VulnScope — package-centric CVE lookup

Search

52,294 results

Severity:CRITICAL HIGH MEDIUM LOW|Ecosystem:npm PyPI Maven Debian Alpine|⚠ In KEV only

MEDIUM5.3CVE-2026-12025Insufficient validation of untrusted input in Network in Google Chrome prior to 149.0.7827.115 allowed a remote attacker who had compromise…6/11/2026
MEDIUM6.5CVE-2026-12024Insufficient policy enforcement in DevTools in Google Chrome prior to 149.0.7827.115 allowed a remote attacker to bypass same origin policy…6/11/2026
HIGH8.3Use after free in GPU in Google Chrome on Mac prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to…6/11/2026
HIGH8.3Race in Safe Browsing in Google Chrome on Mac prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to…6/11/2026
HIGH8.8Use after free in Autofill in Google Chrome on Mac prior to 149.0.7827.115 allowed a remote attacker to potentially exploit heap corruption…6/11/2026
HIGH8.3Heap buffer overflow in Codecs in Google Chrome on Linux and ChromeOS prior to 149.0.7827.115 allowed a remote attacker who had compromised…6/11/2026
HIGH8.8Inappropriate implementation in Mojo in Google Chrome on Windows prior to 149.0.7827.115 allowed a local attacker to perform OS-level privi…6/11/2026
LOW3.1Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.115 allowed a remote attacker who had compromised the rende…6/11/2026
HIGH8.3Inappropriate implementation in DevTools in Google Chrome prior to 149.0.7827.115 allowed a remote attacker who had compromised the rendere…6/11/2026
MEDIUM5.3Use after free in Autofill in Google Chrome prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to o…6/11/2026
HIGH8.3Use after free in Cast in Google Chrome prior to 149.0.7827.115 allowed an attacker on the local network segment to potentially perform a s…6/11/2026
HIGH8.8Use after free in Media in Google Chrome on Windows prior to 149.0.7827.115 allowed a remote attacker to potentially exploit heap corruptio…6/11/2026
HIGH8.1Use after free in Network in Google Chrome prior to 149.0.7827.115 allowed an attacker in a privileged network position to potentially expl…6/11/2026
HIGH8.3Use after free in WebMIDI in Google Chrome on Windows prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer pr…6/11/2026
HIGH8.3Heap buffer overflow in GPU in Google Chrome on Android prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer…6/11/2026
HIGH8.3Insufficient validation of untrusted input in Accessibility in Google Chrome on Mac prior to 149.0.7827.115 allowed a remote attacker who h…6/11/2026
HIGH8.3Use after free in DigitalCredentials in Google Chrome prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer pr…6/11/2026
HIGH8.8Use after free in Core in Google Chrome on Windows prior to 149.0.7827.115 allowed a remote attacker to execute arbitrary code via a crafte…6/11/2026
HIGH7.3Vim is an open source, command line text editor.6/11/2026
MEDIUM5.1Vim is an open source, command line text editor.6/11/2026
HIGH7.5Vim is an open source, command line text editor.6/11/2026
HIGH7.3Vim is an open source, command line text editor.6/11/2026
MEDIUM6.9Vim is an open source, command line text editor.6/11/2026
HIGH7.5Russh SSH message fields were decoded through allocation-first parsers before field-specific bounds6/11/2026
MEDIUM5.3Russh: SSH identification parsing accepted non-canonical client banners and did not bound pre-banner input6/11/2026

← PrevPage 2 of 2092Next →