 8.3 | Insufficient validation of untrusted input in Dawn in Google Chrome on Linux and ChromeOS prior to 149.0.7827.103 allowed a remote attacker who had compromised the … | Jun 09, 2026 |
| CVE-2026-11675 | LOW | 3.1 | Out of bounds read in Skia in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to leak cross-origin … | Jun 09, 2026 |
| CVE-2026-11674 | HIGH | 8.8 | Use after free in Guest View in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a … | Jun 09, 2026 |
| CVE-2026-11673 | HIGH | 8.8 | Use after free in InterestGroups in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted … | Jun 09, 2026 |
| CVE-2026-11672 | HIGH | 8.3 | Heap buffer overflow in GPU in Google Chrome on Android prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially … | Jun 09, 2026 |
| CVE-2026-11671 | CRITICAL | 9.6 | Use after free in Navigation in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML … | Jun 09, 2026 |