Security
CVE Feed
Latest vulnerabilities from the National Vulnerability Database.
23287
Total
1655
Critical
7324
High
7394
Medium
| CVE ID | Severity | Score | Description | Published |
|---|---|---|---|---|
| CVE-2026-11670 | HIGH | 8.8 | Use after free in PDF in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted … | Jun 09, 2026 |
| CVE-2026-11669 | MEDIUM | 5.3 | Out of bounds read in Media in Google Chrome on ChromeOS prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to … | Jun 09, 2026 |
| CVE-2026-11668 | MEDIUM | 4.3 | Uninitialized Use in Codecs in Google Chrome on Linux, ChromeOS prior to 149.0.7827.103 allowed a remote attacker to leak cross-origin data via a crafted video … | Jun 09, 2026 |
| CVE-2026-11667 | HIGH | 7.5 | Out of bounds read in WebRTC in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the GPU process to potentially exploit … | Jun 09, 2026 |
| CVE-2026-11666 | MEDIUM | 5.4 | Insufficient validation of untrusted input in Input in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to perform UI spoofing via a crafted HTML … | Jun 09, 2026 |
| CVE-2026-11665 | MEDIUM | 4.3 | Out of bounds read in Dawn in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker to leak cross-origin data via a crafted … | Jun 09, 2026 |
| CVE-2026-11664 | HIGH | 8.8 | Use after free in Payments in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. … | Jun 09, 2026 |
| CVE-2026-11663 | HIGH | 8.3 | Use after free in Skia in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a … | Jun 09, 2026 |
| CVE-2026-11662 | HIGH | 8.8 | Type Confusion in Bindings in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML … | Jun 09, 2026 |
| CVE-2026-11661 | HIGH | 8.3 | Use after free in Views in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially … | Jun 09, 2026 |
| CVE-2026-11660 | HIGH | 8.3 | Insufficient validation of untrusted input in New Tab Page in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process … | Jun 09, 2026 |
| CVE-2026-11659 | CRITICAL | 9.6 | Integer overflow in UI in Google Chrome on Linux prior to 149.0.7827.103 allowed a remote attacker to potentially perform a sandbox escape via a crafted … | Jun 09, 2026 |
| CVE-2026-11658 | MEDIUM | 6.5 | Insufficient validation of untrusted input in Extensions in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to bypass … | Jun 09, 2026 |
| CVE-2026-11657 | HIGH | 8.8 | Use after free in Payments in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code via a crafted HTML … | Jun 09, 2026 |
| CVE-2026-11656 | HIGH | 8.3 | Use after free in ServiceWorker in Google Chrome prior to 149.0.7827.103 allowed an attacker who convinced a user to install a malicious extension to potentially … | Jun 09, 2026 |
| CVE-2026-11655 | HIGH | 8.3 | Integer overflow in Media in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform … | Jun 09, 2026 |
| CVE-2026-11654 | CRITICAL | 9.6 | Use after free in CameraCapture in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to potentially perform a sandbox escape via a … | Jun 09, 2026 |
| CVE-2026-11653 | MEDIUM | 6.5 | Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to bypass site isolation via … | Jun 09, 2026 |
| CVE-2026-11652 | HIGH | 8.3 | Use after free in Extensions in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a … | Jun 09, 2026 |
| CVE-2026-11651 | CRITICAL | 9.6 | Use after free in Network in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted … | Jun 09, 2026 |
| CVE-2026-11650 | HIGH | 8.8 | Use after free in V8 in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted … | Jun 09, 2026 |
| CVE-2026-11649 | HIGH | 8.8 | Use after free in V8 in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted … | Jun 09, 2026 |
| CVE-2026-11648 | HIGH | 8.8 | Use after free in FullScreen in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker to potentially exploit heap corruption via a crafted … | Jun 09, 2026 |
| CVE-2026-11647 | HIGH | 8.3 | Use after free in Printing in Google Chrome on Android prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially … | Jun 09, 2026 |
| CVE-2026-11646 | HIGH | 8.8 | Use after free in ViewTransitions in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted … | Jun 09, 2026 |