Search
153,552 CVEs · Medium severity
CVEs (153,552, showing first 500)
Only the first 500 CVEs (by current sort) are shown when searching without a keyword. Add a search term above to narrow the results.
Showing 326–350 of 153,552 (capped at 500)
| CVE ID | Severity ↓ | Patch | CVSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2026-11031 | MEDIUM | Patched | 4.3 | 2026-06-04 | Insufficient validation of untrusted input in Password Manager in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via malicious networ… |
| CVE-2026-11032 | MEDIUM | Patched | 6.5 | 2026-06-04 | Inappropriate implementation in Password Manager in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chrom… |
| CVE-2026-11033 | MEDIUM | Patched | 6.5 | 2026-06-04 | Uninitialized Use in WebML in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a cr… |
| CVE-2026-11034 | MEDIUM | Patched | 6.1 | 2026-06-04 | Insufficient validation of untrusted input in Tab Group Sync in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to inject arbitrary scripts or HTM… |
| CVE-2026-11036 | MEDIUM | Patched | 6.5 | 2026-06-04 | Inappropriate implementation in DOM in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium securi… |
| CVE-2026-11038 | MEDIUM | Patched | 6.5 | 2026-06-04 | Insufficient policy enforcement in Subresource Integrity in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass content security policy via malicious n… |
| CVE-2026-11022 | MEDIUM | Patched | 6.5 | 2026-06-04 | Insufficient validation of untrusted input in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass … |
| CVE-2026-11023 | MEDIUM | Patched | 6.5 | 2026-06-04 | Inappropriate implementation in WebAppInstalls in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same ori… |
| CVE-2026-11025 | MEDIUM | Patched | 6.5 | 2026-06-04 | Insufficient policy enforcement in Navigation in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to bypass content security policy via a crafted H… |
| CVE-2026-11026 | MEDIUM | Patched | 6.5 | 2026-06-04 | Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to bypass navig… |
| CVE-2026-11027 | MEDIUM | Patched | 6.5 | 2026-06-04 | Insufficient validation of untrusted input in Glic in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-… |
| CVE-2026-11013 | MEDIUM | Patched | 6.5 | 2026-06-04 | Insufficient validation of untrusted input in Network in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain p… |
| CVE-2026-11014 | MEDIUM | Patched | 6.5 | 2026-06-04 | Insufficient policy enforcement in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to bypass si… |
| CVE-2026-11016 | MEDIUM | Patched | 6.5 | 2026-06-04 | Insufficient validation of untrusted input in Network in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass s… |
| CVE-2026-11017 | MEDIUM | Patched | 6.5 | 2026-06-04 | Inappropriate implementation in Link Preview in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass navigation… |
| CVE-2026-11018 | MEDIUM | Patched | 6.5 | 2026-06-04 | Insufficient policy enforcement in Actor in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chrom… |
| CVE-2026-11019 | MEDIUM | Patched | 6.5 | 2026-06-04 | Inappropriate implementation in Payments in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to perform do… |
| CVE-2026-11020 | MEDIUM | Patched | 6.5 | 2026-06-04 | Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted XML file. (Chromium sec… |
| CVE-2026-11004 | MEDIUM | Patched | 5.3 | 2026-06-04 | Out of bounds read in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive infor… |
| CVE-2026-11005 | MEDIUM | 5.3 | 2026-06-04 | Out of bounds read in ANGLE in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sens… | |
| CVE-2026-11006 | MEDIUM | Patched | 6.5 | 2026-06-04 | Out of bounds read in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium secu… |
| CVE-2026-11007 | MEDIUM | Patched | 6.5 | 2026-06-04 | Insufficient validation of untrusted input in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process … |
| CVE-2026-11008 | MEDIUM | Patched | 6.5 | 2026-06-04 | Insufficient validation of untrusted input in WebAppInstalls in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to l… |
| CVE-2026-10996 | MEDIUM | Patched | 6.5 | 2026-06-04 | Inappropriate implementation in Workers in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium se… |
| CVE-2026-10997 | MEDIUM | Patched | 6.5 | 2026-06-04 | Insufficient policy enforcement in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to bypass di… |