{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","type":"deb","namespace":"debian","name":"chromium","version":"149.0.7827.53-1~deb13u1","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"149.0.7827.53-1","latest_non_vulnerable_version":"149.0.7827.114-1","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82364?format=json","vulnerability_id":"VCID-12ca-5dt6-kqdm","summary":"Insufficient validation of untrusted input in Codecs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform an out of bounds memory write via a crafted video file. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11079.json","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11079.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11079","reference_id":"","reference_type":"","scores":[{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28443","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28231","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28428","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28452","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11079"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11079","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11079"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485324","reference_id":"2485324","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485324"},{"reference_url":"https://issues.chromium.org/issues/500028989","reference_id":"500028989","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:58:25Z/"}],"url":"https://issues.chromium.org/issues/500028989"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:58:25Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11079"],"risk_score":3.2,"exploitability":"0.5","weighted_severity":"6.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-12ca-5dt6-kqdm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76748?format=json","vulnerability_id":"VCID-144z-4u1j-vkfy","summary":"Use after free in Ozone in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10902.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10902.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10902","reference_id":"","reference_type":"","scores":[{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33937","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33737","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33915","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10902"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10902","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10902"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485285","reference_id":"2485285","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485285"},{"reference_url":"https://issues.chromium.org/issues/517046249","reference_id":"517046249","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:26:35Z/"}],"url":"https://issues.chromium.org/issues/517046249"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:26:35Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10902"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-144z-4u1j-vkfy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76813?format=json","vulnerability_id":"VCID-16ja-swp1-2qdq","summary":"Use after free in Chromoting in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via malicious network traffic. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10978.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10978.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10978","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25099","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24898","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25097","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25114","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10978"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10978","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10978"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485004","reference_id":"2485004","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485004"},{"reference_url":"https://issues.chromium.org/issues/513394258","reference_id":"513394258","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:50:35Z/"}],"url":"https://issues.chromium.org/issues/513394258"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:50:35Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10978"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-16ja-swp1-2qdq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76564?format=json","vulnerability_id":"VCID-176c-e27f-ebgf","summary":"Use after free in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10961.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10961.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10961","reference_id":"","reference_type":"","scores":[{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22495","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22306","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.225","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22513","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10961"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10961","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10961"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485636","reference_id":"2485636","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485636"},{"reference_url":"https://issues.chromium.org/issues/508281950","reference_id":"508281950","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:37:54Z/"}],"url":"https://issues.chromium.org/issues/508281950"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:37:54Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10961"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-176c-e27f-ebgf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82240?format=json","vulnerability_id":"VCID-187r-4m42-bqcz","summary":"Policy bypass in Content Security Policy in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass content security policy via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11264.json","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11264.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11264","reference_id":"","reference_type":"","scores":[{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08684","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08643","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08685","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.0869","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11264"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11264","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11264"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485017","reference_id":"2485017","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485017"},{"reference_url":"https://issues.chromium.org/issues/500099106","reference_id":"500099106","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:46:39Z/"}],"url":"https://issues.chromium.org/issues/500099106"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:46:39Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11264"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"4.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-187r-4m42-bqcz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76549?format=json","vulnerability_id":"VCID-19ba-m5aq-ebeg","summary":"Insufficient validation of untrusted input in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10911.json","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10911.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10911","reference_id":"","reference_type":"","scores":[{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.3823","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.38041","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.38218","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.38243","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10911"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10911","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10911"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484955","reference_id":"2484955","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484955"},{"reference_url":"https://issues.chromium.org/issues/495819067","reference_id":"495819067","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:39:17Z/"}],"url":"https://issues.chromium.org/issues/495819067"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:39:17Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10911"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-19ba-m5aq-ebeg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82166?format=json","vulnerability_id":"VCID-1djg-cqmr-8kat","summary":"Inappropriate implementation in CSS in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11186.json","reference_id":"","reference_type":"","scores":[{"value":"9.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11186.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11186","reference_id":"","reference_type":"","scores":[{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.0857","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08532","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08573","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08575","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11186"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11186","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11186"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485144","reference_id":"2485144","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485144"},{"reference_url":"https://issues.chromium.org/issues/502805170","reference_id":"502805170","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T12:21:08Z/"}],"url":"https://issues.chromium.org/issues/502805170"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T12:21:08Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11186"],"risk_score":4.2,"exploitability":"0.5","weighted_severity":"8.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1djg-cqmr-8kat"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82039?format=json","vulnerability_id":"VCID-1fpf-w84n-s7ca","summary":"Insufficient validation of untrusted input in Codecs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted video file. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11198.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11198.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11198","reference_id":"","reference_type":"","scores":[{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28443","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28231","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28428","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28452","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11198"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11198","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11198"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485336","reference_id":"2485336","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485336"},{"reference_url":"https://issues.chromium.org/issues/504395300","reference_id":"504395300","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T14:57:13Z/"}],"url":"https://issues.chromium.org/issues/504395300"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T14:57:13Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11198"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1fpf-w84n-s7ca"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76448?format=json","vulnerability_id":"VCID-1tqz-u58a-h3e9","summary":"Out of bounds write in Skia in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10925.json","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10925.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10925","reference_id":"","reference_type":"","scores":[{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.28951","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.2874","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.28942","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.28965","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10925"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10925","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10925"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485289","reference_id":"2485289","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485289"},{"reference_url":"https://issues.chromium.org/issues/500071763","reference_id":"500071763","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:38:37Z/"}],"url":"https://issues.chromium.org/issues/500071763"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:38:37Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10925"],"risk_score":3.7,"exploitability":"0.5","weighted_severity":"7.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1tqz-u58a-h3e9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82483?format=json","vulnerability_id":"VCID-1v5u-q95c-q3df","summary":"Incorrect security UI in Messages in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11175.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11175.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11175","reference_id":"","reference_type":"","scores":[{"value":"0.00076","scoring_system":"epss","scoring_elements":"0.23095","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00076","scoring_system":"epss","scoring_elements":"0.22908","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00076","scoring_system":"epss","scoring_elements":"0.23105","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00076","scoring_system":"epss","scoring_elements":"0.23117","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11175"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11175","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11175"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485195","reference_id":"2485195","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485195"},{"reference_url":"https://issues.chromium.org/issues/502368088","reference_id":"502368088","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T16:58:17Z/"}],"url":"https://issues.chromium.org/issues/502368088"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T16:58:17Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11175"],"risk_score":2.6,"exploitability":"0.5","weighted_severity":"5.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1v5u-q95c-q3df"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/81997?format=json","vulnerability_id":"VCID-2299-rgk5-nuhj","summary":"Inappropriate implementation in Base in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11047.json","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11047.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11047","reference_id":"","reference_type":"","scores":[{"value":"0.00144","scoring_system":"epss","scoring_elements":"0.34685","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00144","scoring_system":"epss","scoring_elements":"0.34504","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00144","scoring_system":"epss","scoring_elements":"0.34681","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00144","scoring_system":"epss","scoring_elements":"0.34705","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11047"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11047","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11047"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485276","reference_id":"2485276","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485276"},{"reference_url":"https://issues.chromium.org/issues/498768132","reference_id":"498768132","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T19:04:41Z/"}],"url":"https://issues.chromium.org/issues/498768132"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T19:04:41Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11047"],"risk_score":3.7,"exploitability":"0.5","weighted_severity":"7.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2299-rgk5-nuhj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82420?format=json","vulnerability_id":"VCID-22jn-3xw5-f7d4","summary":"Insufficient validation of untrusted input in WebAppInstalls in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11008.json","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11008.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11008","reference_id":"","reference_type":"","scores":[{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.20201","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.20032","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.20205","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.20225","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11008"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11008","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11008"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485032","reference_id":"2485032","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485032"},{"reference_url":"https://issues.chromium.org/issues/495864099","reference_id":"495864099","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T16:03:48Z/"}],"url":"https://issues.chromium.org/issues/495864099"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T16:03:48Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11008"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"6.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-22jn-3xw5-f7d4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82133?format=json","vulnerability_id":"VCID-253t-31eg-tqfu","summary":"Uninitialized Use in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11089.json","reference_id":"","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11089.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11089","reference_id":"","reference_type":"","scores":[{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09277","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09233","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09285","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09287","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11089"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11089","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11089"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485261","reference_id":"2485261","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485261"},{"reference_url":"https://issues.chromium.org/issues/500154880","reference_id":"500154880","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:03:25Z/"}],"url":"https://issues.chromium.org/issues/500154880"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:03:25Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11089"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-253t-31eg-tqfu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82248?format=json","vulnerability_id":"VCID-25yh-qqdq-zbb5","summary":"Inappropriate implementation in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11106.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11106.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11106","reference_id":"","reference_type":"","scores":[{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.0319","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03181","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03194","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03177","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11106"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11106","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11106"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484966","reference_id":"2484966","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484966"},{"reference_url":"https://issues.chromium.org/issues/500508725","reference_id":"500508725","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:00:06Z/"}],"url":"https://issues.chromium.org/issues/500508725"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:00:06Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11106"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-25yh-qqdq-zbb5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82419?format=json","vulnerability_id":"VCID-29gs-gj7v-q3ab","summary":"Use after free in Views in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11042.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11042.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11042","reference_id":"","reference_type":"","scores":[{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22495","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22306","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.225","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22513","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11042"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11042","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11042"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485334","reference_id":"2485334","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485334"},{"reference_url":"https://issues.chromium.org/issues/498720094","reference_id":"498720094","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:03:13Z/"}],"url":"https://issues.chromium.org/issues/498720094"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:03:13Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11042"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-29gs-gj7v-q3ab"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82341?format=json","vulnerability_id":"VCID-29rt-akdr-jbac","summary":"Insufficient validation of untrusted input in Wallet in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11286.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11286.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11286","reference_id":"","reference_type":"","scores":[{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08697","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08656","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08698","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08704","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11286"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11286","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11286"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484965","reference_id":"2484965","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484965"},{"reference_url":"https://issues.chromium.org/issues/502110170","reference_id":"502110170","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:12:33Z/"}],"url":"https://issues.chromium.org/issues/502110170"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:12:33Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11286"],"risk_score":1.3,"exploitability":"0.5","weighted_severity":"2.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-29rt-akdr-jbac"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82336?format=json","vulnerability_id":"VCID-2ckw-9yd4-k7h4","summary":"Insufficient validation of untrusted input in Codecs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11095.json","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11095.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11095","reference_id":"","reference_type":"","scores":[{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25261","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25058","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25256","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25275","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11095"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485297","reference_id":"2485297","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485297"},{"reference_url":"https://issues.chromium.org/issues/500293394","reference_id":"500293394","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T13:12:14Z/"}],"url":"https://issues.chromium.org/issues/500293394"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T13:12:14Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11095"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2ckw-9yd4-k7h4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82141?format=json","vulnerability_id":"VCID-2hn9-mfp7-fkea","summary":"Out of bounds write in ANGLE in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11043.json","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11043.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11043","reference_id":"","reference_type":"","scores":[{"value":"0.00092","scoring_system":"epss","scoring_elements":"0.26103","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00092","scoring_system":"epss","scoring_elements":"0.25901","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00092","scoring_system":"epss","scoring_elements":"0.26101","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00092","scoring_system":"epss","scoring_elements":"0.26117","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11043"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11043","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11043"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485263","reference_id":"2485263","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485263"},{"reference_url":"https://issues.chromium.org/issues/498721316","reference_id":"498721316","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T19:11:06Z/"}],"url":"https://issues.chromium.org/issues/498721316"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T19:11:06Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11043"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2hn9-mfp7-fkea"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76554?format=json","vulnerability_id":"VCID-2kwe-ed3y-kbgz","summary":"Use after free in Ozone in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10972.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10972.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10972","reference_id":"","reference_type":"","scores":[{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30392","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30191","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30387","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30404","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10972"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10972","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10972"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485025","reference_id":"2485025","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485025"},{"reference_url":"https://issues.chromium.org/issues/513006660","reference_id":"513006660","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T02:36:02Z/"}],"url":"https://issues.chromium.org/issues/513006660"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T02:36:02Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10972"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2kwe-ed3y-kbgz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82453?format=json","vulnerability_id":"VCID-2rx8-bbn5-4yhf","summary":"Inappropriate implementation in Paint in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11139.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11139.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11139","reference_id":"","reference_type":"","scores":[{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.0319","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03181","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03194","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03177","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11139"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11139","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11139"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485331","reference_id":"2485331","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485331"},{"reference_url":"https://issues.chromium.org/issues/501650594","reference_id":"501650594","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:40:44Z/"}],"url":"https://issues.chromium.org/issues/501650594"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:40:44Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11139"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2rx8-bbn5-4yhf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82471?format=json","vulnerability_id":"VCID-2xnx-hkqd-vbd7","summary":"Use after free in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11065.json","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11065.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11065","reference_id":"","reference_type":"","scores":[{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30392","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30191","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30387","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30404","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11065"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11065","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11065"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485231","reference_id":"2485231","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485231"},{"reference_url":"https://issues.chromium.org/issues/499093536","reference_id":"499093536","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T18:24:08Z/"}],"url":"https://issues.chromium.org/issues/499093536"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T18:24:08Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11065"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2xnx-hkqd-vbd7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82386?format=json","vulnerability_id":"VCID-2ysv-kgn2-2ub1","summary":"Inappropriate implementation in Permissions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass content security policy via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11260.json","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11260.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11260","reference_id":"","reference_type":"","scores":[{"value":"0.00022","scoring_system":"epss","scoring_elements":"0.06334","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00022","scoring_system":"epss","scoring_elements":"0.06348","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00022","scoring_system":"epss","scoring_elements":"0.06367","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00022","scoring_system":"epss","scoring_elements":"0.06356","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11260"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11260","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11260"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485113","reference_id":"2485113","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485113"},{"reference_url":"https://issues.chromium.org/issues/499257860","reference_id":"499257860","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:53:14Z/"}],"url":"https://issues.chromium.org/issues/499257860"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:53:14Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11260"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"4.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2ysv-kgn2-2ub1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82439?format=json","vulnerability_id":"VCID-2zs1-g822-87b4","summary":"Integer overflow in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to cause a denial of service via a malicious file. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11290.json","reference_id":"","reference_type":"","scores":[{"value":"5.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11290.