Syntax: kev:true severity:critical epss:>0.95 vendor:cisco patch:false
Filters
Severity
Exploitation
Data Source
Data Quality
Vendor
CWE — Weakness Type
Clear all
Top 20 matches Showing top matches — use filters or a more specific query to narrow
1 CRITICAL2 HIGH14 MEDIUM3 LOW
CVE-2024-7978
MEDIUM CVSS 4.3
Find Similar
Insufficient policy enforcement in Data Transfer in Google Chrome prior to 128.0.6613.84 allowed a remote attacker who convinced a user to engage in specific UI gestures to leak cross-origin data via
google
NVD RRF 0.012
CVE-2026-8011
MEDIUM CVSS 4.3
Find Similar
Insufficient policy enforcement in Search in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)
googleapplelinux
NVD RRF 0.012
CVE-2026-11038
MEDIUM CVSS 6.5
Find Similar
Insufficient policy enforcement in Subresource Integrity in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass content security policy via malicious network traffic. (Chromium se
googleapplelinux
NVD RRF 0.012
CVE-2026-11161
MEDIUM CVSS 4.3
Find Similar
Inappropriate implementation in DataTransfer in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)
googleapplelinux
NVD RRF 0.012
CVE-2026-8572
LOW CVSS 3.1
Find Similar
Insufficient policy enforcement in Network in Google Chrome on Android prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafte
google
NVD RRF 0.012
CVE-2026-11084
MEDIUM CVSS 6.5
Find Similar
Inappropriate implementation in Password Manager in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Mediu
googleapplelinux
NVD RRF 0.012
CVE-2026-11083
MEDIUM CVSS 6.5
Find Similar
Inappropriate implementation in Password Manager in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Mediu
googleapplelinux
NVD RRF 0.011
CVE-2026-11242
HIGH CVSS 7.5
Find Similar
Insufficient validation of untrusted input in Plugins in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted
googleapplelinux
NVD RRF 0.011
CVE-2025-4664
MEDIUM CVSS 4.3
Find Similar
Insufficient policy enforcement in Loader in Google Chrome prior to 136.0.7103.113 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)
google
NVD RRF 0.011
CVE-2026-11691
LOW CVSS 3.1
Find Similar
Insufficient validation of untrusted input in New Tab Page in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a c
googleapplelinux
NVD RRF 0.011
CVE-2026-11212
MEDIUM CVSS 4.3
Find Similar
Insufficient policy enforcement in DevTools in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Ch
googleapplelinux
NVD RRF 0.011
CVE-2026-11292
MEDIUM CVSS 4.3
Find Similar
Insufficient policy enforcement in Blink in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass content security policy via a crafted HTML page. (Chromium security severity: Low)
googleapplelinux
NVD RRF 0.011
CVE-2026-11011
HIGH CVSS 8.1
Find Similar
Insufficient policy enforcement in Password Manager in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HT
googleapplelinux
NVD RRF 0.011
CVE-2026-11032
MEDIUM CVSS 6.5
Find Similar
Inappropriate implementation in Password Manager in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Mediu
googleapplelinux
NVD RRF 0.011
CVE-2026-11251
LOW CVSS 3.1
Find Similar
Insufficient policy enforcement in Password Manager in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass discretionary access control vi
googleapplelinux
NVD RRF 0.011
CVE-2026-11271
MEDIUM CVSS 6.5
Find Similar
Inappropriate implementation in Passwords in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to leak cross-origin data via a craft
googleapplelinux
NVD RRF 0.010
CVE-2026-11178
MEDIUM CVSS 4.3
Find Similar
Insufficient policy enforcement in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity:
google
NVD RRF 0.010
CVE-2026-11200
MEDIUM CVSS 6.5
Find Similar
Inappropriate implementation in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)
googleapplelinux
NVD RRF 0.010
CVE-2026-11243
MEDIUM CVSS 5.4
Find Similar
Inappropriate implementation in Downloads in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Low)
googleapplelinux
NVD RRF 0.010
CVE-2026-0905
CRITICAL CVSS 9.8
Find Similar
Insufficient policy enforcement in Network in Google Chrome prior to 144.0.7559.59 allowed an attack who obtained a network log file to potentially obtain potentially sensitive information via a netwo
googlelinuxmicrosoft
NVD RRF 0.010
← Previous Page 2+ Next →