CVE Database

108042+ vulnerabilities with CVSS scores, EPSS exploit predictions, and CISA KEV status. Updated daily.

Filter: All CRITICAL HIGH MEDIUM LOW CISA KEV
Sort: Newest CVSS EPSS
CVE-2026-13829
8.3 HIGH

Insufficient validation of untrusted input in Settings in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process …

Jun 30, 2026
CVE-2026-13828
6.5 MEDIUM

Inappropriate implementation in Enterprise in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted …

Jun 30, 2026
CVE-2026-13827
7.8 HIGH

Use after free in Updater in Google Chrome on Mac prior to 150.0.7871.47 allowed a local attacker to perform privilege escalation via a malicious file. …

Jun 30, 2026
CVE-2026-13826
6.5 MEDIUM

Inappropriate implementation in Autofill in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to leak cross-origin …

Jun 30, 2026
CVE-2026-13825
8.8 HIGH

Uninitialized Use in Dawn in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium …

Jun 30, 2026
CVE-2026-13824
7.5 HIGH

Insufficient policy enforcement in Extensions in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to perform privilege escalation …

Jun 30, 2026
CVE-2026-13823
8.3 HIGH

Use after free in Glic in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a …

Jun 30, 2026
CVE-2026-13822
6.5 MEDIUM

Inappropriate implementation in Extensions in Google Chrome on Android prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malicious extension to …

Jun 30, 2026
CVE-2026-13821
8.8 HIGH

Use after free in Canvas in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted …

Jun 30, 2026
CVE-2026-13820
6.5 MEDIUM

Out of bounds read in Skia in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to …

Jun 30, 2026
CVE-2026-13819
8.1 HIGH

Out of bounds read in ANGLE in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to …

Jun 30, 2026
CVE-2026-13818
6.5 MEDIUM

Inappropriate implementation in Passwords in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security …

Jun 30, 2026
CVE-2026-13817
8.8 HIGH

Insufficient validation of untrusted input in Glic in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially perform a sandbox escape via a …

Jun 30, 2026
CVE-2026-13816
6.5 MEDIUM

Insufficient validation of untrusted input in File Input in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via …

Jun 30, 2026
CVE-2026-13815
8.8 HIGH

Use after free in Blink in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted …

Jun 30, 2026
CVE-2026-13814
7.5 HIGH

Use after free in Views in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures …

Jun 30, 2026
CVE-2026-13813
8.3 HIGH

Insufficient policy enforcement in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process …

Jun 30, 2026
CVE-2026-13812
4.7 MEDIUM

Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who convinced a user …

Jun 30, 2026
CVE-2026-13811
8.8 HIGH

Use after free in IME in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted …

Jun 30, 2026
CVE-2026-13810
6.5 MEDIUM

Inappropriate implementation in Input in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process memory via …

Jun 30, 2026
CVE-2026-13809
6.5 MEDIUM

Side-channel information leakage in Safe Browsing in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to …

Jun 30, 2026
CVE-2026-13808
4.6 MEDIUM

Insufficient data validation in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a local attacker to obtain potentially sensitive information from …

Jun 30, 2026
CVE-2026-13807
7.5 HIGH

Use after free in Import in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific …

Jun 30, 2026
CVE-2026-13806
8.1 HIGH

Insufficient validation of untrusted input in Accessibility in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to bypass …

Jun 30, 2026
CVE-2026-13805
8.8 HIGH

Use after free in GFX in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code via a crafted HTML …

Jun 30, 2026
CVE-2026-13804
8.3 HIGH

Use after free in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a …

Jun 30, 2026
CVE-2026-13803
8.3 HIGH

Type Confusion in Chrome Tabs in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a …

Jun 30, 2026
CVE-2026-13802
7.5 HIGH

Use after free in Views in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures …

Jun 30, 2026
CVE-2026-13801
8.3 HIGH

Integer overflow in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox …

Jun 30, 2026
CVE-2026-13800
7.8 HIGH

Inappropriate implementation in Updater in Google Chrome on Windows prior to 150.0.7871.47 allowed a local attacker to perform OS-level privilege escalation via a malicious file. …

Jun 30, 2026
CVE-2026-13799
8.1 HIGH

Use after free in QUIC in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to potentially exploit heap corruption via malicious network traffic. (Chromium …

Jun 30, 2026
CVE-2026-13798
9.6 CRITICAL

Heap buffer overflow in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a …

Jun 30, 2026
CVE-2026-13797
9.6 CRITICAL

Insufficient validation of untrusted input in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially …

Jun 30, 2026
CVE-2026-13796
9.6 CRITICAL

Integer overflow in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox …

Jun 30, 2026
CVE-2026-13795
6.5 MEDIUM

Insufficient policy enforcement in Chrome for iOS in Google Chrome on iOS prior to 150.0.7871.47 allowed a remote attacker to bypass navigation restrictions via a …

Jun 30, 2026
CVE-2026-13794
7.5 HIGH

Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage …

Jun 30, 2026
CVE-2026-13793
6.5 MEDIUM

Insufficient policy enforcement in SVG in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium …

Jun 30, 2026
CVE-2026-13792
9.6 CRITICAL

Use after free in Touchbar in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker to potentially perform a sandbox escape via a …

Jun 30, 2026
CVE-2026-13791
8.1 HIGH

Insufficient validation of untrusted input in Downloads in Google Chrome prior to 150.0.7871.47 allowed an attacker who convinced a user to install a malicious extension …

Jun 30, 2026
CVE-2026-13790
6.5 MEDIUM

Side-channel information leakage in Scroll in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium …

Jun 30, 2026
CVE-2026-13789
9.6 CRITICAL

Use after free in GPU in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a …

Jun 30, 2026
CVE-2026-13788
8.8 HIGH

Use after free in Fullscreen in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code via a crafted HTML …

Jun 30, 2026
CVE-2026-13787
8.1 HIGH

Use after free in Chromoting in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code via malicious network traffic. …

Jun 30, 2026
CVE-2026-13786
8.8 HIGH

Use after free in Ozone in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium …

Jun 30, 2026
CVE-2026-13785
9.6 CRITICAL

Use after free in Bluetooth in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific …

Jun 30, 2026
CVE-2026-13784
8.8 HIGH

Use after free in Views in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures …

Jun 30, 2026
CVE-2026-13783
8.8 HIGH

Use after free in Views in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures …

Jun 30, 2026
CVE-2026-13782
10.0 CRITICAL

Use after free in Browser in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a …

Jun 30, 2026
CVE-2026-13781
9.6 CRITICAL

Insufficient validation of untrusted input in Skia in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially …

Jun 30, 2026
CVE-2026-13780
9.6 CRITICAL

Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially …

Jun 30, 2026

Scan your infrastructure for known CVEs

Free website and port scanning — find vulnerabilities before attackers do.