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11290","reference_id":"","reference_type":"","scores":[{"value":"5e-05","scoring_system":"epss","scoring_elements":"0.00264","published_at":"2026-06-12T12:55:00Z"},{"value":"5e-05","scoring_system":"epss","scoring_elements":"0.00265","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11290"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11290","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11290"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485055","reference_id":"2485055","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485055"},{"reference_url":"https://issues.chromium.org/issues/502264647","reference_id":"502264647","reference_type":"","scores":[{"value":"5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T18:59:35Z/"}],"url":"https://issues.chromium.org/issues/502264647"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T18:59:35Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11290"],"risk_score":2.2,"exploitability":"0.5","weighted_severity":"4.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2zs1-g822-87b4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82162?format=json","vulnerability_id":"VCID-34zg-yzx4-xffj","summary":"Use after free in Autofill in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11002.json","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11002.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11002","reference_id":"","reference_type":"","scores":[{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30392","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30191","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30387","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30404","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11002"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11002","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11002"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485142","reference_id":"2485142","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485142"},{"reference_url":"https://issues.chromium.org/issues/494740162","reference_id":"494740162","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T17:05:45Z/"}],"url":"https://issues.chromium.org/issues/494740162"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T17:05:45Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11002"],"risk_score":3.7,"exploitability":"0.5","weighted_severity":"7.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-34zg-yzx4-xffj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76633?format=json","vulnerability_id":"VCID-39wb-x1m3-pfc8","summary":"Race in Codecs in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10940.json","reference_id":"","reference_type":"","scores":[{"value":"7.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10940.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10940","reference_id":"","reference_type":"","scores":[{"value":"0.00078","scoring_system":"epss","scoring_elements":"0.23512","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00078","scoring_system":"epss","scoring_elements":"0.23326","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00078","scoring_system":"epss","scoring_elements":"0.23521","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00078","scoring_system":"epss","scoring_elements":"0.23534","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10940"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10940","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10940"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485038","reference_id":"2485038","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485038"},{"reference_url":"https://issues.chromium.org/issues/503879873","reference_id":"503879873","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:38:13Z/"}],"url":"https://issues.chromium.org/issues/503879873"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:38:13Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10940"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-39wb-x1m3-pfc8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82122?format=json","vulnerability_id":"VCID-3c19-hke2-zyhu","summary":"Inappropriate implementation in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11176.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11176.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11176","reference_id":"","reference_type":"","scores":[{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.0319","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03181","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03194","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03177","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11176"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11176","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11176"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485119","reference_id":"2485119","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485119"},{"reference_url":"https://issues.chromium.org/issues/502371717","reference_id":"502371717","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T16:54:52Z/"}],"url":"https://issues.chromium.org/issues/502371717"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T16:54:52Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11176"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3c19-hke2-zyhu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82117?format=json","vulnerability_id":"VCID-3dhb-7fhz-9ygp","summary":"Insufficient validation of untrusted input in Plugins in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11242.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11242.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11242","reference_id":"","reference_type":"","scores":[{"value":"0.00048","scoring_system":"epss","scoring_elements":"0.15289","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00048","scoring_system":"epss","scoring_elements":"0.15189","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00048","scoring_system":"epss","scoring_elements":"0.15318","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00048","scoring_system":"epss","scoring_elements":"0.15324","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11242"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11242","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11242"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485020","reference_id":"2485020","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485020"},{"reference_url":"https://issues.chromium.org/issues/497385823","reference_id":"497385823","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-06-05T12:34:04Z/"}],"url":"https://issues.chromium.org/issues/497385823"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-06-05T12:34:04Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11242"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3dhb-7fhz-9ygp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82123?format=json","vulnerability_id":"VCID-3j2e-ebpy-w3hv","summary":"Use after free in Autofill in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11131.json","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11131.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11131","reference_id":"","reference_type":"","scores":[{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22495","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22306","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.225","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22513","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11131"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11131","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11131"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485160","reference_id":"2485160","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485160"},{"reference_url":"https://issues.chromium.org/issues/501561644","reference_id":"501561644","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T03:55:12Z/"}],"url":"https://issues.chromium.org/issues/501561644"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T03:55:12Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11131"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3j2e-ebpy-w3hv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76824?format=json","vulnerability_id":"VCID-3jyq-7mg9-6fdp","summary":"Insufficient data validation in Animation in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10992.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10992.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10992","reference_id":"","reference_type":"","scores":[{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11002","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.10974","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11036","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11032","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10992"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10992","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10992"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485259","reference_id":"2485259","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485259"},{"reference_url":"https://issues.chromium.org/issues/493534964","reference_id":"493534964","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T16:43:12Z/"}],"url":"https://issues.chromium.org/issues/493534964"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T16:43:12Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10992"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3jyq-7mg9-6fdp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76736?format=json","vulnerability_id":"VCID-3qdv-1xpc-rygj","summary":"Uninitialized Use in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10973.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10973.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10973","reference_id":"","reference_type":"","scores":[{"value":"0.04819","scoring_system":"epss","scoring_elements":"0.89782","published_at":"2026-06-14T12:55:00Z"},{"value":"0.04819","scoring_system":"epss","scoring_elements":"0.89743","published_at":"2026-06-11T12:55:00Z"},{"value":"0.04819","scoring_system":"epss","scoring_elements":"0.89777","published_at":"2026-06-12T12:55:00Z"},{"value":"0.04819","scoring_system":"epss","scoring_elements":"0.89784","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10973"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10973","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10973"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485277","reference_id":"2485277","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485277"},{"reference_url":"https://issues.chromium.org/issues/513042859","reference_id":"513042859","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T02:38:03Z/"}],"url":"https://issues.chromium.org/issues/513042859"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T02:38:03Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10973"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3qdv-1xpc-rygj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82041?format=json","vulnerability_id":"VCID-3qdv-n1nw-v3e5","summary":"Inappropriate implementation in Downloads in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11107.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11107.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11107","reference_id":"","reference_type":"","scores":[{"value":"0.00024","scoring_system":"epss","scoring_elements":"0.07122","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00024","scoring_system":"epss","scoring_elements":"0.07099","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00024","scoring_system":"epss","scoring_elements":"0.07132","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00024","scoring_system":"epss","scoring_elements":"0.07127","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11107"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11107","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11107"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485076","reference_id":"2485076","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485076"},{"reference_url":"https://issues.chromium.org/issues/500510384","reference_id":"500510384","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:03:26Z/"}],"url":"https://issues.chromium.org/issues/500510384"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:03:26Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11107"],"risk_score":1.3,"exploitability":"0.5","weighted_severity":"2.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3qdv-n1nw-v3e5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82027?format=json","vulnerability_id":"VCID-3qsy-94yp-mfcq","summary":"Inappropriate implementation in SVG in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11182.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11182.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11182","reference_id":"","reference_type":"","scores":[{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10866","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10842","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10901","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10897","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11182"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11182","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11182"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485223","reference_id":"2485223","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485223"},{"reference_url":"https://issues.chromium.org/issues/502651014","reference_id":"502651014","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:03:14Z/"}],"url":"https://issues.chromium.org/issues/502651014"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:03:14Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11182"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3qsy-94yp-mfcq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76574?format=json","vulnerability_id":"VCID-3rd7-ys79-u3c8","summary":"Use after free in Cast in Google Chrome prior to 149.0.7827.53 allowed an attacker on the local network segment to execute arbitrary code via malicious network traffic. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10926.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10926.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10926","reference_id":"","reference_type":"","scores":[{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.03599","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.0358","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.03594","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.03585","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10926"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10926","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10926"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484947","reference_id":"2484947","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484947"},{"reference_url":"https://issues.chromium.org/issues/500075522","reference_id":"500075522","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:42:27Z/"}],"url":"https://issues.chromium.org/issues/500075522"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:42:27Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10926"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3rd7-ys79-u3c8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76716?format=json","vulnerability_id":"VCID-3tvu-v7qw-kbc9","summary":"Use after free in Chromecast in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10884.json","reference_id":"","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10884.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10884","reference_id":"","reference_type":"","scores":[{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30392","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30191","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30387","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30404","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10884"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10884","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10884"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485054","reference_id":"2485054","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485054"},{"reference_url":"https://issues.chromium.org/issues/503617302","reference_id":"503617302","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:39:50Z/"}],"url":"https://issues.chromium.org/issues/503617302"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:39:50Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10884"],"risk_score":3.9,"exploitability":"0.5","weighted_severity":"7.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3tvu-v7qw-kbc9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82297?format=json","vulnerability_id":"VCID-3wtg-uf1b-8qd7","summary":"Insufficient validation of untrusted input in WebAuthentication in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11244.json","reference_id":"","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11244.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11244","reference_id":"","reference_type":"","scores":[{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09825","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.0979","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09839","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.0984","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11244"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11244","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11244"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485107","reference_id":"2485107","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485107"},{"reference_url":"https://issues.chromium.org/issues/497609145","reference_id":"497609145","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T12:14:28Z/"}],"url":"https://issues.chromium.org/issues/497609145"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T12:14:28Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11244"],"risk_score":3.9,"exploitability":"0.5","weighted_severity":"7.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3wtg-uf1b-8qd7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76849?format=json","vulnerability_id":"VCID-3y7y-u8jj-1qht","summary":"Use after free in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10948.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10948.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10948","reference_id":"","reference_type":"","scores":[{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.31174","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.3098","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.31176","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.31191","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10948"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10948","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10948"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485049","reference_id":"2485049","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485049"},{"reference_url":"https://issues.chromium.org/issues/504599749","reference_id":"504599749","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:26:02Z/"}],"url":"https://issues.chromium.org/issues/504599749"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:26:02Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10948"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3y7y-u8jj-1qht"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82052?format=json","vulnerability_id":"VCID-46vj-utgn-xkem","summary":"Insufficient validation of untrusted input in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11237.json","reference_id":"","reference_type":"","scores":[{"value":"3.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11237.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11237","reference_id":"","reference_type":"","scores":[{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25261","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25058","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25256","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25275","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11237"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11237","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11237"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485143","reference_id":"2485143","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485143"},{"reference_url":"https://issues.chromium.org/issues/496617698","reference_id":"496617698","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T12:31:27Z/"}],"url":"https://issues.chromium.org/issues/496617698"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T12:31:27Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11237"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-46vj-utgn-xkem"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76439?format=json","vulnerability_id":"VCID-475n-61ky-8qgz","summary":"Use after free in Passwords in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10901.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10901.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10901","reference_id":"","reference_type":"","scores":[{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33937","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33737","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33915","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10901"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10901","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10901"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485154","reference_id":"2485154","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485154"},{"reference_url":"https://issues.chromium.org/issues/516957738","reference_id":"516957738","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:26:40Z/"}],"url":"https://issues.chromium.org/issues/516957738"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:26:40Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10901"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-475n-61ky-8qgz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82412?format=json","vulnerability_id":"VCID-4e9c-g9fx-vqc6","summary":"Use after free in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11040.json","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11040.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11040","reference_id":"","reference_type":"","scores":[{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30392","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30191","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30387","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30404","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11040"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11040","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11040"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485161","reference_id":"2485161","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485161"},{"reference_url":"https://issues.chromium.org/issues/498371085","reference_id":"498371085","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:45:21Z/"}],"url":"https://issues.chromium.org/issues/498371085"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:45:21Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11040"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4e9c-g9fx-vqc6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82019?format=json","vulnerability_id":"VCID-4enr-8a8k-mqaz","summary":"Insufficient policy enforcement in History in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11309.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11309.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11309","reference_id":"","reference_type":"","scores":[{"value":"0.00017","scoring_system":"epss","scoring_elements":"0.0411","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00017","scoring_system":"epss","scoring_elements":"0.04103","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00017","scoring_system":"epss","scoring_elements":"0.0412","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11309"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11309","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11309"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484988","reference_id":"2484988","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484988"},{"reference_url":"https://issues.chromium.org/issues/506392934","reference_id":"506392934","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T13:22:40Z/"}],"url":"https://issues.chromium.org/issues/506392934"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T13:22:40Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11309"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4enr-8a8k-mqaz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82128?format=json","vulnerability_id":"VCID-4mtb-1drq-eyax","summary":"Insufficient validation of untrusted input in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11121.json","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11121.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11121","reference_id":"","reference_type":"","scores":[{"value":"0.00043","scoring_system":"epss","scoring_elements":"0.13711","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00043","scoring_system":"epss","scoring_elements":"0.13622","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00043","scoring_system":"epss","scoring_elements":"0.13739","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11121"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11121","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11121"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485015","reference_id":"2485015","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485015"},{"reference_url":"https://issues.chromium.org/issues/501483855","reference_id":"501483855","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T15:27:24Z/"}],"url":"https://issues.chromium.org/issues/501483855"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T15:27:24Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11121"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"6.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4mtb-1drq-eyax"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82472?format=json","vulnerability_id":"VCID-4n5a-kxmq-n3au","summary":"Integer overflow in Chromoting in Google Chrome on Windows prior to 149.0.7827.53 allowed a local attacker to obtain potentially sensitive information from process memory via a crafted ETW event. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11281.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11281.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11281","reference_id":"","reference_type":"","scores":[{"value":"6e-05","scoring_system":"epss","scoring_elements":"0.00354","published_at":"2026-06-14T12:55:00Z"},{"value":"6e-05","scoring_system":"epss","scoring_elements":"0.0035","published_at":"2026-06-11T12:55:00Z"},{"value":"6e-05","scoring_system":"epss","scoring_elements":"0.00349","published_at":"2026-06-12T12:55:00Z"},{"value":"6e-05","scoring_system":"epss","scoring_elements":"0.00347","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11281"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11281","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11281"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485208","reference_id":"2485208","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485208"},{"reference_url":"https://issues.chromium.org/issues/501900366","reference_id":"501900366","reference_type":"","scores":[{"value":"5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:23:11Z/"}],"url":"https://issues.chromium.org/issues/501900366"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:23:11Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11281"],"risk_score":1.5,"exploitability":"0.5","weighted_severity":"3.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4n5a-kxmq-n3au"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82507?format=json","vulnerability_id":"VCID-4pab-zg3e-kbgx","summary":"Insufficient policy enforcement in Subresource Integrity in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass content security policy via malicious network traffic. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11038.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11038.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11038","reference_id":"","reference_type":"","scores":[{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09752","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09711","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09762","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09764","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11038"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11038","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11038"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485193","reference_id":"2485193","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485193"},{"reference_url":"https://issues.chromium.org/issues/498080391","reference_id":"498080391","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:41:49Z/"}],"url":"https://issues.chromium.org/issues/498080391"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:41:49Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11038"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4pab-zg3e-kbgx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82427?format=json","vulnerability_id":"VCID-4tx7-mvzt-wyh1","summary":"Insufficient validation of untrusted input in Network in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11223.json","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11223.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11223","reference_id":"","reference_type":"","scores":[{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09752","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09711","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09762","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09764","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11223"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11223","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11223"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485247","reference_id":"2485247","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485247"},{"reference_url":"https://issues.chromium.org/issues/494800494","reference_id":"494800494","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T13:44:00Z/"}],"url":"https://issues.chromium.org/issues/494800494"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T13:44:00Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11223"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"6.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4tx7-mvzt-wyh1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82480?format=json","vulnerability_id":"VCID-4v36-dg1h-xkdd","summary":"Inappropriate implementation in WebUI in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform domain spoofing via a crafted domain name. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11225.json","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11225.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11225","reference_id":"","reference_type":"","scores":[{"value":"0.00022","scoring_system":"epss","scoring_elements":"0.06467","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00022","scoring_system":"epss","scoring_elements":"0.06479","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00022","scoring_system":"epss","scoring_elements":"0.06498","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00022","scoring_system":"epss","scoring_elements":"0.06486","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11225"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11225","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11225"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485311","reference_id":"2485311","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485311"},{"reference_url":"https://issues.chromium.org/issues/503346647","reference_id":"503346647","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T13:51:12Z/"}],"url":"https://issues.chromium.org/issues/503346647"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T13:51:12Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11225"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"4.