Syntax: kev:true severity:critical epss:>0.95 vendor:cisco patch:false
Filters
Severity
Exploitation
Data Source
Data Quality
Vendor
CWE — Weakness Type
Clear all
Top 20 matches Showing top matches — use filters or a more specific query to narrow
2 HIGH14 MEDIUM4 LOW
CVE-2026-10977
MEDIUM CVSS 6.5
Find Similar
Uninitialized Use in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium securi
google
NVD RRF 0.016
CVE-2026-11159
MEDIUM CVSS 4.3
Find Similar
Uninitialized Use in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)
googleapplelinux
NVD RRF 0.016
CVE-2026-11039
MEDIUM CVSS 6.5
Find Similar
Uninitialized Use in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)
googleapplelinux
NVD RRF 0.016
CVE-2026-11057
MEDIUM CVSS 6.5
Find Similar
Uninitialized Use in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via
googleapplelinux
NVD RRF 0.016
CVE-2026-10011
LOW CVSS 3.1
Find Similar
Inappropriate implementation in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chr
google
NVD RRF 0.015
CVE-2026-11121
MEDIUM CVSS 6.5
Find Similar
Insufficient validation of untrusted input in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HT
googleapplelinux
NVD RRF 0.015
CVE-2026-11675
LOW CVSS 3.1
Find Similar
Out of bounds read in Skia in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium secu
googleapplelinux
NVD RRF 0.015
CVE-2026-7949
LOW CVSS 3.1
Find Similar
Out of bounds read in Skia in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted Chrome Extension. (Chromiu
googleapplelinux
NVD RRF 0.015
CVE-2026-11087
MEDIUM CVSS 6.5
Find Similar
Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium secur
googleapplelinux
NVD RRF 0.014
CVE-2026-10985
MEDIUM CVSS 6.5
Find Similar
Out of bounds read in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)
google
NVD RRF 0.014
CVE-2026-9923
HIGH CVSS 8.8
Find Similar
Use after free in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
google
NVD RRF 0.014
CVE-2026-11089
MEDIUM CVSS 6.5
Find Similar
Uninitialized Use in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory vi
googleapplelinux
NVD RRF 0.014
CVE-2025-0444
MEDIUM CVSS 6.3
Find Similar
Use after free in Skia in Google Chrome prior to 133.0.6943.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
google
NVD RRF 0.014
CVE-2026-9944
LOW CVSS 3.1
Find Similar
Uninitialized Use in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium secu
googlemicrosoftapple
NVD RRF 0.014
CVE-2026-7972
MEDIUM CVSS 4.3
Find Similar
Uninitialized Use in GPU in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium securit
googleapplelinux
NVD RRF 0.013
CVE-2026-10973
HIGH CVSS 7.4
Find Similar
Uninitialized Use in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)
google
NVD RRF 0.013
CVE-2026-11090
MEDIUM CVSS 6.5
Find Similar
Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)
googleapplelinux
NVD RRF 0.013
CVE-2026-11138
MEDIUM CVSS 6.5
Find Similar
Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)
googleapplelinux
NVD RRF 0.013
CVE-2026-11110
MEDIUM CVSS 6.5
Find Similar
Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)
googleapplelinux
NVD RRF 0.013
CVE-2026-11109
MEDIUM CVSS 6.5
Find Similar
Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)
googleapplelinux
NVD RRF 0.013
Page 1+ Next →