Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
CVE Intelligence

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

All Critical Actively Exploited Remotely Exploitable
Last Updated Published CVSS Score
Score
Vulnerability
Published
3.1 LOW
CVE-2026-7944 — Google Chrome Persistent Cache Input Validation Bypass

Insufficient validation of untrusted input in Persistent Cache in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to bypass site isolation via …

linux_kernel chrome macos windows | Remote | Misconfiguration
May 06, 2026 May 06, 2026
May 06, 2026
May 06, 2026
4.2 MEDIUM
CVE-2026-7943 — Google Chrome ANGLE HTML Page Arbitrary Read/Write Vulnerability

Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to perform arbitrary read/write via a cr…

linux_kernel chrome macos windows | Remote | Memory Corruption
May 06, 2026 May 06, 2026
May 06, 2026
May 06, 2026
4.3 MEDIUM
CVE-2026-7942 — Google Chrome ANGLE Integer Overflow Vulnerability

Integer overflow in ANGLE in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)

linux_kernel chrome macos windows | Remote | Information Disclosure
May 06, 2026 May 06, 2026
May 06, 2026
May 06, 2026
4.4 MEDIUM
CVE-2026-7941 — Google Chrome Android Cross-Site Scripting (UXSS)

Insufficient validation of untrusted input in Mobile in Google Chrome on Android prior to 148.0.7778.96 allowed a local attacker to inject arbitrary scripts or HTML (UXSS) via a crafted Chrome Extens…

android chrome | Cross-Site Scripting
May 06, 2026 May 06, 2026
May 06, 2026
May 06, 2026
8.8 HIGH
CVE-2026-7940 — Google Chrome V8 Use-After-Free Vulnerability in Chrome Extension

Use after free in V8 in Google Chrome prior to 148.0.7778.96 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code inside a sandbox via a crafted Chrome …

linux_kernel chrome macos windows | Remote | Memory Corruption
May 06, 2026 May 06, 2026
May 06, 2026
May 06, 2026
5.4 MEDIUM
CVE-2026-7939 — Google Chrome SanitizerAPI UXSS

Inappropriate implementation in SanitizerAPI in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. (Chromium security s…

linux_kernel chrome macos windows | Remote | Cross-Site Scripting
May 06, 2026 May 06, 2026
May 06, 2026
May 06, 2026
8.8 HIGH
CVE-2026-7938 — Google Chrome CSS Use-After-Free Vulnerability

Use after free in CSS in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)

linux_kernel chrome macos windows | Remote | Memory Corruption
May 06, 2026 May 06, 2026
May 06, 2026
May 06, 2026
3.1 LOW
CVE-2026-7937 — Google Chrome DevTools Extension Navigation Bypass Vulnerability

Insufficient policy enforcement in DevTools in Google Chrome prior to 148.0.7778.96 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a c…

linux_kernel chrome macos windows | Remote | Authorization
May 06, 2026 May 06, 2026
May 06, 2026
May 06, 2026
4.3 MEDIUM
CVE-2026-7936 — Google Chrome V8 Object Lifecycle Memory Read Vulnerability

Object lifecycle issue in V8 in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Medium)

linux_kernel chrome macos windows | Remote | Memory Corruption
May 06, 2026 May 06, 2026
May 06, 2026
May 06, 2026
5.4 MEDIUM
CVE-2026-7935 — Google Chrome Speech UI Spoofing Vulnerability

Inappropriate implementation in Speech in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

linux_kernel chrome macos windows | Remote | Misconfiguration
May 06, 2026 May 06, 2026
May 06, 2026
May 06, 2026
4.2 MEDIUM
CVE-2026-7934 — Google Chrome Popup Blocker HTML Injection Vulnerability

Insufficient validation of untrusted input in Popup Blocker in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to bypass navigation restriction…

linux_kernel chrome macos windows | Remote | Misconfiguration
May 06, 2026 May 06, 2026
May 06, 2026
May 06, 2026
4.3 MEDIUM
CVE-2026-7933 — Google Chrome WebCodecs Out-of-Bounds Read Vulnerability

Out of bounds read in WebCodecs in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to perform an out of bounds memory read via a crafted video file. (Chromium security severity: Medium)

linux_kernel chrome macos windows | Remote | Memory Corruption
May 06, 2026 May 06, 2026
May 06, 2026
May 06, 2026
4.4 MEDIUM
CVE-2026-7932 — Google Chrome Navigation Bypass Vulnerability

Insufficient policy enforcement in Downloads in Google Chrome prior to 148.0.7778.96 allowed a local attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: M…

linux_kernel chrome macos windows | Authorization
May 06, 2026 May 06, 2026
May 06, 2026
May 06, 2026
5.4 MEDIUM
CVE-2026-7931 — Google Chrome iOS UI Spoofing Vulnerability

Insufficient validation of untrusted input in iOS in Google Chrome on iOS prior to 148.0.7778.96 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity:…

chrome iphone_os | Remote | Cross-Site Scripting
May 06, 2026 May 06, 2026
May 06, 2026
May 06, 2026
8.8 HIGH
CVE-2026-7930 — Google Chrome Cookie Validation Vulnerability

Insufficient validation of untrusted input in Cookies in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to perform privilege escalation via a crafted HTML page. (Chromium security sev…

linux_kernel chrome macos windows | Remote | Information Disclosure
May 06, 2026 May 06, 2026
May 06, 2026
May 06, 2026
7.5 HIGH
CVE-2026-7929 — Google Chrome Use-After-Free Vulnerability in MediaRecording

Use after free in MediaRecording in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML …

linux_kernel chrome macos windows | Remote | Memory Corruption
May 06, 2026 May 06, 2026
May 06, 2026
May 06, 2026
8.8 HIGH
CVE-2026-7928 — Google Chrome WebRTC Use-After-Free Vulnerability

Use after free in WebRTC in Google Chrome on Windows prior to 148.0.7778.96 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: …

chrome windows | Remote | Memory Corruption
May 06, 2026 May 06, 2026
May 06, 2026
May 06, 2026
8.8 HIGH
CVE-2026-7927 — Google Chrome Type Confusion Remote Code Execution Vulnerability

Type Confusion in Runtime in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

linux_kernel chrome macos windows | Remote | Memory Corruption
May 06, 2026 May 06, 2026
May 06, 2026
May 06, 2026
8.8 HIGH
CVE-2026-7926 — Google Chrome PresentationAPI Use-After-Free Vulnerability

Use after free in PresentationAPI in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Hi…

linux_kernel chrome macos windows | Remote | Memory Corruption
May 06, 2026 May 06, 2026
May 06, 2026
May 06, 2026
7.8 HIGH
CVE-2026-7925 — Google Chrome Windows Use-After-Free Privilege Escalation Vulnerability

Use after free in Chromoting in Google Chrome on Windows prior to 148.0.7778.96 allowed a local attacker to perform OS-level privilege escalation via a malicious file. (Chromium security severity: Hi…

chrome windows | Memory Corruption
May 06, 2026 May 06, 2026
May 06, 2026
May 06, 2026
Showing 20 of 5876 Results