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4v36-dg1h-xkdd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76790?format=json","vulnerability_id":"VCID-4wku-trgd-cbhd","summary":"Use after free in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10991.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10991.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10991","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25099","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24898","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25097","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25114","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10991"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10991","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10991"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485186","reference_id":"2485186","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485186"},{"reference_url":"https://issues.chromium.org/issues/503553614","reference_id":"503553614","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:25:26Z/"}],"url":"https://issues.chromium.org/issues/503553614"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:25:26Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10991"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4wku-trgd-cbhd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82334?format=json","vulnerability_id":"VCID-4ws4-72g7-hkgb","summary":"Use after free in Device Trust in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11114.json","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11114.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11114","reference_id":"","reference_type":"","scores":[{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22495","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22306","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.225","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22513","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11114"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11114","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11114"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485087","reference_id":"2485087","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485087"},{"reference_url":"https://issues.chromium.org/issues/501360342","reference_id":"501360342","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T03:17:09Z/"}],"url":"https://issues.chromium.org/issues/501360342"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T03:17:09Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11114"],"risk_score":3.7,"exploitability":"0.5","weighted_severity":"7.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4ws4-72g7-hkgb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82271?format=json","vulnerability_id":"VCID-4xtp-uejt-x3ff","summary":"Inappropriate implementation in Isolated Web Apps in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a malicious file. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11102.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11102.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11102","reference_id":"","reference_type":"","scores":[{"value":"0.00094","scoring_system":"epss","scoring_elements":"0.26428","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00094","scoring_system":"epss","scoring_elements":"0.26228","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00094","scoring_system":"epss","scoring_elements":"0.26429","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00094","scoring_system":"epss","scoring_elements":"0.26442","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11102"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11102","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11102"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485218","reference_id":"2485218","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485218"},{"reference_url":"https://issues.chromium.org/issues/500468338","reference_id":"500468338","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T02:50:35Z/"}],"url":"https://issues.chromium.org/issues/500468338"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T02:50:35Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11102"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4xtp-uejt-x3ff"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82073?format=json","vulnerability_id":"VCID-4z1u-zans-6yff","summary":"Race in GPU in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11082.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11082.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11082","reference_id":"","reference_type":"","scores":[{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22495","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22306","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.225","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22513","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11082"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11082","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11082"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485114","reference_id":"2485114","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485114"},{"reference_url":"https://issues.chromium.org/issues/500079715","reference_id":"500079715","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T14:28:53Z/"}],"url":"https://issues.chromium.org/issues/500079715"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T14:28:53Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11082"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4z1u-zans-6yff"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82059?format=json","vulnerability_id":"VCID-4zsa-ypsh-fubh","summary":"Inappropriate implementation in CSS in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11156.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11156.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11156","reference_id":"","reference_type":"","scores":[{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02326","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02333","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02331","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11156"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11156","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11156"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484958","reference_id":"2484958","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484958"},{"reference_url":"https://issues.chromium.org/issues/501810226","reference_id":"501810226","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T17:45:53Z/"}],"url":"https://issues.chromium.org/issues/501810226"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T17:45:53Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11156"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4zsa-ypsh-fubh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82529?format=json","vulnerability_id":"VCID-521n-hqu9-jbff","summary":"Use after free in Chromoting in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via malicious network traffic. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11224.json","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11224.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11224","reference_id":"","reference_type":"","scores":[{"value":"0.00209","scoring_system":"epss","scoring_elements":"0.43602","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00209","scoring_system":"epss","scoring_elements":"0.43435","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00209","scoring_system":"epss","scoring_elements":"0.43592","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00209","scoring_system":"epss","scoring_elements":"0.43611","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11224"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11224","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11224"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485328","reference_id":"2485328","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485328"},{"reference_url":"https://issues.chromium.org/issues/502461760","reference_id":"502461760","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T13:52:43Z/"}],"url":"https://issues.chromium.org/issues/502461760"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T13:52:43Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11224"],"risk_score":3.3,"exploitability":"0.5","weighted_severity":"6.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-521n-hqu9-jbff"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82492?format=json","vulnerability_id":"VCID-568m-jzaj-47eb","summary":"Uninitialized Use in WebML in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11033.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11033.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11033","reference_id":"","reference_type":"","scores":[{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08478","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08441","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.0848","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08483","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11033"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11033","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11033"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485109","reference_id":"2485109","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485109"},{"reference_url":"https://issues.chromium.org/issues/497926664","reference_id":"497926664","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T18:23:38Z/"}],"url":"https://issues.chromium.org/issues/497926664"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T18:23:38Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11033"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-568m-jzaj-47eb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82176?format=json","vulnerability_id":"VCID-57ws-mpua-zye6","summary":"Inappropriate implementation in Permissions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11300.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11300.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11300","reference_id":"","reference_type":"","scores":[{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06258","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06266","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06288","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06277","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11300"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11300","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11300"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484951","reference_id":"2484951","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484951"},{"reference_url":"https://issues.chromium.org/issues/503614310","reference_id":"503614310","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:22:34Z/"}],"url":"https://issues.chromium.org/issues/503614310"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:22:34Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11300"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-57ws-mpua-zye6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82003?format=json","vulnerability_id":"VCID-5dc7-fce7-3ka5","summary":"Insufficient policy enforcement in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to inject scripts or HTML into a privileged page via a crafted Chrome Extension. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11062.json","reference_id":"","reference_type":"","scores":[{"value":"9.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11062.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11062","reference_id":"","reference_type":"","scores":[{"value":"0.00019","scoring_system":"epss","scoring_elements":"0.05345","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00019","scoring_system":"epss","scoring_elements":"0.05342","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00019","scoring_system":"epss","scoring_elements":"0.05361","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00019","scoring_system":"epss","scoring_elements":"0.05355","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11062"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11062","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11062"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485146","reference_id":"2485146","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485146"},{"reference_url":"https://issues.chromium.org/issues/499033012","reference_id":"499033012","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T18:27:25Z/"}],"url":"https://issues.chromium.org/issues/499033012"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T18:27:25Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11062"],"risk_score":4.2,"exploitability":"0.5","weighted_severity":"8.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5dc7-fce7-3ka5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82224?format=json","vulnerability_id":"VCID-5f6g-jgab-dkan","summary":"Inappropriate implementation in PDF in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11261.json","reference_id":"","reference_type":"","scores":[{"value":"2.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11261.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11261","reference_id":"","reference_type":"","scores":[{"value":"0.0004","scoring_system":"epss","scoring_elements":"0.12651","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0004","scoring_system":"epss","scoring_elements":"0.12573","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0004","scoring_system":"epss","scoring_elements":"0.12666","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0004","scoring_system":"epss","scoring_elements":"0.12672","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11261"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11261","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11261"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485254","reference_id":"2485254","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485254"},{"reference_url":"https://issues.chromium.org/issues/499262832","reference_id":"499262832","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:48:25Z/"}],"url":"https://issues.chromium.org/issues/499262832"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:48:25Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11261"],"risk_score":1.3,"exploitability":"0.5","weighted_severity":"2.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5f6g-jgab-dkan"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82314?format=json","vulnerability_id":"VCID-5f8p-ryeb-sude","summary":"Insufficient validation of untrusted input in Network in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11013.json","reference_id":"","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11013.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11013","reference_id":"","reference_type":"","scores":[{"value":"0.00069","scoring_system":"epss","scoring_elements":"0.21548","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00069","scoring_system":"epss","scoring_elements":"0.21377","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00069","scoring_system":"epss","scoring_elements":"0.21561","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00069","scoring_system":"epss","scoring_elements":"0.21575","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11013"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11013","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11013"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485202","reference_id":"2485202","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485202"},{"reference_url":"https://issues.chromium.org/issues/497056412","reference_id":"497056412","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T15:15:49Z/"}],"url":"https://issues.chromium.org/issues/497056412"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T15:15:49Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11013"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5f8p-ryeb-sude"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82132?format=json","vulnerability_id":"VCID-5gs9-m6ke-nkh4","summary":"Use after free in Extensions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11230.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11230.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11230","reference_id":"","reference_type":"","scores":[{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33937","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33737","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33915","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11230"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11230","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11230"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485327","reference_id":"2485327","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485327"},{"reference_url":"https://issues.chromium.org/issues/493225428","reference_id":"493225428","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:23:58Z/"}],"url":"https://issues.chromium.org/issues/493225428"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:23:58Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11230"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5gs9-m6ke-nkh4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82354?format=json","vulnerability_id":"VCID-5mcb-ey3s-e3d1","summary":"Inappropriate implementation in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11202.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11202.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11202","reference_id":"","reference_type":"","scores":[{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28443","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28231","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28428","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28452","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11202"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11202","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11202"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485640","reference_id":"2485640","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485640"},{"reference_url":"https://issues.chromium.org/issues/505144022","reference_id":"505144022","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T14:40:48Z/"}],"url":"https://issues.chromium.org/issues/505144022"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T14:40:48Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11202"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5mcb-ey3s-e3d1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82363?format=json","vulnerability_id":"VCID-5mkb-56fx-9ba7","summary":"Inappropriate implementation in Site Isolation in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11174.json","reference_id":"","reference_type":"","scores":[{"value":"7.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11174.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11174","reference_id":"","reference_type":"","scores":[{"value":"0.00031","scoring_system":"epss","scoring_elements":"0.0934","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00031","scoring_system":"epss","scoring_elements":"0.09301","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00031","scoring_system":"epss","scoring_elements":"0.09353","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00031","scoring_system":"epss","scoring_elements":"0.09351","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11174"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11174","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11174"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485240","reference_id":"2485240","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485240"},{"reference_url":"https://issues.chromium.org/issues/502348223","reference_id":"502348223","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T17:04:53Z/"}],"url":"https://issues.chromium.org/issues/502348223"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T17:04:53Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11174"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5mkb-56fx-9ba7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76836?format=json","vulnerability_id":"VCID-5myw-jsqd-8yfx","summary":"Use after free in Viz in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10918.json","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10918.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10918","reference_id":"","reference_type":"","scores":[{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30392","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30191","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30387","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30404","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10918"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10918","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10918"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485000","reference_id":"2485000","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485000"},{"reference_url":"https://issues.chromium.org/issues/498259721","reference_id":"498259721","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:39:00Z/"}],"url":"https://issues.chromium.org/issues/498259721"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:39:00Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10918"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5myw-jsqd-8yfx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76856?format=json","vulnerability_id":"VCID-5qdk-azee-rfd5","summary":"Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10974.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10974.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10974","reference_id":"","reference_type":"","scores":[{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25261","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25058","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25256","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25275","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10974"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10974","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10974"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485064","reference_id":"2485064","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485064"},{"reference_url":"https://issues.chromium.org/issues/513135862","reference_id":"513135862","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T20:04:09Z/"}],"url":"https://issues.chromium.org/issues/513135862"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T20:04:09Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10974"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5qdk-azee-rfd5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82313?format=json","vulnerability_id":"VCID-5t3a-pd35-1qae","summary":"Insufficient validation of untrusted input in Enterprise Reporting in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11120.json","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11120.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11120","reference_id":"","reference_type":"","scores":[{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25261","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25058","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25256","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25275","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11120"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11120","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11120"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485125","reference_id":"2485125","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485125"},{"reference_url":"https://issues.chromium.org/issues/501467566","reference_id":"501467566","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-08T15:13:41Z/"}],"url":"https://issues.chromium.org/issues/501467566"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-08T15:13:41Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11120"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5t3a-pd35-1qae"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82054?format=json","vulnerability_id":"VCID-5t9q-6gwk-eqch","summary":"Use after free in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11003.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11003.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11003","reference_id":"","reference_type":"","scores":[{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23165","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.2298","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23176","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23187","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11003"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11003","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11003"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485001","reference_id":"2485001","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485001"},{"reference_url":"https://issues.chromium.org/issues/494823867","reference_id":"494823867","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:25:17Z/"}],"url":"https://issues.chromium.org/issues/494823867"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:25:17Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11003"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5t9q-6gwk-eqch"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76544?format=json","vulnerability_id":"VCID-5wge-dt9g-buga","summary":"Inappropriate implementation in Codecs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted video file. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10966.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10966.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10966","reference_id":"","reference_type":"","scores":[{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25261","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25058","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25256","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25275","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10966"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10966","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10966"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485270","reference_id":"2485270","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485270"},{"reference_url":"https://issues.chromium.org/issues/511713779","reference_id":"511713779","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T02:27:27Z/"}],"url":"https://issues.chromium.org/issues/511713779"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T02:27:27Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10966"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5wge-dt9g-buga"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82075?format=json","vulnerability_id":"VCID-5y5s-r2vs-bkat","summary":"Use after free in Views in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11117.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11117.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11117","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25099","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24898","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25097","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25114","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11117"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11117","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11117"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484991","reference_id":"2484991","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484991"},{"reference_url":"https://issues.chromium.org/issues/501403820","reference_id":"501403820","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:24:29Z/"}],"url":"https://issues.chromium.org/issues/501403820"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:24:29Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11117"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5y5s-r2vs-bkat"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82337?format=json","vulnerability_id":"VCID-5z3a-smns-gkhu","summary":"Use after free in Codecs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11208.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11208.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11208","reference_id":"","reference_type":"","scores":[{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.0914","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09095","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09152","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11208"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11208","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11208"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485335","reference_id":"2485335","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485335"},{"reference_url":"https://issues.chromium.org/issues/506387278","reference_id":"506387278","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:38:15Z/"}],"url":"https://issues.chromium.org/issues/506387278"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:38:15Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11208"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5z3a-smns-gkhu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82438?format=json","vulnerability_id":"VCID-61gm-4u2c-27d6","summary":"Inappropriate implementation in Media Session in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11181.json","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11181.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11181","reference_id":"","reference_type":"","scores":[{"value":"0.00014","scoring_system":"epss","scoring_elements":"0.02534","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00014","scoring_system":"epss","scoring_elements":"0.0253","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00014","scoring_system":"epss","scoring_elements":"0.02533","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00014","scoring_system":"epss","scoring_elements":"0.02524","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11181"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11181","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11181"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485210","reference_id":"2485210","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485210"},{"reference_url":"https://issues.chromium.org/issues/502633299","reference_id":"502633299","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T16:15:03Z/"}],"url":"https://issues.chromium.org/issues/502633299"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T16:15:03Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11181"],"risk_score":3.7,"exploitability":"0.5","weighted_severity":"7.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-61gm-4u2c-27d6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76552?format=json","vulnerability_id":"VCID-61na-553e-y3da","summary":"Script injection in Headless in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10928.