Search
127,949 CVEs · High severity
CVEs (127,949, showing first 500)
Only the first 500 CVEs (by current sort) are shown when searching without a keyword. Add a search term above to narrow the results.
Showing 151–175 of 127,949 (capped at 500)
| CVE ID | Severity ↑ | Patch | CVSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2026-41567 | HIGH | Patched | 7.2 | 2026-06-05 | Moby is an open source container framework. In versions prior to 29.5.1 and in moby/moby v2 prior to v2.0.0-beta.14, when a compressed archive is uploaded to a container vi… |
| CVE-2026-11303 | HIGH | Patched | 8.8 | 2026-06-05 | Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. (Chromium secu… |
| CVE-2026-11304 | HIGH | Patched | 8.8 | 2026-06-05 | Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security… |
| CVE-2026-11305 | HIGH | Patched | 8.8 | 2026-06-05 | Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. (Chromium secu… |
| CVE-2026-11306 | HIGH | Patched | 8.8 | 2026-06-05 | Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. (Chromium secu… |
| CVE-2026-11307 | HIGH | Patched | 8.8 | 2026-06-05 | Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. (Chromium secu… |
| CVE-2026-11295 | HIGH | Patched | 8.8 | 2026-06-05 | Inappropriate implementation in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform privilege escalation via a crafted HTML page… |
| CVE-2026-11296 | HIGH | 7.5 | 2026-06-05 | Inappropriate implementation in ImageCapture in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to perform privilege… | |
| CVE-2026-11297 | HIGH | Patched | 7.7 | 2026-06-05 | Insufficient validation of untrusted input in Reader Mode in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to bypass navigation restrictions via … |
| CVE-2026-11301 | HIGH | Patched | 8.8 | 2026-06-05 | Inappropriate implementation in LiveCaption in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform out of bounds memory access via malicio… |
| CVE-2026-11279 | HIGH | 8.8 | 2026-06-05 | Out of bounds read in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromi… | |
| CVE-2026-11272 | HIGH | 8.8 | 2026-06-05 | Insufficient validation of untrusted input in Reading List in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specif… | |
| CVE-2026-11265 | HIGH | Patched | 7.5 | 2026-06-05 | Inappropriate implementation in Autofill in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium secu… |
| CVE-2026-11269 | HIGH | Patched | 7.1 | 2026-06-05 | Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker in a privileged network position to execute arbitrary code inside a s… |
| CVE-2026-11255 | HIGH | Patched | 7.5 | 2026-06-05 | Insufficient validation of untrusted input in Storage Access API in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process … |
| CVE-2026-11256 | HIGH | Patched | 8.3 | 2026-06-05 | Integer overflow in GPU in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape v… |
| CVE-2026-11262 | HIGH | Patched | 8.8 | 2026-06-05 | Use after free in TabStrip in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Low) |
| CVE-2026-11248 | HIGH | Patched | 8.8 | 2026-06-05 | Inappropriate implementation in Google Lens in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Ch… |
| CVE-2026-11239 | HIGH | Patched | 7.5 | 2026-06-05 | Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to perform privilege e… |
| CVE-2026-11241 | HIGH | Patched | 8.0 | 2026-06-05 | Insufficient validation of untrusted input in Cast in Google Chrome prior to 149.0.7827.53 allowed an attacker on the local network segment to perform privilege escalation … |
| CVE-2026-11242 | HIGH | Patched | 7.5 | 2026-06-05 | Insufficient validation of untrusted input in Plugins in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cro… |
| CVE-2026-10877 | HIGH | 7.3 | 2026-06-05 | A security vulnerability has been detected in SourceCodester Ship Ferry Ticket Reservation System up to 1.0. This impacts an unknown function of the file /admin/login.php o… | |
| CVE-2026-10586 | HIGH | 7.2 | 2026-06-05 | The Gutenberg Essential Blocks – Page Builder for Gutenberg Blocks & Patterns plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and i… | |
| CVE-2026-45497 | HIGH | 7.7 | 2026-06-04 | Improper neutralization of special elements used in a command ('command injection') in Microsoft Copilot allows an authorized attacker to execute code over a network. | |
| CVE-2026-11235 | HIGH | 8.8 | 2026-06-04 | Insufficient policy enforcement in Compositing in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to execute arbitra… |