Security
CVE Feed
Latest vulnerabilities from the National Vulnerability Database.
23570
Total
1678
Critical
7413
High
7498
Medium
| CVE ID | Severity | Score | Description | Published |
|---|---|---|---|---|
| CVE-2026-10997 | UNKNOWN | — | Insufficient policy enforcement in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to bypass … | Jun 04, 2026 |
| CVE-2026-10996 | UNKNOWN | — | Inappropriate implementation in Workers in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium … | Jun 04, 2026 |
| CVE-2026-10995 | UNKNOWN | — | Heap buffer overflow in TabStrip in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures … | Jun 04, 2026 |
| CVE-2026-10994 | UNKNOWN | — | Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted … | Jun 04, 2026 |
| CVE-2026-10993 | UNKNOWN | — | Heap buffer overflow in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a … | Jun 04, 2026 |
| CVE-2026-10992 | UNKNOWN | — | Insufficient data validation in Animation in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a … | Jun 04, 2026 |
| CVE-2026-10991 | HIGH | 8.8 | Use after free in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures … | Jun 04, 2026 |
| CVE-2026-10990 | UNKNOWN | — | Use after free in Glic in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a … | Jun 04, 2026 |
| CVE-2026-10989 | HIGH | 8.8 | Inappropriate implementation in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to … | Jun 04, 2026 |
| CVE-2026-10988 | HIGH | 8.8 | Use after free in Views in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a … | Jun 04, 2026 |
| CVE-2026-10987 | HIGH | 8.8 | Integer overflow in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML … | Jun 04, 2026 |
| CVE-2026-10986 | HIGH | 8.8 | Integer overflow in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a malicious file. … | Jun 04, 2026 |
| CVE-2026-10985 | MEDIUM | 6.5 | Out of bounds read in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. … | Jun 04, 2026 |
| CVE-2026-10984 | MEDIUM | 5.4 | Inappropriate implementation in Accessibility in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. … | Jun 04, 2026 |
| CVE-2026-10983 | CRITICAL | 9.6 | Insufficient validation of untrusted input in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a … | Jun 04, 2026 |
| CVE-2026-10982 | HIGH | 8.8 | Use after free in WebXR in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted … | Jun 04, 2026 |
| CVE-2026-10981 | MEDIUM | 6.5 | Insufficient validation of untrusted input in Codecs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak … | Jun 04, 2026 |
| CVE-2026-10980 | MEDIUM | 6.5 | Insufficient validation of untrusted input in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass … | Jun 04, 2026 |
| CVE-2026-10979 | MEDIUM | 6.5 | Out of bounds read in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via … | Jun 04, 2026 |
| CVE-2026-10978 | HIGH | 8.8 | Use after free in Chromoting in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via malicious network traffic. … | Jun 04, 2026 |
| CVE-2026-10977 | MEDIUM | 6.5 | Uninitialized Use in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via … | Jun 04, 2026 |
| CVE-2026-10976 | HIGH | 7.4 | Uninitialized Use in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted … | Jun 04, 2026 |
| CVE-2026-10975 | HIGH | 8.8 | Use after free in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted … | Jun 04, 2026 |
| CVE-2026-10974 | CRITICAL | 9.6 | Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a … | Jun 04, 2026 |
| CVE-2026-10973 | HIGH | 7.4 | Uninitialized Use in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security … | Jun 04, 2026 |