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10928.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10928","reference_id":"","reference_type":"","scores":[{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.28811","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.28598","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.28798","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.28822","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10928"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10928","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10928"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485175","reference_id":"2485175","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485175"},{"reference_url":"https://issues.chromium.org/issues/500124367","reference_id":"500124367","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:40:48Z/"}],"url":"https://issues.chromium.org/issues/500124367"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:40:48Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10928"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-61na-553e-y3da"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82485?format=json","vulnerability_id":"VCID-6bew-v5za-xuex","summary":"Side-channel information leakage in PerformanceAPIs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11284.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11284.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11284","reference_id":"","reference_type":"","scores":[{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10866","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10842","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10901","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10897","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11284"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11284","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11284"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485027","reference_id":"2485027","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485027"},{"reference_url":"https://issues.chromium.org/issues/502073069","reference_id":"502073069","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:14:55Z/"}],"url":"https://issues.chromium.org/issues/502073069"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:14:55Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11284"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6bew-v5za-xuex"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76428?format=json","vulnerability_id":"VCID-6bk6-mk62-wuha","summary":"Type Confusion in ANGLE in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10955.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10955.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10955","reference_id":"","reference_type":"","scores":[{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25343","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.2514","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25338","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25355","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10955"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10955","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10955"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485060","reference_id":"2485060","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485060"},{"reference_url":"https://issues.chromium.org/issues/506374676","reference_id":"506374676","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T02:24:58Z/"}],"url":"https://issues.chromium.org/issues/506374676"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T02:24:58Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10955"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6bk6-mk62-wuha"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82360?format=json","vulnerability_id":"VCID-6csp-zynk-dbcm","summary":"Insufficient policy enforcement in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to bypass site isolation via a crafted Chrome Extension. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11014.json","reference_id":"","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11014.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11014","reference_id":"","reference_type":"","scores":[{"value":"0.00022","scoring_system":"epss","scoring_elements":"0.0649","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00022","scoring_system":"epss","scoring_elements":"0.06499","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00022","scoring_system":"epss","scoring_elements":"0.0652","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00022","scoring_system":"epss","scoring_elements":"0.06508","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11014"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11014","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11014"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485227","reference_id":"2485227","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485227"},{"reference_url":"https://issues.chromium.org/issues/497058611","reference_id":"497058611","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T15:53:59Z/"}],"url":"https://issues.chromium.org/issues/497058611"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T15:53:59Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11014"],"risk_score":3.2,"exploitability":"0.5","weighted_severity":"6.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6csp-zynk-dbcm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82301?format=json","vulnerability_id":"VCID-6k3h-567z-bfb3","summary":"Use after free in Network in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially exploit heap corruption via malicious network traffic. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11030.json","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11030.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11030","reference_id":"","reference_type":"","scores":[{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22495","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22306","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.225","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22513","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11030"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11030","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11030"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484970","reference_id":"2484970","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484970"},{"reference_url":"https://issues.chromium.org/issues/497722502","reference_id":"497722502","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T19:18:14Z/"}],"url":"https://issues.chromium.org/issues/497722502"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T19:18:14Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11030"],"risk_score":4.4,"exploitability":"0.5","weighted_severity":"8.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6k3h-567z-bfb3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82001?format=json","vulnerability_id":"VCID-6kjx-qvrn-qqf2","summary":"Insufficient validation of untrusted input in Password Manager in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via malicious network traffic. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11192.json","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11192.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11192","reference_id":"","reference_type":"","scores":[{"value":"0.00048","scoring_system":"epss","scoring_elements":"0.15301","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00048","scoring_system":"epss","scoring_elements":"0.15201","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00048","scoring_system":"epss","scoring_elements":"0.15329","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00048","scoring_system":"epss","scoring_elements":"0.15336","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11192"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11192","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11192"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484964","reference_id":"2484964","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484964"},{"reference_url":"https://issues.chromium.org/issues/503490678","reference_id":"503490678","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:01:24Z/"}],"url":"https://issues.chromium.org/issues/503490678"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:01:24Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11192"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"4.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6kjx-qvrn-qqf2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76527?format=json","vulnerability_id":"VCID-6q7j-6s5a-vqf5","summary":"Inappropriate implementation in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10989.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10989.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10989","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25108","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24906","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25105","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25122","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10989"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10989","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10989"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484963","reference_id":"2484963","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484963"},{"reference_url":"https://issues.chromium.org/issues/516311623","reference_id":"516311623","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:23:20Z/"}],"url":"https://issues.chromium.org/issues/516311623"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:23:20Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10989"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6q7j-6s5a-vqf5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82210?format=json","vulnerability_id":"VCID-6skg-497m-hbbr","summary":"Insufficient validation of untrusted input in Loader in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11240.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11240.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11240","reference_id":"","reference_type":"","scores":[{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09269","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09225","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09277","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09279","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11240"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11240","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11240"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484998","reference_id":"2484998","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484998"},{"reference_url":"https://issues.chromium.org/issues/497030032","reference_id":"497030032","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T12:37:11Z/"}],"url":"https://issues.chromium.org/issues/497030032"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T12:37:11Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11240"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6skg-497m-hbbr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82135?format=json","vulnerability_id":"VCID-6tjf-uhcm-5qax","summary":"Insufficient policy enforcement in ServiceWorker in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11206.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11206.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11206","reference_id":"","reference_type":"","scores":[{"value":"0.00039","scoring_system":"epss","scoring_elements":"0.11998","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00039","scoring_system":"epss","scoring_elements":"0.11926","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00039","scoring_system":"epss","scoring_elements":"0.12016","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00039","scoring_system":"epss","scoring_elements":"0.12019","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11206"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11206","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11206"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485047","reference_id":"2485047","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485047"},{"reference_url":"https://issues.chromium.org/issues/505427216","reference_id":"505427216","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T14:42:03Z/"}],"url":"https://issues.chromium.org/issues/505427216"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T14:42:03Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11206"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6tjf-uhcm-5qax"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82366?format=json","vulnerability_id":"VCID-6wk6-cp4h-2uad","summary":"Uninitialized Use in Dawn in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11101.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11101.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11101","reference_id":"","reference_type":"","scores":[{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09277","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09233","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09285","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09287","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11101"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484953","reference_id":"2484953","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484953"},{"reference_url":"https://issues.chromium.org/issues/500443031","reference_id":"500443031","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T02:48:39Z/"}],"url":"https://issues.chromium.org/issues/500443031"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T02:48:39Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11101"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6wk6-cp4h-2uad"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82006?format=json","vulnerability_id":"VCID-6xuf-asv9-p7gn","summary":"Use after free in Media in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11060.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11060.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11060","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25099","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24898","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25097","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25114","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11060"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11060","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11060"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485108","reference_id":"2485108","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485108"},{"reference_url":"https://issues.chromium.org/issues/499018355","reference_id":"499018355","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:24:43Z/"}],"url":"https://issues.chromium.org/issues/499018355"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:24:43Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11060"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6xuf-asv9-p7gn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82349?format=json","vulnerability_id":"VCID-72jh-5nxf-r3bn","summary":"Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11066.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11066.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11066","reference_id":"","reference_type":"","scores":[{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25261","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25058","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25256","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25275","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11066"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11066","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11066"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485342","reference_id":"2485342","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485342"},{"reference_url":"https://issues.chromium.org/issues/499124128","reference_id":"499124128","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T18:20:25Z/"}],"url":"https://issues.chromium.org/issues/499124128"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T18:20:25Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11066"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-72jh-5nxf-r3bn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82262?format=json","vulnerability_id":"VCID-7444-f2f2-kka9","summary":"Insufficient policy enforcement in Password Manager in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass discretionary access control via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11193.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11193.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11193","reference_id":"","reference_type":"","scores":[{"value":"0.00033","scoring_system":"epss","scoring_elements":"0.10305","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00033","scoring_system":"epss","scoring_elements":"0.10274","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00033","scoring_system":"epss","scoring_elements":"0.10323","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00033","scoring_system":"epss","scoring_elements":"0.10328","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11193"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11193","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11193"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485340","reference_id":"2485340","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485340"},{"reference_url":"https://issues.chromium.org/issues/503642586","reference_id":"503642586","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:22:07Z/"}],"url":"https://issues.chromium.org/issues/503642586"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:22:07Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11193"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7444-f2f2-kka9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82429?format=json","vulnerability_id":"VCID-74fh-97b3-13fy","summary":"Insufficient validation of untrusted input in Extensions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11149.json","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11149.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11149","reference_id":"","reference_type":"","scores":[{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28443","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28231","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28428","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28452","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11149"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11149","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11149"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485315","reference_id":"2485315","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485315"},{"reference_url":"https://issues.chromium.org/issues/501739206","reference_id":"501739206","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:12:11Z/"}],"url":"https://issues.chromium.org/issues/501739206"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:12:11Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11149"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-74fh-97b3-13fy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82446?format=json","vulnerability_id":"VCID-7699-45x4-53fz","summary":"Insufficient validation of untrusted input in Media in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11041.json","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11041.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11041","reference_id":"","reference_type":"","scores":[{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28443","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28231","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28428","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28452","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11041"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11041","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11041"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485267","reference_id":"2485267","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485267"},{"reference_url":"https://issues.chromium.org/issues/498700369","reference_id":"498700369","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T18:01:07Z/"}],"url":"https://issues.chromium.org/issues/498700369"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T18:01:07Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11041"],"risk_score":3.7,"exploitability":"0.5","weighted_severity":"7.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7699-45x4-53fz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82205?format=json","vulnerability_id":"VCID-76vv-y5r4-t3f4","summary":"Insufficient validation of untrusted input in Omnibox in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11273.json","reference_id":"","reference_type":"","scores":[{"value":"9.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11273.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11273","reference_id":"","reference_type":"","scores":[{"value":"0.00041","scoring_system":"epss","scoring_elements":"0.12762","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00041","scoring_system":"epss","scoring_elements":"0.12683","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00041","scoring_system":"epss","scoring_elements":"0.12773","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00041","scoring_system":"epss","scoring_elements":"0.12781","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11273"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11273","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11273"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485083","reference_id":"2485083","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485083"},{"reference_url":"https://issues.chromium.org/issues/501757688","reference_id":"501757688","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:32:27Z/"}],"url":"https://issues.chromium.org/issues/501757688"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:32:27Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11273"],"risk_score":4.2,"exploitability":"0.5","weighted_severity":"8.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-76vv-y5r4-t3f4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82273?format=json","vulnerability_id":"VCID-77m7-dvh9-dkfk","summary":"Inappropriate implementation in Signin in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11204.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11204.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11204","reference_id":"","reference_type":"","scores":[{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06234","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06242","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06264","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06253","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11204"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11204","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11204"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485641","reference_id":"2485641","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485641"},{"reference_url":"https://issues.chromium.org/issues/505200733","reference_id":"505200733","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:35:43Z/"}],"url":"https://issues.chromium.org/issues/505200733"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:35:43Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11204"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-77m7-dvh9-dkfk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76756?format=json","vulnerability_id":"VCID-77te-8uz5-p7f4","summary":"Insufficient validation of untrusted input in WebShare in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10920.json","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10920.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10920","reference_id":"","reference_type":"","scores":[{"value":"0.00157","scoring_system":"epss","scoring_elements":"0.36458","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00157","scoring_system":"epss","scoring_elements":"0.36264","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00157","scoring_system":"epss","scoring_elements":"0.36444","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00157","scoring_system":"epss","scoring_elements":"0.3647","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10920"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10920","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10920"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485288","reference_id":"2485288","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485288"},{"reference_url":"https://issues.chromium.org/issues/498977444","reference_id":"498977444","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:38:51Z/"}],"url":"https://issues.chromium.org/issues/498977444"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:38:51Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10920"],"risk_score":3.7,"exploitability":"0.5","weighted_severity":"7.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-77te-8uz5-p7f4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82481?format=json","vulnerability_id":"VCID-78kv-31eu-1kcg","summary":"Insufficient policy enforcement in DevTools in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11212.json","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11212.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11212","reference_id":"","reference_type":"","scores":[{"value":"0.00014","scoring_system":"epss","scoring_elements":"0.02794","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00014","scoring_system":"epss","scoring_elements":"0.02791","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00014","scoring_system":"epss","scoring_elements":"0.02799","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00014","scoring_system":"epss","scoring_elements":"0.02784","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11212"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11212","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11212"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485187","reference_id":"2485187","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485187"},{"reference_url":"https://issues.chromium.org/issues/507216833","reference_id":"507216833","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:30:44Z/"}],"url":"https://issues.chromium.org/issues/507216833"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:30:44Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11212"],"risk_score":2.6,"exploitability":"0.5","weighted_severity":"5.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-78kv-31eu-1kcg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82488?format=json","vulnerability_id":"VCID-7abj-wa8v-tbde","summary":"Insufficient validation of untrusted input in IndexedDB in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11246.json","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11246.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11246","reference_id":"","reference_type":"","scores":[{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09752","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09711","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09762","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09764","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11246"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11246","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11246"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485298","reference_id":"2485298","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485298"},{"reference_url":"https://issues.chromium.org/issues/497660733","reference_id":"497660733","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T12:02:57Z/"}],"url":"https://issues.chromium.org/issues/497660733"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T12:02:57Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11246"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"6.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7abj-wa8v-tbde"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82017?format=json","vulnerability_id":"VCID-7gb4-93jq-ekgn","summary":"Use after free in Blink in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11059.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11059.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11059","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25099","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24898","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25097","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25114","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11059"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11059","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11059"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485198","reference_id":"2485198","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485198"},{"reference_url":"https://issues.chromium.org/issues/498991983","reference_id":"498991983","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:24:49Z/"}],"url":"https://issues.chromium.org/issues/498991983"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:24:49Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11059"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7gb4-93jq-ekgn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82326?format=json","vulnerability_id":"VCID-7hab-n2yj-y3hp","summary":"Insufficient policy enforcement in WebAuthentication in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11263.json","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11263.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11263","reference_id":"","reference_type":"","scores":[{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.14165","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.14075","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.14194","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.1419","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11263"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11263","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11263"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484972","reference_id":"2484972","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484972"},{"reference_url":"https://issues.chromium.org/issues/500044225","reference_id":"500044225","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:47:35Z/"}],"url":"https://issues.chromium.org/issues/500044225"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:47:35Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11263"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"6.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7hab-n2yj-y3hp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76729?format=json","vulnerability_id":"VCID-7kuf-ayaa-6ucd","summary":"Insufficient validation of untrusted input in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10983.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10983.