Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
CVE Intelligence

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

All Critical Actively Exploited Remotely Exploitable
Last Updated Published CVSS Score
Score
Vulnerability
Published
8.8 HIGH
CVE-2026-11147 — Google Chrome Use-After-Free

Use after free in WebML in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: M…

chrome chrome windows | Remote | Memory Corruption
Jun 04, 2026 Jun 05, 2026
Jun 04, 2026
Jun 05, 2026
0.0 NA
CVE-2026-11146 — Google Chrome Chromoting Sandbox Escape

Insufficient validation of untrusted input in Chromoting in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox es…

chrome chrome | Information Disclosure
Jun 04, 2026 Jun 05, 2026
Jun 04, 2026
Jun 05, 2026
0.0 NA
CVE-2026-11145 — Google Chrome for Android Geolocation Race Condition Information Disclosure

Race in Geolocation in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)

chrome chrome | Race Condition
Jun 04, 2026 Jun 05, 2026
Jun 04, 2026
Jun 05, 2026
0.0 NA
CVE-2026-11144 — Google Chrome Use-After-Free in Media

Use after free in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted video file. (Chromium security severity: Medium)

chrome chrome | Memory Corruption
Jun 04, 2026 Jun 05, 2026
Jun 04, 2026
Jun 05, 2026
0.0 NA
CVE-2026-11143 — Google Chrome Out-of-Bounds Read

Out of bounds read in Extensions in Google Chrome on Linux prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information…

chrome chrome | Information Disclosure
Jun 04, 2026 Jun 05, 2026
Jun 04, 2026
Jun 05, 2026
0.0 NA
CVE-2026-11142 — Google Chrome Paint Same Origin Policy Bypass

Insufficient policy enforcement in Paint in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: Medium)

chrome chrome | Misconfiguration
Jun 04, 2026 Jun 05, 2026
Jun 04, 2026
Jun 05, 2026
0.0 NA
CVE-2026-11141 — Google Chrome Uninitialized Use Information Disclosure

Uninitialized Use in Audio in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory v…

chrome chrome | Information Disclosure
Jun 04, 2026 Jun 05, 2026
Jun 04, 2026
Jun 05, 2026
0.0 NA
CVE-2026-11140 — Google Chrome Out-of-Bounds Read Information Disclosure

Out of bounds read in Chromecast in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process me…

chrome chrome | Memory Corruption
Jun 04, 2026 Jun 05, 2026
Jun 04, 2026
Jun 05, 2026
0.0 NA
CVE-2026-11139 — Google Chrome Paint Information Disclosure

Inappropriate implementation in Paint in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)

chrome chrome | Information Disclosure
Jun 04, 2026 Jun 05, 2026
Jun 04, 2026
Jun 05, 2026
0.0 NA
CVE-2026-11138 — Google Chrome ANGLE Uninitialized Use Information Disclosure

Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)

chrome chrome | Information Disclosure
Jun 04, 2026 Jun 05, 2026
Jun 04, 2026
Jun 05, 2026
0.0 NA
CVE-2026-11137 — Google Chrome ANGLE Uninitialized Use Information Disclosure

Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium securit…

chrome chrome | Information Disclosure
Jun 04, 2026 Jun 05, 2026
Jun 04, 2026
Jun 05, 2026
8.8 HIGH
CVE-2026-11136 — Google Chrome Use-After-Free in Canvas

Use after free in Canvas in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)

linux_kernel chrome macos chrome windows | Remote | Memory Corruption
Jun 04, 2026 Jun 05, 2026
Jun 04, 2026
Jun 05, 2026
0.0 NA
CVE-2026-11135 — Google Chrome Autofill Bypass

Insufficient policy enforcement in Autofill in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass discretionary access control via a crafted HTML page. (Chromium security severi…

chrome chrome | Authorization
Jun 04, 2026 Jun 05, 2026
Jun 04, 2026
Jun 05, 2026
0.0 NA
CVE-2026-11134 — Google Chrome Media Cross-Origin Data Leak

Inappropriate implementation in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)

chrome chrome | Information Disclosure
Jun 04, 2026 Jun 05, 2026
Jun 04, 2026
Jun 05, 2026
0.0 NA
CVE-2026-11133 — Google Chrome Paint Same-Origin Policy Bypass

Insufficient policy enforcement in Paint in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: Medium)

chrome chrome | Authorization
Jun 04, 2026 Jun 05, 2026
Jun 04, 2026
Jun 05, 2026
0.0 NA
CVE-2026-11132 — Google Chrome Paint Same Origin Policy Bypass

Insufficient policy enforcement in Paint in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: Medium)

chrome chrome | Authorization
Jun 04, 2026 Jun 05, 2026
Jun 04, 2026
Jun 05, 2026
0.0 NA
CVE-2026-11131 — Google Chrome Use After Free Sandbox Escape

Use after free in Autofill in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted …

chrome chrome | Memory Corruption
Jun 04, 2026 Jun 05, 2026
Jun 04, 2026
Jun 05, 2026
8.8 HIGH
CVE-2026-11130 — Google Chrome Use After Free in Media

Use after free in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)

linux_kernel chrome macos chrome windows | Remote | Memory Corruption
Jun 04, 2026 Jun 05, 2026
Jun 04, 2026
Jun 05, 2026
0.0 NA
CVE-2026-11129 — Google Chrome Cross-Origin Data Leak

Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)

chrome chrome | Information Disclosure
Jun 04, 2026 Jun 05, 2026
Jun 04, 2026
Jun 05, 2026
0.0 NA
CVE-2026-11128 — Google Chrome Web Share Information Disclosure

Inappropriate implementation in Web Share in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to leak cross-origin data via a craf…

chrome chrome | Information Disclosure
Jun 04, 2026 Jun 05, 2026
Jun 04, 2026
Jun 05, 2026
Showing 20 of 7241 Results