CVE Database

9215+ vulnerabilities with CVSS scores, EPSS exploit predictions, and CISA KEV status. Updated daily.

Filter: All CRITICAL HIGH MEDIUM LOW CISA KEV
Sort: Newest CVSS EPSS
CVE-2026-10879
9.8 CRITICAL

DBI versions before 1.648 for Perl have a heap overflow when preparsing SQL statements with more than 9 binders. The preparse method expands SQL placeholder …

Jun 5, 2026
CVE-2026-6274
9.8 CRITICAL

Improper Authentication, Missing authentication for critical function, Weak Authentication vulnerability in DTS Electronics Industry and Trade Ltd. Co. Redline WR3200 allows Accessing Functionality Not Properly …

Jun 5, 2026
CVE-2026-49777
10.0 CRITICAL

Improper Validation of Specified Quantity in Input vulnerability in ShapedPlugin, LLC Product Slider Pro for WooCommerce allows Malicious Software Implanted. This issue affects Product Slider …

Jun 5, 2026
CVE-2026-7763
9.8 CRITICAL

A heap-based buffer overflow vulnerability in the morse.ko HaLow Wi-Fi kernel driver in Morse Micro HaLowLink 2 software versions prior to 2.11.13 allows an unauthenticated …

Jun 5, 2026
CVE-2026-7762
9.8 CRITICAL

A heap-based buffer overflow vulnerability in the dot11ah.ko HaLow Wi-Fi kernel driver in Morse Micro HaLowLink 2 software versions prior to 2.11.13 allows an unauthenticated …

Jun 5, 2026
CVE-2026-11293
9.6 CRITICAL

Use after free in Input in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML …

Jun 5, 2026
CVE-2026-11282
9.6 CRITICAL

Insufficient policy enforcement in Sandbox in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a …

Jun 5, 2026
CVE-2026-11250
9.6 CRITICAL

Inappropriate implementation in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information …

Jun 5, 2026
CVE-2026-48579
9.1 CRITICAL

Improper authorization in Microsoft Exchange Online allows an unauthorized attacker to disclose information over a network.

Jun 4, 2026
CVE-2026-48567
10.0 CRITICAL

Authentication bypass by spoofing in Azure HorizonDB allows an unauthorized attacker to elevate privileges over a network.

Jun 4, 2026
CVE-2026-11213
9.6 CRITICAL

Insufficient validation of untrusted input in Reading Mode in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to …

Jun 4, 2026
CVE-2026-11207
9.6 CRITICAL

Insufficient validation of untrusted input in Autofill in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via malicious …

Jun 4, 2026
CVE-2026-11198
9.6 CRITICAL

Insufficient validation of untrusted input in Codecs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a …

Jun 4, 2026
CVE-2026-11167
9.6 CRITICAL

Inappropriate implementation in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform …

Jun 4, 2026
CVE-2026-11165
9.6 CRITICAL

Use after free in WebMIDI in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a …

Jun 4, 2026
CVE-2026-11163
9.6 CRITICAL

Use after free in Messages in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a …

Jun 4, 2026
CVE-2026-11153
9.1 CRITICAL

Side-channel information leakage in Forms in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium …

Jun 4, 2026
CVE-2026-11152
9.6 CRITICAL

Object lifecycle issue in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML …

Jun 4, 2026
CVE-2026-11146
9.6 CRITICAL

Insufficient validation of untrusted input in Chromoting in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially …

Jun 4, 2026
CVE-2026-11131
9.6 CRITICAL

Use after free in Autofill in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially …

Jun 4, 2026
CVE-2026-11120
9.6 CRITICAL

Insufficient validation of untrusted input in Enterprise Reporting in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to …

Jun 4, 2026
CVE-2026-11119
9.6 CRITICAL

Inappropriate implementation in GPU in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform …

Jun 4, 2026
CVE-2026-11114
9.6 CRITICAL

Use after free in Device Trust in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to …

Jun 4, 2026
CVE-2026-11113
9.6 CRITICAL

Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially …

Jun 4, 2026
CVE-2026-11112
9.6 CRITICAL

Insufficient validation of untrusted input in Chromoting in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process …

Jun 4, 2026
CVE-2026-11100
9.6 CRITICAL

Use after free in File Input in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in …

Jun 4, 2026
CVE-2026-11095
9.6 CRITICAL

Insufficient validation of untrusted input in Codecs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially …

Jun 4, 2026
CVE-2026-11094
9.6 CRITICAL

Use after free in Codecs in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially …

Jun 4, 2026
CVE-2026-11088
9.6 CRITICAL

Integer overflow in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox …

Jun 4, 2026
CVE-2026-11082
9.6 CRITICAL

Race in GPU in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a …

Jun 4, 2026
CVE-2026-11070
9.6 CRITICAL

Insufficient validation of untrusted input in Chromoting in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the network process …

Jun 4, 2026
CVE-2026-11066
9.6 CRITICAL

Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a …

Jun 4, 2026
CVE-2026-11065
9.6 CRITICAL

Use after free in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a …

Jun 4, 2026
CVE-2026-11063
9.6 CRITICAL

Insufficient validation of untrusted input in WebNN in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process …

Jun 4, 2026
CVE-2026-11061
9.6 CRITICAL

Type Confusion in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. …

Jun 4, 2026
CVE-2026-11056
9.6 CRITICAL

Insufficient validation of untrusted input in SiteIsolation in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process …

Jun 4, 2026
CVE-2026-11052
9.6 CRITICAL

Type Confusion in GPU in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform …

Jun 4, 2026
CVE-2026-11047
9.6 CRITICAL

Inappropriate implementation in Base in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform …

Jun 4, 2026
CVE-2026-11043
9.6 CRITICAL

Out of bounds write in ANGLE in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to …

Jun 4, 2026
CVE-2026-11037
9.6 CRITICAL

Out of bounds write in Codecs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted …

Jun 4, 2026
CVE-2026-11029
9.6 CRITICAL

Insufficient validation of untrusted input in Drag and Drop in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the …

Jun 4, 2026
CVE-2026-11021
9.6 CRITICAL

Insufficient validation of untrusted input in GPU in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process …

Jun 4, 2026
CVE-2026-11009
9.6 CRITICAL

Use after free in USB in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a …

Jun 4, 2026
CVE-2026-11002
9.6 CRITICAL

Use after free in Autofill in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a …

Jun 4, 2026
CVE-2026-10990
9.6 CRITICAL

Use after free in Glic in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a …

Jun 4, 2026
CVE-2026-10983
9.6 CRITICAL

Insufficient validation of untrusted input in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a …

Jun 4, 2026
CVE-2026-10974
9.6 CRITICAL

Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a …

Jun 4, 2026
CVE-2026-10972
9.6 CRITICAL

Use after free in Ozone in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a …

Jun 4, 2026
CVE-2026-10971
9.6 CRITICAL

Insufficient validation of untrusted input in Printing in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process …

Jun 4, 2026
CVE-2026-10966
9.6 CRITICAL

Inappropriate implementation in Codecs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted video file. …

Jun 4, 2026

Scan your infrastructure for known CVEs

Free website and port scanning — find vulnerabilities before attackers do.