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10983","reference_id":"","reference_type":"","scores":[{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25261","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25058","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25256","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25275","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10983"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10983","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10983"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485074","reference_id":"2485074","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485074"},{"reference_url":"https://issues.chromium.org/issues/513947609","reference_id":"513947609","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T18:06:13Z/"}],"url":"https://issues.chromium.org/issues/513947609"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T18:06:13Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10983"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7kuf-ayaa-6ucd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82160?format=json","vulnerability_id":"VCID-7phe-e5b5-zbeh","summary":"Inappropriate implementation in DOM Distiller in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11274.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11274.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11274","reference_id":"","reference_type":"","scores":[{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06234","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06242","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06264","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06253","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11274"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11274","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11274"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485646","reference_id":"2485646","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485646"},{"reference_url":"https://issues.chromium.org/issues/501760514","reference_id":"501760514","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:30:43Z/"}],"url":"https://issues.chromium.org/issues/501760514"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:30:43Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11274"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7phe-e5b5-zbeh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82114?format=json","vulnerability_id":"VCID-7s3p-ausb-h3fp","summary":"Insufficient policy enforcement in Password Manager in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass discretionary access control via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11251.json","reference_id":"","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11251.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11251","reference_id":"","reference_type":"","scores":[{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09269","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09225","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09277","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09279","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11251"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11251","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11251"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485012","reference_id":"2485012","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485012"},{"reference_url":"https://issues.chromium.org/issues/498301853","reference_id":"498301853","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T11:17:48Z/"}],"url":"https://issues.chromium.org/issues/498301853"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T11:17:48Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11251"],"risk_score":3.9,"exploitability":"0.5","weighted_severity":"7.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7s3p-ausb-h3fp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82234?format=json","vulnerability_id":"VCID-823z-abvy-6bce","summary":"Integer overflow in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11088.json","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11088.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11088","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25108","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24906","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25105","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25122","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11088"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11088","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11088"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485007","reference_id":"2485007","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485007"},{"reference_url":"https://issues.chromium.org/issues/500144879","reference_id":"500144879","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T14:13:15Z/"}],"url":"https://issues.chromium.org/issues/500144879"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T14:13:15Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11088"],"risk_score":3.6,"exploitability":"0.5","weighted_severity":"7.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-823z-abvy-6bce"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82055?format=json","vulnerability_id":"VCID-829p-wqs9-43ge","summary":"Object lifecycle issue in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11152.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11152.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11152","reference_id":"","reference_type":"","scores":[{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22495","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22306","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.225","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22513","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11152"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11152","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11152"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485152","reference_id":"2485152","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485152"},{"reference_url":"https://issues.chromium.org/issues/501762953","reference_id":"501762953","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T17:56:43Z/"}],"url":"https://issues.chromium.org/issues/501762953"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T17:56:43Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11152"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-829p-wqs9-43ge"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82025?format=json","vulnerability_id":"VCID-86b8-8zv1-eqg5","summary":"Use after free in WebRTC in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11074.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11074.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11074","reference_id":"","reference_type":"","scores":[{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23165","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.2298","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23176","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23187","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11074"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11074","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11074"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485181","reference_id":"2485181","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485181"},{"reference_url":"https://issues.chromium.org/issues/499587071","reference_id":"499587071","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:24:34Z/"}],"url":"https://issues.chromium.org/issues/499587071"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:24:34Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11074"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-86b8-8zv1-eqg5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76533?format=json","vulnerability_id":"VCID-86bf-gec6-skhk","summary":"Out of bounds read in Media in Google Chrome prior to 149.0.7827.53 allowed an attacker on the local network segment to perform an out of bounds memory read via malicious network traffic. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10998.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10998.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10998","reference_id":"","reference_type":"","scores":[{"value":"6e-05","scoring_system":"epss","scoring_elements":"0.00387","published_at":"2026-06-14T12:55:00Z"},{"value":"6e-05","scoring_system":"epss","scoring_elements":"0.00384","published_at":"2026-06-11T12:55:00Z"},{"value":"6e-05","scoring_system":"epss","scoring_elements":"0.00382","published_at":"2026-06-12T12:55:00Z"},{"value":"6e-05","scoring_system":"epss","scoring_elements":"0.0038","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10998"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10998","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10998"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485268","reference_id":"2485268","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485268"},{"reference_url":"https://issues.chromium.org/issues/486536242","reference_id":"486536242","reference_type":"","scores":[{"value":"4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T01:41:53Z/"}],"url":"https://issues.chromium.org/issues/486536242"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T01:41:53Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10998"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-86bf-gec6-skhk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76732?format=json","vulnerability_id":"VCID-86bs-je7f-6kgj","summary":"Out of bounds write in GPU in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10892.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10892.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10892","reference_id":"","reference_type":"","scores":[{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.28951","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.2874","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.28942","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.28965","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10892"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10892","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10892"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484997","reference_id":"2484997","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484997"},{"reference_url":"https://issues.chromium.org/issues/513165325","reference_id":"513165325","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:06:32Z/"}],"url":"https://issues.chromium.org/issues/513165325"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:06:32Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10892"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-86bs-je7f-6kgj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76605?format=json","vulnerability_id":"VCID-86g1-z9mj-byaf","summary":"Use after free in FullScreen in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10908.json","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10908.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10908","reference_id":"","reference_type":"","scores":[{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30392","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30191","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30387","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30404","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10908"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10908","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10908"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485073","reference_id":"2485073","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485073"},{"reference_url":"https://issues.chromium.org/issues/505045913","reference_id":"505045913","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:39:26Z/"}],"url":"https://issues.chromium.org/issues/505045913"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:39:26Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10908"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-86g1-z9mj-byaf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82239?format=json","vulnerability_id":"VCID-8a7m-gcse-g3gx","summary":"Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11087.json","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11087.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11087","reference_id":"","reference_type":"","scores":[{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09277","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09233","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09285","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09287","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11087"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11087","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11087"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485077","reference_id":"2485077","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485077"},{"reference_url":"https://issues.chromium.org/issues/500140149","reference_id":"500140149","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:16:03Z/"}],"url":"https://issues.chromium.org/issues/500140149"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:16:03Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11087"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"6.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8a7m-gcse-g3gx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76662?format=json","vulnerability_id":"VCID-8acx-wnqv-tfcn","summary":"Out of bounds read in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10985.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10985.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10985","reference_id":"","reference_type":"","scores":[{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10866","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10842","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10901","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10897","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10985"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10985","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10985"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484949","reference_id":"2484949","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484949"},{"reference_url":"https://issues.chromium.org/issues/514082801","reference_id":"514082801","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T18:02:17Z/"}],"url":"https://issues.chromium.org/issues/514082801"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T18:02:17Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10985"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8acx-wnqv-tfcn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82369?format=json","vulnerability_id":"VCID-8bhv-zs97-3uc1","summary":"Out of bounds write in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11173.json","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11173.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11173","reference_id":"","reference_type":"","scores":[{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.28943","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.28732","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.28933","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.28957","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11173"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11173","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11173"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484976","reference_id":"2484976","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484976"},{"reference_url":"https://issues.chromium.org/issues/502337304","reference_id":"502337304","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:40:16Z/"}],"url":"https://issues.chromium.org/issues/502337304"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:40:16Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11173"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8bhv-zs97-3uc1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82442?format=json","vulnerability_id":"VCID-8etw-62yq-xfbt","summary":"Out of bounds read in ANGLE in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11005.json","reference_id":"","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11005.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11005","reference_id":"","reference_type":"","scores":[{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10866","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10842","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10901","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10897","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11005"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11005","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11005"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485150","reference_id":"2485150","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485150"},{"reference_url":"https://issues.chromium.org/issues/495052581","reference_id":"495052581","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T17:16:39Z/"}],"url":"https://issues.chromium.org/issues/495052581"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T17:16:39Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11005"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8etw-62yq-xfbt"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82057?format=json","vulnerability_id":"VCID-8ghe-j38t-fkej","summary":"Insufficient policy enforcement in Navigation in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to bypass content security policy via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11025.json","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11025.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11025","reference_id":"","reference_type":"","scores":[{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.10389","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.10358","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.10409","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.10414","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11025"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11025","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11025"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484957","reference_id":"2484957","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484957"},{"reference_url":"https://issues.chromium.org/issues/497595264","reference_id":"497595264","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T13:55:45Z/"}],"url":"https://issues.chromium.org/issues/497595264"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T13:55:45Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11025"],"risk_score":3.6,"exploitability":"0.5","weighted_severity":"7.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8ghe-j38t-fkej"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82200?format=json","vulnerability_id":"VCID-8nd3-ffvf-7bg7","summary":"Uninitialized Use in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11067.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11067.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11067","reference_id":"","reference_type":"","scores":[{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09277","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09233","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09285","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09287","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11067"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11067","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11067"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485137","reference_id":"2485137","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485137"},{"reference_url":"https://issues.chromium.org/issues/499140183","reference_id":"499140183","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T16:55:38Z/"}],"url":"https://issues.chromium.org/issues/499140183"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T16:55:38Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11067"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8nd3-ffvf-7bg7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82448?format=json","vulnerability_id":"VCID-8pnb-sr3k-dkbm","summary":"Insufficient validation of untrusted input in GPU in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11098.json","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11098.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11098","reference_id":"","reference_type":"","scores":[{"value":"0.00043","scoring_system":"epss","scoring_elements":"0.13711","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00043","scoring_system":"epss","scoring_elements":"0.13622","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00043","scoring_system":"epss","scoring_elements":"0.13739","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11098","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11098"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485062","reference_id":"2485062","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485062"},{"reference_url":"https://issues.chromium.org/issues/500315455","reference_id":"500315455","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T02:43:58Z/"}],"url":"https://issues.chromium.org/issues/500315455"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T02:43:58Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11098"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"6.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8pnb-sr3k-dkbm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76848?format=json","vulnerability_id":"VCID-8pnk-v6nm-8ueg","summary":"Insufficient validation of untrusted input in Extensions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10969.json","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10969.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10969","reference_id":"","reference_type":"","scores":[{"value":"0.00144","scoring_system":"epss","scoring_elements":"0.34685","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00144","scoring_system":"epss","scoring_elements":"0.34504","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00144","scoring_system":"epss","scoring_elements":"0.34681","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00144","scoring_system":"epss","scoring_elements":"0.34705","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10969"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10969","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10969"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485092","reference_id":"2485092","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485092"},{"reference_url":"https://issues.chromium.org/issues/511765713","reference_id":"511765713","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:02:26Z/"}],"url":"https://issues.chromium.org/issues/511765713"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:02:26Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10969"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8pnk-v6nm-8ueg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76672?format=json","vulnerability_id":"VCID-8tuj-pshd-fuda","summary":"Use after free in MimeHandlerView in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10956.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10956.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10956","reference_id":"","reference_type":"","scores":[{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33937","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33737","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33915","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10956"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10956","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10956"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484999","reference_id":"2484999","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484999"},{"reference_url":"https://issues.chromium.org/issues/506375731","reference_id":"506375731","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:25:53Z/"}],"url":"https://issues.chromium.org/issues/506375731"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:25:53Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10956"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8tuj-pshd-fuda"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82508?format=json","vulnerability_id":"VCID-8u1p-umur-3fgq","summary":"Integer overflow in GPU in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11085.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11085.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11085","reference_id":"","reference_type":"","scores":[{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22495","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22306","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.225","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22513","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11085"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11085","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11085"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485005","reference_id":"2485005","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485005"},{"reference_url":"https://issues.chromium.org/issues/500132379","reference_id":"500132379","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T14:17:54Z/"}],"url":"https://issues.chromium.org/issues/500132379"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T14:17:54Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11085"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8u1p-umur-3fgq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82377?format=json","vulnerability_id":"VCID-8u7w-fxrx-jqau","summary":"Use after free in WebML in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11147.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11147.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11147","reference_id":"","reference_type":"","scores":[{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23165","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.2298","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23176","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23187","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11147"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11147","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11147"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485115","reference_id":"2485115","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485115"},{"reference_url":"https://issues.chromium.org/issues/501731689","reference_id":"501731689","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:24:07Z/"}],"url":"https://issues.chromium.org/issues/501731689"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:24:07Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11147"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8u7w-fxrx-jqau"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82026?format=json","vulnerability_id":"VCID-8z8h-rb15-tbbg","summary":"Insufficient policy enforcement in CSS in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11288.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11288.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11288","reference_id":"","reference_type":"","scores":[{"value":"0.00046","scoring_system":"epss","scoring_elements":"0.14631","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00046","scoring_system":"epss","scoring_elements":"0.14539","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00046","scoring_system":"epss","scoring_elements":"0.14658","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00046","scoring_system":"epss","scoring_elements":"0.14657","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11288"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11288","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11288"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485105","reference_id":"2485105","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485105"},{"reference_url":"https://issues.chromium.org/issues/502231588","reference_id":"502231588","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:01:40Z/"}],"url":"https://issues.chromium.org/issues/502231588"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:01:40Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11288"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8z8h-rb15-tbbg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82353?format=json","vulnerability_id":"VCID-92xw-yaaj-1uf6","summary":"Incorrect security UI in Tab Strip in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform domain spoofing via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11222.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11222.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11222","reference_id":"","reference_type":"","scores":[{"value":"0.00024","scoring_system":"epss","scoring_elements":"0.07122","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00024","scoring_system":"epss","scoring_elements":"0.07099","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00024","scoring_system":"epss","scoring_elements":"0.07132","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00024","scoring_system":"epss","scoring_elements":"0.07127","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11222"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11222","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11222"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485093","reference_id":"2485093","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485093"},{"reference_url":"https://issues.chromium.org/issues/458442542","reference_id":"458442542","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:10:59Z/"}],"url":"https://issues.chromium.org/issues/458442542"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:10:59Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11222"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-92xw-yaaj-1uf6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82211?format=json","vulnerability_id":"VCID-93mb-ct5n-bfdb","summary":"Insufficient validation of untrusted input in Password Manager in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via malicious network traffic. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11031.json","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11031.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11031","reference_id":"","reference_type":"","scores":[{"value":"0.00055","scoring_system":"epss","scoring_elements":"0.17609","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00055","scoring_system":"epss","scoring_elements":"0.17453","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00055","scoring_system":"epss","scoring_elements":"0.17617","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00055","scoring_system":"epss","scoring_elements":"0.17634","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11031"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11031","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11031"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485325","reference_id":"2485325","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485325"},{"reference_url":"https://issues.chromium.org/issues/497748760","reference_id":"497748760","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:22:33Z/"}],"url":"https://issues.chromium.org/issues/497748760"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:22:33Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11031"],"risk_score":3.6,"exploitability":"0.5","weighted_severity":"7.