Loading market data...

CVE Feed

Latest vulnerabilities from the National Vulnerability Database.

23570
Total
1678
Critical
7413
High
7498
Medium
CVE ID Severity Score Description Published
CVE-2026-11199 MEDIUM 5.7 Inappropriate implementation in WebRTC in Google Chrome prior to 149.0.7827.53 allowed an attacker in a privileged network position to leak cross-origin data via malicious network … Jun 04, 2026
CVE-2026-11198 CRITICAL 9.6 Insufficient validation of untrusted input in Codecs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a … Jun 04, 2026
CVE-2026-11197 MEDIUM 6.5 Insufficient policy enforcement in Workers in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin … Jun 04, 2026
CVE-2026-11196 MEDIUM 6.5 Type Confusion in XML in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted … Jun 04, 2026
CVE-2026-11195 MEDIUM 6.5 Inappropriate implementation in MHTML in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to … Jun 04, 2026
CVE-2026-11194 MEDIUM 6.5 Inappropriate implementation in Network in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security … Jun 04, 2026
CVE-2026-11193 MEDIUM 6.5 Insufficient policy enforcement in Password Manager in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass discretionary access control via a crafted HTML … Jun 04, 2026
CVE-2026-11192 MEDIUM 4.3 Insufficient validation of untrusted input in Password Manager in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via malicious network … Jun 04, 2026
CVE-2026-11191 HIGH 8.8 Out of bounds memory access in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform out of bounds memory access … Jun 04, 2026
CVE-2026-11190 MEDIUM 6.5 Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to bypass discretionary … Jun 04, 2026
CVE-2026-11189 MEDIUM 6.5 Insufficient validation of untrusted input in DevTools in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension … Jun 04, 2026
CVE-2026-11188 HIGH 8.8 Use after free in USB in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a … Jun 04, 2026
CVE-2026-11187 MEDIUM 6.3 Inappropriate implementation in Glic in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security … Jun 04, 2026
CVE-2026-11186 MEDIUM 6.1 Inappropriate implementation in CSS in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via a crafted HTML … Jun 04, 2026
CVE-2026-11185 HIGH 8.1 Use after free in V8 in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to execute … Jun 04, 2026
CVE-2026-11184 MEDIUM 6.3 Insufficient policy enforcement in Actor in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium … Jun 04, 2026
CVE-2026-11183 MEDIUM 6.5 Out of bounds read in GWP-ASan in Google Chrome prior to 149.0.7827.53 allowed a local attacker to obtain potentially sensitive information from process memory via … Jun 04, 2026
CVE-2026-11182 MEDIUM 6.5 Inappropriate implementation in SVG in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security … Jun 04, 2026
CVE-2026-11181 MEDIUM 6.3 Inappropriate implementation in Media Session in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. … Jun 04, 2026
CVE-2026-11180 MEDIUM 6.5 Inappropriate implementation in SVG in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security … Jun 04, 2026
CVE-2026-11179 HIGH 8.8 Inappropriate implementation in ORB in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass site isolation via a crafted HTML page. (Chromium security … Jun 04, 2026
CVE-2026-11178 MEDIUM 4.3 Insufficient policy enforcement in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML … Jun 04, 2026
CVE-2026-11177 HIGH 8.8 Use after free in Omnibox in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures … Jun 04, 2026
CVE-2026-11176 MEDIUM 6.5 Inappropriate implementation in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security … Jun 04, 2026
CVE-2026-11175 HIGH 8.8 Incorrect security UI in Messages in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML … Jun 04, 2026