Recent Advisories

Severity ID Title Vendor Product Date Type
CRITICAL 9.6 CVE-2026-11167

CVE-2026-11167_CVE-2026-11167

Inappropriate implementation in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the render...

Google Chrome 149.0.7827.53 CVE
MEDIUM 6.8 CVE-2026-11166

CVE-2026-11166_CVE-2026-11166

Inappropriate implementation in SVG in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) vi...

Google Chrome 149.0.7827.53 CVE
CRITICAL 9.6 CVE-2026-11165

CVE-2026-11165_CVE-2026-11165

Use after free in WebMIDI in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a cr...

Google Chrome 149.0.7827.53 CVE
CRITICAL 9.6 CVE-2026-11163

CVE-2026-11163_CVE-2026-11163

Use after free in Messages in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via...

Google Chrome 149.0.7827.53 CVE
MEDIUM 4.3 CVE-2026-11162

CVE-2026-11162_CVE-2026-11162

Inappropriate implementation in CSS in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML ...

Google Chrome 149.0.7827.53 CVE
MEDIUM 4.3 CVE-2026-11161

CVE-2026-11161_CVE-2026-11161

Inappropriate implementation in DataTransfer in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a craf...

Google Chrome 149.0.7827.53 CVE
MEDIUM 6.5 CVE-2026-11160

CVE-2026-11160_CVE-2026-11160

Out of bounds read in Input in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information ...

Google Chrome 149.0.7827.53 CVE
MEDIUM 4.3 CVE-2026-11159

CVE-2026-11159_CVE-2026-11159

Uninitialized Use in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chr...

Google Chrome 149.0.7827.53 CVE
HIGH 8.6 CVE-2026-11158

CVE-2026-11158_CVE-2026-11158

Insufficient validation of untrusted input in Downloads in Google Chrome on Mac prior to 149.0.7827.53 allowed a local attacker to potentially perf...

Google Chrome 149.0.7827.53 CVE
MEDIUM 5.4 CVE-2026-11157

CVE-2026-11157_CVE-2026-11157

Script injection in Accessibility in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension...

Google Chrome 149.0.7827.53 CVE