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-93mb-ct5n-bfdb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82125?format=json","vulnerability_id":"VCID-94pk-c7hz-jkd4","summary":"Type Confusion in CSS in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11076.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11076.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11076","reference_id":"","reference_type":"","scores":[{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25337","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25134","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25332","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25349","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11076"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11076","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11076"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485089","reference_id":"2485089","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485089"},{"reference_url":"https://issues.chromium.org/issues/499784386","reference_id":"499784386","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:40:30Z/"}],"url":"https://issues.chromium.org/issues/499784386"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:40:30Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11076"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-94pk-c7hz-jkd4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76759?format=json","vulnerability_id":"VCID-95as-63vn-63gp","summary":"Type Confusion in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10910.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10910.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10910","reference_id":"","reference_type":"","scores":[{"value":"0.00104","scoring_system":"epss","scoring_elements":"0.28055","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00104","scoring_system":"epss","scoring_elements":"0.27843","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00104","scoring_system":"epss","scoring_elements":"0.28041","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00104","scoring_system":"epss","scoring_elements":"0.28066","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10910"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10910","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10910"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485173","reference_id":"2485173","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485173"},{"reference_url":"https://issues.chromium.org/issues/508811477","reference_id":"508811477","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:40:53Z/"}],"url":"https://issues.chromium.org/issues/508811477"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:40:53Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10910"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-95as-63vn-63gp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82076?format=json","vulnerability_id":"VCID-964r-ceap-jqb5","summary":"Use after free in Compositing in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11125.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11125.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11125","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25099","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24898","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25097","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25114","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11125"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11125","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11125"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485158","reference_id":"2485158","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485158"},{"reference_url":"https://issues.chromium.org/issues/501517520","reference_id":"501517520","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:24:21Z/"}],"url":"https://issues.chromium.org/issues/501517520"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:24:21Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11125"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-964r-ceap-jqb5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82201?format=json","vulnerability_id":"VCID-9cyy-3j68-mbdm","summary":"Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11168.json","reference_id":"","reference_type":"","scores":[{"value":"5.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11168.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11168","reference_id":"","reference_type":"","scores":[{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.0914","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09095","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09152","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11168"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11168","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11168"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485339","reference_id":"2485339","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485339"},{"reference_url":"https://issues.chromium.org/issues/502256049","reference_id":"502256049","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T17:16:35Z/"}],"url":"https://issues.chromium.org/issues/502256049"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T17:16:35Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11168"],"risk_score":2.2,"exploitability":"0.5","weighted_severity":"4.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9cyy-3j68-mbdm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76699?format=json","vulnerability_id":"VCID-9ddj-x1zg-17f7","summary":"Use after free in Cast in Google Chrome prior to 149.0.7827.53 allowed an attacker on the local network segment to potentially exploit heap corruption via malicious network traffic. (Chromium security severity: Critical)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10890.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10890.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10890","reference_id":"","reference_type":"","scores":[{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03074","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03067","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03079","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03062","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10890"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10890","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10890"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485112","reference_id":"2485112","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485112"},{"reference_url":"https://issues.chromium.org/issues/513136593","reference_id":"513136593","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:42:59Z/"}],"url":"https://issues.chromium.org/issues/513136593"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:42:59Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10890"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9ddj-x1zg-17f7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82008?format=json","vulnerability_id":"VCID-9n4j-jwqk-aqfh","summary":"Uninitialized Use in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11159.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11159.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11159","reference_id":"","reference_type":"","scores":[{"value":"0.00027","scoring_system":"epss","scoring_elements":"0.08163","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00027","scoring_system":"epss","scoring_elements":"0.08132","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00027","scoring_system":"epss","scoring_elements":"0.08168","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00027","scoring_system":"epss","scoring_elements":"0.08164","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11159"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11159","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11159"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485081","reference_id":"2485081","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485081"},{"reference_url":"https://issues.chromium.org/issues/501861921","reference_id":"501861921","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T17:37:49Z/"}],"url":"https://issues.chromium.org/issues/501861921"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T17:37:49Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11159"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9n4j-jwqk-aqfh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76681?format=json","vulnerability_id":"VCID-9p5k-n7gb-67ef","summary":"Use after free in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10896.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10896.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10896","reference_id":"","reference_type":"","scores":[{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33937","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33737","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33915","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10896"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10896","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10896"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485629","reference_id":"2485629","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485629"},{"reference_url":"https://issues.chromium.org/issues/513514692","reference_id":"513514692","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:26:44Z/"}],"url":"https://issues.chromium.org/issues/513514692"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:26:44Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10896"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9p5k-n7gb-67ef"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82528?format=json","vulnerability_id":"VCID-9v8c-918f-nugw","summary":"Insufficient policy enforcement in Actor in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11018.json","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11018.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11018","reference_id":"","reference_type":"","scores":[{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.10389","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.10358","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.10409","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.10414","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11018"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11018","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11018"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485280","reference_id":"2485280","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485280"},{"reference_url":"https://issues.chromium.org/issues/497342466","reference_id":"497342466","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T15:09:42Z/"}],"url":"https://issues.chromium.org/issues/497342466"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T15:09:42Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11018"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"4.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9v8c-918f-nugw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76462?format=json","vulnerability_id":"VCID-9vvt-zare-c3gx","summary":"Heap buffer overflow in Video in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10949.json","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10949.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10949","reference_id":"","reference_type":"","scores":[{"value":"0.00079","scoring_system":"epss","scoring_elements":"0.23674","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00079","scoring_system":"epss","scoring_elements":"0.23488","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00079","scoring_system":"epss","scoring_elements":"0.23684","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00079","scoring_system":"epss","scoring_elements":"0.23694","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10949"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10949","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10949"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485205","reference_id":"2485205","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485205"},{"reference_url":"https://issues.chromium.org/issues/504644843","reference_id":"504644843","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:38:08Z/"}],"url":"https://issues.chromium.org/issues/504644843"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:38:08Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10949"],"risk_score":3.7,"exploitability":"0.5","weighted_severity":"7.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9vvt-zare-c3gx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82524?format=json","vulnerability_id":"VCID-9xqn-b9k2-uygt","summary":"Insufficient policy enforcement in FoldableAPIs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11233.json","reference_id":"","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11233.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11233","reference_id":"","reference_type":"","scores":[{"value":"0.00025","scoring_system":"epss","scoring_elements":"0.07508","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00025","scoring_system":"epss","scoring_elements":"0.07491","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00025","scoring_system":"epss","scoring_elements":"0.07523","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00025","scoring_system":"epss","scoring_elements":"0.07517","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11233"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11233","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11233"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485033","reference_id":"2485033","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485033"},{"reference_url":"https://issues.chromium.org/issues/496088449","reference_id":"496088449","reference_type":"","scores":[{"value":"4.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T13:36:13Z/"}],"url":"https://issues.chromium.org/issues/496088449"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T13:36:13Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11233"],"risk_score":3.9,"exploitability":"0.5","weighted_severity":"7.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9xqn-b9k2-uygt"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76493?format=json","vulnerability_id":"VCID-a43t-qgyp-7yb9","summary":"Use after free in SurfaceCapture in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10967.json","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10967.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10967","reference_id":"","reference_type":"","scores":[{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22495","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22306","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.225","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22513","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10967"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10967","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10967"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485026","reference_id":"2485026","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485026"},{"reference_url":"https://issues.chromium.org/issues/511714900","reference_id":"511714900","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:37:50Z/"}],"url":"https://issues.chromium.org/issues/511714900"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:37:50Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10967"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-a43t-qgyp-7yb9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76631?format=json","vulnerability_id":"VCID-a72p-n61c-h3dx","summary":"Use after free in Core in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10953.json","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10953.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10953","reference_id":"","reference_type":"","scores":[{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30392","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30191","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30387","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30404","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10953"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10953","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10953"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485079","reference_id":"2485079","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485079"},{"reference_url":"https://issues.chromium.org/issues/506147564","reference_id":"506147564","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:38:04Z/"}],"url":"https://issues.chromium.org/issues/506147564"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:38:04Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10953"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-a72p-n61c-h3dx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76559?format=json","vulnerability_id":"VCID-abkk-4dzg-6qgy","summary":"Integer overflow in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10987.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10987.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10987","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25099","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24898","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25097","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25114","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10987"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10987","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10987"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485075","reference_id":"2485075","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485075"},{"reference_url":"https://issues.chromium.org/issues/515431687","reference_id":"515431687","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:19:09Z/"}],"url":"https://issues.chromium.org/issues/515431687"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:19:09Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10987"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-abkk-4dzg-6qgy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82501?format=json","vulnerability_id":"VCID-achf-bep9-vkdg","summary":"Inappropriate implementation in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11134.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11134.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11134","reference_id":"","reference_type":"","scores":[{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.0319","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03181","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03194","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03177","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11134"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11134","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11134"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485013","reference_id":"2485013","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485013"},{"reference_url":"https://issues.chromium.org/issues/501640084","reference_id":"501640084","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:47:23Z/"}],"url":"https://issues.chromium.org/issues/501640084"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:47:23Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11134"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-achf-bep9-vkdg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76517?format=json","vulnerability_id":"VCID-aewe-dg3h-xkf2","summary":"Insufficient validation of untrusted input in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10917.json","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10917.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10917","reference_id":"","reference_type":"","scores":[{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.3823","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.38041","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.38218","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.38243","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10917"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10917","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10917"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485141","reference_id":"2485141","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485141"},{"reference_url":"https://issues.chromium.org/issues/497929481","reference_id":"497929481","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:39:07Z/"}],"url":"https://issues.chromium.org/issues/497929481"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:39:07Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10917"],"risk_score":3.7,"exploitability":"0.5","weighted_severity":"7.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-aewe-dg3h-xkf2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76740?format=json","vulnerability_id":"VCID-an73-55cd-d3d4","summary":"Out of bounds read in ANGLE in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10930.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10930.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10930","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25108","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24906","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25105","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25122","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10930"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10930","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10930"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485145","reference_id":"2485145","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485145"},{"reference_url":"https://issues.chromium.org/issues/500472605","reference_id":"500472605","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:32:15Z/"}],"url":"https://issues.chromium.org/issues/500472605"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:32:15Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10930"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-an73-55cd-d3d4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82493?format=json","vulnerability_id":"VCID-awz2-u8bp-fuhs","summary":"Use after free in Serial in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11012.json","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11012.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11012","reference_id":"","reference_type":"","scores":[{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30392","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30191","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30387","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30404","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11012"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11012","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11012"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485307","reference_id":"2485307","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485307"},{"reference_url":"https://issues.chromium.org/issues/497000161","reference_id":"497000161","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T17:10:03Z/"}],"url":"https://issues.chromium.org/issues/497000161"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T17:10:03Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11012"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-awz2-u8bp-fuhs"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82299?format=json","vulnerability_id":"VCID-b4tb-y7q5-hyhk","summary":"Insufficient validation of untrusted input in DevTools in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11189.json","reference_id":"","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11189.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11189","reference_id":"","reference_type":"","scores":[{"value":"0.00046","scoring_system":"epss","scoring_elements":"0.1466","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00046","scoring_system":"epss","scoring_elements":"0.14569","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00046","scoring_system":"epss","scoring_elements":"0.14689","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00046","scoring_system":"epss","scoring_elements":"0.14686","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11189"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11189","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11189"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485171","reference_id":"2485171","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485171"},{"reference_url":"https://issues.chromium.org/issues/503197481","reference_id":"503197481","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:12:21Z/"}],"url":"https://issues.chromium.org/issues/503197481"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:12:21Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11189"],"risk_score":3.9,"exploitability":"0.5","weighted_severity":"7.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-b4tb-y7q5-hyhk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82367?format=json","vulnerability_id":"VCID-b5yf-brdk-a7gf","summary":"Inappropriate implementation in WebAppInstalls in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11023.json","reference_id":"","reference_type":"","scores":[{"value":"7.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11023.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11023","reference_id":"","reference_type":"","scores":[{"value":"0.00037","scoring_system":"epss","scoring_elements":"0.11594","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00037","scoring_system":"epss","scoring_elements":"0.11552","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00037","scoring_system":"epss","scoring_elements":"0.1163","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00037","scoring_system":"epss","scoring_elements":"0.11623","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11023"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11023","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11023"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485266","reference_id":"2485266","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485266"},{"reference_url":"https://issues.chromium.org/issues/497538899","reference_id":"497538899","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T13:49:53Z/"}],"url":"https://issues.chromium.org/issues/497538899"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T13:49:53Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11023"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-b5yf-brdk-a7gf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82285?format=json","vulnerability_id":"VCID-b636-13gk-euf6","summary":"Insufficient validation of untrusted input in PointerLock in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11221.json","reference_id":"","reference_type":"","scores":[{"value":"3.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11221.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11221","reference_id":"","reference_type":"","scores":[{"value":"0.0004","scoring_system":"epss","scoring_elements":"0.12651","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0004","scoring_system":"epss","scoring_elements":"0.12573","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0004","scoring_system":"epss","scoring_elements":"0.12666","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0004","scoring_system":"epss","scoring_elements":"0.12672","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11221"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11221","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11221"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485229","reference_id":"2485229","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485229"},{"reference_url":"https://issues.chromium.org/issues/492211919","reference_id":"492211919","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:12:22Z/"}],"url":"https://issues.chromium.org/issues/492211919"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:12:22Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11221"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-b636-13gk-euf6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76697?format=json","vulnerability_id":"VCID-b799-2mvk-p7fb","summary":"Insufficient validation of untrusted input in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10980.json","reference_id":"","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10980.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10980","reference_id":"","reference_type":"","scores":[{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07906","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07879","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07916","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07912","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10980"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10980","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10980"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485230","reference_id":"2485230","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485230"},{"reference_url":"https://issues.chromium.org/issues/513713927","reference_id":"513713927","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:58:53Z/"}],"url":"https://issues.chromium.org/issues/513713927"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:58:53Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10980"],"risk_score":3.9,"exploitability":"0.5","weighted_severity":"7.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-b799-2mvk-p7fb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82188?format=json","vulnerability_id":"VCID-b9sy-ptnf-1yew","summary":"Out of bounds read in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11096.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11096.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11096","reference_id":"","reference_type":"","scores":[{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08342","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08302","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08339","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11096"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11096","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11096"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485151","reference_id":"2485151","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485151"},{"reference_url":"https://issues.chromium.org/issues/500296311","reference_id":"500296311","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T13:09:37Z/"}],"url":"https://issues.chromium.org/issues/500296311"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T13:09:37Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11096"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-b9sy-ptnf-1yew"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82436?format=json","vulnerability_id":"VCID-bayz-emdm-sbfx","summary":"Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11104.json","reference_id":"","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11104.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11104","reference_id":"","reference_type":"","scores":[{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09277","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09233","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09285","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09287","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11104"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11104","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11104"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485072","reference_id":"2485072","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485072"},{"reference_url":"https://issues.chromium.org/issues/500501226","reference_id":"500501226","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T02:56:09Z/"}],"url":"https://issues.chromium.org/issues/500501226"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T02:56:09Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11104"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bayz-emdm-sbfx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82376?format=json","vulnerability_id":"VCID-bhc4-qtvk-vyat","summary":"Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11306.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11306.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11306","reference_id":"","reference_type":"","scores":[{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33937","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33737","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33915","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11306"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11306","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11306"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485262","reference_id":"2485262","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485262"},{"reference_url":"https://issues.chromium.org/issues/504548949","reference_id":"504548949","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:00:46Z/"}],"url":"https://issues.chromium.org/issues/504548949"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:00:46Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11306"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bhc4-qtvk-vyat"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82235?format=json","vulnerability_id":"VCID-bk5f-kzjx-jyar","summary":"Use after free in USB in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11009.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11009.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11009","reference_id":"","reference_type":"","scores":[{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30392","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30191","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30387","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30404","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11009"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11009","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11009"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485030","reference_id":"2485030","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485030"},{"reference_url":"https://issues.chromium.org/issues/496233132","reference_id":"496233132","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T17:09:03Z/"}],"url":"https://issues.chromium.org/issues/496233132"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T17:09:03Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11009"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bk5f-kzjx-jyar"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82407?format=json","vulnerability_id":"VCID-bk6z-fawm-xfdk","summary":"Insufficient validation of untrusted input in Glic in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11027.json","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11027.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11027","reference_id":"","reference_type":"","scores":[{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.18757","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.18602","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.18764","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.18782","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11027"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11027","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11027"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485132","reference_id":"2485132","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485132"},{"reference_url":"https://issues.chromium.org/issues/497604407","reference_id":"497604407","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:10:32Z/"}],"url":"https://issues.chromium.org/issues/497604407"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:10:32Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11027"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"6.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bk6z-fawm-xfdk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82463?format=json","vulnerability_id":"VCID-bmwc-xdfn-qkbf","summary":"Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11305.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11305.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11305","reference_id":"","reference_type":"","scores":[{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33937","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33737","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33915","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11305"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11305","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11305"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484980","reference_id":"2484980","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484980"},{"reference_url":"https://issues.chromium.org/issues/504545544","reference_id":"504545544","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:00:51Z/"}],"url":"https://issues.chromium.org/issues/504545544"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:00:51Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11305"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bmwc-xdfn-qkbf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82195?format=json","vulnerability_id":"VCID-bnuj-pq7v-nkaz","summary":"Inappropriate implementation in WebRTC in Google Chrome prior to 149.0.7827.53 allowed an attacker in a privileged network position to leak cross-origin data via malicious network traffic. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11199.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11199.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11199","reference_id":"","reference_type":"","scores":[{"value":"0.00046","scoring_system":"epss","scoring_elements":"0.14643","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00046","scoring_system":"epss","scoring_elements":"0.14551","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00046","scoring_system":"epss","scoring_elements":"0.1467","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00046","scoring_system":"epss","scoring_elements":"0.14669","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11199"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11199","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11199"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485235","reference_id":"2485235","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485235"},{"reference_url":"https://issues.chromium.org/issues/504572664","reference_id":"504572664","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:55:56Z/"}],"url":"https://issues.chromium.org/issues/504572664"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:55:56Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11199"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bnuj-pq7v-nkaz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76666?format=json","vulnerability_id":"VCID-bpwy-cs1h-fugh","summary":"Uninitialized Use in Codecs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10960.json","reference_id":"","reference_type":"","scores":[{"value":"7.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10960.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10960","reference_id":"","reference_type":"","scores":[{"value":"0.00074","scoring_system":"epss","scoring_elements":"0.22753","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00074","scoring_system":"epss","scoring_elements":"0.22565","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00074","scoring_system":"epss","scoring_elements":"0.2276","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00074","scoring_system":"epss","scoring_elements":"0.22773","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10960"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10960","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10960"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485239","reference_id":"2485239","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485239"},{"reference_url":"https://issues.chromium.org/issues/507258786","reference_id":"507258786","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:37:59Z/"}],"url":"https://issues.chromium.org/issues/507258786"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:37:59Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10960"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bpwy-cs1h-fugh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82152?format=json","vulnerability_id":"VCID-bq4j-bj66-3qdc","summary":"Use after free in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11118.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11118.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11118","reference_id":"","reference_type":"","scores":[{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23165","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.2298","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23176","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23187","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11118"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11118","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11118"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485196","reference_id":"2485196","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485196"},{"reference_url":"https://issues.chromium.org/issues/501424047","reference_id":"501424047","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:24:25Z/"}],"url":"https://issues.chromium.org/issues/501424047"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:24:25Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11118"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bq4j-bj66-3qdc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82253?format=json","vulnerability_id":"VCID-bu7x-k1ue-byb4","summary":"Use after free in Updater in Google Chrome on Windows prior to 149.0.7827.53 allowed a local attacker to perform OS-level privilege escalation via a malicious file. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11115.json","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11115.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11115","reference_id":"","reference_type":"","scores":[{"value":"5e-05","scoring_system":"epss","scoring_elements":"0.00268","published_at":"2026-06-14T12:55:00Z"},{"value":"5e-05","scoring_system":"epss","scoring_elements":"0.00269","published_at":"2026-06-11T12:55:00Z"},{"value":"5e-05","scoring_system":"epss","scoring_elements":"0.00267","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11115"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11115","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11115"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485332","reference_id":"2485332","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485332"},{"reference_url":"https://issues.chromium.org/issues/501370283","reference_id":"501370283","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T03:19:45Z/"}],"url":"https://issues.chromium.org/issues/501370283"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T03:19:45Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11115"],"risk_score":3.3,"exploitability":"0.5","weighted_severity":"6.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bu7x-k1ue-byb4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82346?format=json","vulnerability_id":"VCID-bvkj-s1uk-a3dn","summary":"Insufficient policy enforcement in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to bypass content security policy via a crafted Chrome Extension. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11267.json","reference_id":"","reference_type":"","scores":[{"value":"3.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11267.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11267","reference_id":"","reference_type":"","scores":[{"value":"0.00019","scoring_system":"epss","scoring_elements":"0.05345","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00019","scoring_system":"epss","scoring_elements":"0.05342","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00019","scoring_system":"epss","scoring_elements":"0.05361","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00019","scoring_system":"epss","scoring_elements":"0.05355","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11267"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11267","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11267"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485184","reference_id":"2485184","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485184"},{"reference_url":"https://issues.chromium.org/issues/500528267","reference_id":"500528267","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:36:51Z/"}],"url":"https://issues.chromium.org/issues/500528267"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:36:51Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11267"],"risk_score":1.8,"exploitability":"0.5","weighted_severity":"3.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bvkj-s1uk-a3dn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76570?format=json","vulnerability_id":"VCID-bz25-d5zs-zya6","summary":"Inappropriate implementation in GPU in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10897.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10897.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10897","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25108","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24906","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25105","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25122","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10897"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10897","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10897"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485246","reference_id":"2485246","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485246"},{"reference_url":"https://issues.chromium.org/issues/513543143","reference_id":"513543143","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:08:22Z/"}],"url":"https://issues.chromium.org/issues/513543143"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:08:22Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10897"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bz25-d5zs-zya6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82149?format=json","vulnerability_id":"VCID-c1qf-397d-3bb7","summary":"Use after free in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11050.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11050.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11050","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25099","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24898","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25097","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25114","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11050"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11050","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11050"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485172","reference_id":"2485172","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485172"},{"reference_url":"https://issues.chromium.org/issues/498818402","reference_id":"498818402","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:25:03Z/"}],"url":"https://issues.chromium.org/issues/498818402"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:25:03Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11050"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-c1qf-397d-3bb7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82535?format=json","vulnerability_id":"VCID-c4sm-9p4v-nub3","summary":"Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker in a privileged network position to execute arbitrary code inside a sandbox via a crafted Chrome Extension. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11269.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11269.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11269","reference_id":"","reference_type":"","scores":[{"value":"8e-05","scoring_system":"epss","scoring_elements":"0.00862","published_at":"2026-06-14T12:55:00Z"},{"value":"8e-05","scoring_system":"epss","scoring_elements":"0.00857","published_at":"2026-06-11T12:55:00Z"},{"value":"8e-05","scoring_system":"epss","scoring_elements":"0.00853","published_at":"2026-06-12T12:55:00Z"},{"value":"8e-05","scoring_system":"epss","scoring_elements":"0.00859","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11269"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11269","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11269"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485293","reference_id":"2485293","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485293"},{"reference_url":"https://issues.chromium.org/issues/500551122","reference_id":"500551122","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T18:23:03Z/"}],"url":"https://issues.chromium.org/issues/500551122"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T18:23:03Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11269"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-c4sm-9p4v-nub3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82101?format=json","vulnerability_id":"VCID-c9yu-65es-ukgy","summary":"Integer overflow in GPU in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11256.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11256.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11256","reference_id":"","reference_type":"","scores":[{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22495","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22306","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.225","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22513","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11256"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11256","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11256"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485211","reference_id":"2485211","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485211"},{"reference_url":"https://issues.chromium.org/issues/498856565","reference_id":"498856565","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T10:53:40Z/"}],"url":"https://issues.chromium.org/issues/498856565"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T10:53:40Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11256"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-c9yu-65es-ukgy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82245?format=json","vulnerability_id":"VCID-caqg-tfkx-kkcm","summary":"Out of bounds read in WebGPU in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11015.json","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11015.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11015","reference_id":"","reference_type":"","scores":[{"value":"0.0008","scoring_system":"epss","scoring_elements":"0.23773","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0008","scoring_system":"epss","scoring_elements":"0.23586","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0008","scoring_system":"epss","scoring_elements":"0.23782","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0008","scoring_system":"epss","scoring_elements":"0.23793","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11015"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11015","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11015"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485345","reference_id":"2485345","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485345"},{"reference_url":"https://issues.chromium.org/issues/497183443","reference_id":"497183443","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T15:21:06Z/"}],"url":"https://issues.chromium.org/issues/497183443"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T15:21:06Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11015"],"risk_score":3.2,"exploitability":"0.5","weighted_severity":"6.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-caqg-tfkx-kkcm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82286?format=json","vulnerability_id":"VCID-cbyb-krny-b3f6","summary":"Inappropriate implementation in SVG in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11180.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11180.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11180","reference_id":"","reference_type":"","scores":[{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.0914","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09095","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09152","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11180"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11180","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11180"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484985","reference_id":"2484985","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484985"},{"reference_url":"https://issues.chromium.org/issues/502631225","reference_id":"502631225","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T16:25:34Z/"}],"url":"https://issues.chromium.org/issues/502631225"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T16:25:34Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11180"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cbyb-krny-b3f6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82272?format=json","vulnerability_id":"VCID-cc7f-yftw-g3ce","summary":"Insufficient policy enforcement in Compositing in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11235.json","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11235.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11235","reference_id":"","reference_type":"","scores":[{"value":"0.00103","scoring_system":"epss","scoring_elements":"0.27984","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00103","scoring_system":"epss","scoring_elements":"0.27766","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00103","scoring_system":"epss","scoring_elements":"0.27966","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00103","scoring_system":"epss","scoring_elements":"0.27993","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11235"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11235","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11235"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484948","reference_id":"2484948","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484948"},{"reference_url":"https://issues.chromium.org/issues/496419374","reference_id":"496419374","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:40:12Z/"}],"url":"https://issues.chromium.org/issues/496419374"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:40:12Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11235"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cc7f-yftw-g3ce"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82088?format=json","vulnerability_id":"VCID-cewa-uwy1-fkb7","summary":"Insufficient validation of untrusted input in Reading List in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform privilege escalation via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11272.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11272.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11272","reference_id":"","reference_type":"","scores":[{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28443","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28231","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28428","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28452","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11272"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11272","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11272"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485645","reference_id":"2485645","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485645"},{"reference_url":"https://issues.chromium.org/issues/501747321","reference_id":"501747321","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T19:33:47Z/"}],"url":"https://issues.chromium.org/issues/501747321"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T19:33:47Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11272"],"risk_score":2.6,"exploitability":"0.5","weighted_severity":"5.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cewa-uwy1-fkb7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82064?format=json","vulnerability_id":"VCID-cg6j-v8yv-jqb1","summary":"Insufficient policy enforcement in Sandbox in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11282.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11282.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11282","reference_id":"","reference_type":"","scores":[{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.29832","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.29633","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.2983","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.29847","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11282"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11282","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11282"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485283","reference_id":"2485283","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485283"},{"reference_url":"https://issues.chromium.org/issues/502023400","reference_id":"502023400","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T19:16:58Z/"}],"url":"https://issues.chromium.org/issues/502023400"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T19:16:58Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11282"],"risk_score":2.9,"exploitability":"0.5","weighted_severity":"5.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cg6j-v8yv-jqb1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82177?format=json","vulnerability_id":"VCID-cmd1-u34x-fufa","summary":"Insufficient policy enforcement in Actor in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11184.json","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11184.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11184","reference_id":"","reference_type":"","scores":[{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.10409","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.10382","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.10433","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.10434","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11184"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11184","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11184"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485206","reference_id":"2485206","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485206"},{"reference_url":"https://issues.chromium.org/issues/502777516","reference_id":"502777516","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T12:51:17Z/"}],"url":"https://issues.chromium.org/issues/502777516"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T12:51:17Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11184"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"4.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cmd1-u34x-fufa"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82168?format=json","vulnerability_id":"VCID-cndz-gf6w-17fs","summary":"Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11138.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11138.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11138","reference_id":"","reference_type":"","scores":[{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09277","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09233","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09285","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09287","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11138"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11138","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11138"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485300","reference_id":"2485300","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485300"},{"reference_url":"https://issues.chromium.org/issues/501650354","reference_id":"501650354","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:42:50Z/"}],"url":"https://issues.chromium.org/issues/501650354"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:42:50Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11138"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cndz-gf6w-17fs"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82464?format=json","vulnerability_id":"VCID-cpjn-ufcb-vuff","summary":"Inappropriate implementation in Safe Browsing in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass discretionary access control via a crafted RAR file. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11210.json","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11210.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11210","reference_id":"","reference_type":"","scores":[{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06234","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06242","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06264","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06253","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11210"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11210","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11210"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485201","reference_id":"2485201","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485201"},{"reference_url":"https://issues.chromium.org/issues/506473226","reference_id":"506473226","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:32:46Z/"}],"url":"https://issues.chromium.org/issues/506473226"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:32:46Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11210"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"4.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cpjn-ufcb-vuff"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76617?format=json","vulnerability_id":"VCID-cqet-m11c-2qau","summary":"Type Confusion in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10962.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10962.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10962","reference_id":"","reference_type":"","scores":[{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25337","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25134","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25332","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25349","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10962"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10962","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10962"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485318","reference_id":"2485318","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485318"},{"reference_url":"https://issues.chromium.org/issues/511006880","reference_id":"511006880","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:40:38Z/"}],"url":"https://issues.chromium.org/issues/511006880"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:40:38Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10962"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cqet-m11c-2qau"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82310?format=json","vulnerability_id":"VCID-crtu-fw4a-6ugq","summary":"Inappropriate implementation in Safe Browsing in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a malicious file. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11231.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11231.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11231","reference_id":"","reference_type":"","scores":[{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13964","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13876","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13992","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.1399","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11231"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11231","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11231"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485194","reference_id":"2485194","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485194"},{"reference_url":"https://issues.chromium.org/issues/495840862","reference_id":"495840862","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T13:40:05Z/"}],"url":"https://issues.chromium.org/issues/495840862"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T13:40:05Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11231"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-crtu-fw4a-6ugq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82259?format=json","vulnerability_id":"VCID-crwq-ajdn-syaj","summary":"Inappropriate implementation in DOM in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11036.json","reference_id":"","reference_type":"","scores":[{"value":"9.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11036.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11036","reference_id":"","reference_type":"","scores":[{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01498","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01481","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01484","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01489","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11036"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11036","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11036"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485140","reference_id":"2485140","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485140"},{"reference_url":"https://issues.chromium.org/issues/497964917","reference_id":"497964917","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T18:29:19Z/"}],"url":"https://issues.chromium.org/issues/497964917"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T18:29:19Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11036"],"risk_score":4.2,"exploitability":"0.5","weighted_severity":"8.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-crwq-ajdn-syaj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82126?format=json","vulnerability_id":"VCID-ctmr-qkrb-n3bg","summary":"Out of bounds write in Codecs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted video file. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11037.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11037.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11037","reference_id":"","reference_type":"","scores":[{"value":"0.00092","scoring_system":"epss","scoring_elements":"0.26103","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00092","scoring_system":"epss","scoring_elements":"0.25901","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00092","scoring_system":"epss","scoring_elements":"0.26101","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00092","scoring_system":"epss","scoring_elements":"0.26117","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11037"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11037","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11037"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485078","reference_id":"2485078","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485078"},{"reference_url":"https://issues.chromium.org/issues/497971287","reference_id":"497971287","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T14:49:56Z/"}],"url":"https://issues.chromium.org/issues/497971287"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T14:49:56Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11037"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ctmr-qkrb-n3bg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76831?format=json","vulnerability_id":"VCID-cuby-zf9u-hbhq","summary":"Use after free in Ozone in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10895.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10895.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10895","reference_id":"","reference_type":"","scores":[{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33937","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33737","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33915","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10895"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10895","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10895"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485248","reference_id":"2485248","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485248"},{"reference_url":"https://issues.chromium.org/issues/513454018","reference_id":"513454018","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:26:49Z/"}],"url":"https://issues.chromium.org/issues/513454018"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:26:49Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10895"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cuby-zf9u-hbhq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82018?format=json","vulnerability_id":"VCID-cvbt-nn46-dbhk","summary":"Inappropriate implementation in Passwords in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11294.json","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11294.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11294","reference_id":"","reference_type":"","scores":[{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08624","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08579","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.0862","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11294"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11294","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11294"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485039","reference_id":"2485039","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485039"},{"reference_url":"https://issues.chromium.org/issues/502403953","reference_id":"502403953","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T18:55:13Z/"}],"url":"https://issues.chromium.org/issues/502403953"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T18:55:13Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11294"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"4.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cvbt-nn46-dbhk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82191?format=json","vulnerability_id":"VCID-cvya-xccs-dbce","summary":"Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11090.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11090.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11090","reference_id":"","reference_type":"","scores":[{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09277","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09233","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09285","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09287","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11090"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11090","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11090"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485204","reference_id":"2485204","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485204"},{"reference_url":"https://issues.chromium.org/issues/500161302","reference_id":"500161302","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:01:55Z/"}],"url":"https://issues.chromium.org/issues/500161302"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:01:55Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11090"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cvya-xccs-dbce"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76683?format=json","vulnerability_id":"VCID-czwm-r6ba-dugw","summary":"Insufficient validation of untrusted input in Codecs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted video file. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10981.json","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10981.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10981","reference_id":"","reference_type":"","scores":[{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11002","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.10974","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11036","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11032","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10981"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10981","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10981"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485162","reference_id":"2485162","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485162"},{"reference_url":"https://issues.chromium.org/issues/513762354","reference_id":"513762354","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:57:55Z/"}],"url":"https://issues.chromium.org/issues/513762354"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:57:55Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10981"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"6.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-czwm-r6ba-dugw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76615?format=json","vulnerability_id":"VCID-d1sw-r6fr-sudt","summary":"Use after free in Autofill in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10934.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10934.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10934","reference_id":"","reference_type":"","scores":[{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22495","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22306","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.225","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22513","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10934"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10934","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10934"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485232","reference_id":"2485232","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485232"},{"reference_url":"https://issues.chromium.org/issues/501594107","reference_id":"501594107","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:38:18Z/"}],"url":"https://issues.chromium.org/issues/501594107"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:38:18Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10934"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-d1sw-r6fr-sudt"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82071?format=json","vulnerability_id":"VCID-d315-s5a2-y7ar","summary":"Inappropriate implementation in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11298.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11298.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11298","reference_id":"","reference_type":"","scores":[{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02183","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02172","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02176","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02173","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11298"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11298","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11298"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485650","reference_id":"2485650","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485650"},{"reference_url":"https://issues.chromium.org/issues/502503860","reference_id":"502503860","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:24:53Z/"}],"url":"https://issues.chromium.org/issues/502503860"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:24:53Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11298"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-d315-s5a2-y7ar"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82109?format=json","vulnerability_id":"VCID-d333-8fqb-gfhm","summary":"Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11110.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11110.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11110","reference_id":"","reference_type":"","scores":[{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09277","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09233","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09285","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09287","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11110"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11110","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11110"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485253","reference_id":"2485253","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485253"},{"reference_url":"https://issues.chromium.org/issues/500528864","reference_id":"500528864","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:09:14Z/"}],"url":"https://issues.chromium.org/issues/500528864"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:09:14Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11110"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-d333-8fqb-gfhm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76780?format=json","vulnerability_id":"VCID-d39t-84c2-h7bd","summary":"Use after free in Cast Streaming in Google Chrome prior to 149.0.7827.53 allowed an attacker on the local network segment to execute arbitrary code via malicious network traffic. (Chromium security severity: Critical)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10888.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10888.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10888","reference_id":"","reference_type":"","scores":[{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.03599","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.0358","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.03594","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.03585","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10888"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10888","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10888"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485302","reference_id":"2485302","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485302"},{"reference_url":"https://issues.chromium.org/issues/505815080","reference_id":"505815080","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:39:30Z/"}],"url":"https://issues.chromium.org/issues/505815080"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:39:30Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10888"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-d39t-84c2-h7bd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82469?format=json","vulnerability_id":"VCID-d3mx-2y2w-qbb2","summary":"Insufficient validation of untrusted input in SiteIsolation in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11056.json","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11056.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11056","reference_id":"","reference_type":"","scores":[{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28443","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28231","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28428","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28452","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11056"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11056","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11056"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485070","reference_id":"2485070","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485070"},{"reference_url":"https://issues.chromium.org/issues/498887785","reference_id":"498887785","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T18:46:55Z/"}],"url":"https://issues.chromium.org/issues/498887785"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T18:46:55Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11056"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-d3mx-2y2w-qbb2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82527?format=json","vulnerability_id":"VCID-d3v9-zzkt-2yf6","summary":"Inappropriate implementation in Autofill in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11265.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11265.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11265","reference_id":"","reference_type":"","scores":[{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.04999","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.05021","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.05024","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.0501","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11265"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11265","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11265"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485256","reference_id":"2485256","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485256"},{"reference_url":"https://issues.chromium.org/issues/500262869","reference_id":"500262869","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:45:48Z/"}],"url":"https://issues.chromium.org/issues/500262869"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:45:48Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11265"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-d3v9-zzkt-2yf6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82138?format=json","vulnerability_id":"VCID-d4xu-apu7-bub1","summary":"Use after free in Codecs in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11094.json","reference_id":"","reference_type":"","scores":[{"value":"7.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11094.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11094","reference_id":"","reference_type":"","scores":[{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22495","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22306","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.225","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22513","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11094"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485321","reference_id":"2485321","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485321"},{"reference_url":"https://issues.chromium.org/issues/500174874","reference_id":"500174874","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T13:12:43Z/"}],"url":"https://issues.chromium.org/issues/500174874"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T13:12:43Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11094"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-d4xu-apu7-bub1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82541?format=json","vulnerability_id":"VCID-d5s8-5491-sbhk","summary":"Out of bounds read in GWP-ASan in Google Chrome prior to 149.0.7827.53 allowed a local attacker to obtain potentially sensitive information from process memory via a malicious file. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11183.json","reference_id":"","reference_type":"","scores":[{"value":"5.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11183.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11183","reference_id":"","reference_type":"","scores":[{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.03632","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.0361","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.03626","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.03619","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11183"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11183","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11183"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485106","reference_id":"2485106","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485106"},{"reference_url":"https://issues.chromium.org/issues/502768780","reference_id":"502768780","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T13:36:08Z/"}],"url":"https://issues.chromium.org/issues/502768780"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T13:36:08Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11183"],"risk_score":2.2,"exploitability":"0.5","weighted_severity":"4.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-d5s8-5491-sbhk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76545?format=json","vulnerability_id":"VCID-d7k2-9stw-6kgd","summary":"Use after free in Actor in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10954.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10954.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10954","reference_id":"","reference_type":"","scores":[{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33937","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33737","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33915","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10954"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10954","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10954"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485097","reference_id":"2485097","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485097"},{"reference_url":"https://issues.chromium.org/issues/506150628","reference_id":"506150628","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:25:57Z/"}],"url":"https://issues.chromium.org/issues/506150628"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:25:57Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10954"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-d7k2-9stw-6kgd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82233?format=json","vulnerability_id":"VCID-dcvb-gfnk-87g9","summary":"Integer overflow in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11211.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11211.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11211","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25099","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24898","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25097","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25114","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11211"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11211","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11211"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485148","reference_id":"2485148","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485148"},{"reference_url":"https://issues.chromium.org/issues/506629455","reference_id":"506629455","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T03:56:13Z/"}],"url":"https://issues.chromium.org/issues/506629455"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T03:56:13Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11211"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dcvb-gfnk-87g9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82079?format=json","vulnerability_id":"VCID-dfhh-2a8f-5fhz","summary":"Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11109.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11109.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11109","reference_id":"","reference_type":"","scores":[{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09277","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09233","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09285","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09287","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11109"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11109","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11109"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485292","reference_id":"2485292","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485292"},{"reference_url":"https://issues.chromium.org/issues/500524833","reference_id":"500524833","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:07:43Z/"}],"url":"https://issues.chromium.org/issues/500524833"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:07:43Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11109"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dfhh-2a8f-5fhz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82230?format=json","vulnerability_id":"VCID-dg68-uauj-abgv","summary":"Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11303.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11303.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11303","reference_id":"","reference_type":"","scores":[{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33937","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33737","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33915","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11303"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11303","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11303"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485284","reference_id":"2485284","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485284"},{"reference_url":"https://issues.chromium.org/issues/504416752","reference_id":"504416752","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:00:56Z/"}],"url":"https://issues.chromium.org/issues/504416752"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:00:56Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11303"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dg68-uauj-abgv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82392?format=json","vulnerability_id":"VCID-dn5m-fu59-wffq","summary":"Insufficient policy enforcement in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to bypass discretionary access control via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11302.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11302.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11302","reference_id":"","reference_type":"","scores":[{"value":"0.00025","scoring_system":"epss","scoring_elements":"0.07561","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00025","scoring_system":"epss","scoring_elements":"0.0754","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00025","scoring_system":"epss","scoring_elements":"0.07575","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00025","scoring_system":"epss","scoring_elements":"0.0757","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11302"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11302","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11302"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485651","reference_id":"2485651","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485651"},{"reference_url":"https://issues.chromium.org/issues/504196549","reference_id":"504196549","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:21:01Z/"}],"url":"https://issues.chromium.org/issues/504196549"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:21:01Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11302"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dn5m-fu59-wffq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82090?format=json","vulnerability_id":"VCID-dpkc-dn1d-53aa","summary":"Inappropriate implementation in Password Manager in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11084.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11084.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11084","reference_id":"","reference_type":"","scores":[{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.0319","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03181","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03194","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03177","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11084"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11084","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11084"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485069","reference_id":"2485069","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485069"},{"reference_url":"https://issues.chromium.org/issues/500124500","reference_id":"500124500","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:23:53Z/"}],"url":"https://issues.chromium.org/issues/500124500"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:23:53Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11084"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dpkc-dn1d-53aa"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76461?format=json","vulnerability_id":"VCID-dpxb-fh8a-5ybz","summary":"Integer overflow in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10921.json","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10921.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10921","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25108","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24906","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25105","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25122","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10921"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10921","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10921"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485117","reference_id":"2485117","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485117"},{"reference_url":"https://issues.chromium.org/issues/499159695","reference_id":"499159695","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:38:46Z/"}],"url":"https://issues.chromium.org/issues/499159695"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:38:46Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10921"],"risk_score":3.7,"exploitability":"0.5","weighted_severity":"7.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dpxb-fh8a-5ybz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82221?format=json","vulnerability_id":"VCID-dsza-7zwn-gbcn","summary":"Use after free in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to execute arbitrary code via a malicious file. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11072.json","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11072.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11072","reference_id":"","reference_type":"","scores":[{"value":"6e-05","scoring_system":"epss","scoring_elements":"0.00414","published_at":"2026-06-14T12:55:00Z"},{"value":"6e-05","scoring_system":"epss","scoring_elements":"0.00409","published_at":"2026-06-11T12:55:00Z"},{"value":"6e-05","scoring_system":"epss","scoring_elements":"0.00406","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11072"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11072","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11072"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485138","reference_id":"2485138","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485138"},{"reference_url":"https://issues.chromium.org/issues/499238195","reference_id":"499238195","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T03:56:33Z/"}],"url":"https://issues.chromium.org/issues/499238195"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T03:56:33Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11072"],"risk_score":3.3,"exploitability":"0.5","weighted_severity":"6.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dsza-7zwn-gbcn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82218?format=json","vulnerability_id":"VCID-dxs5-afy5-gfgr","summary":"Inappropriate implementation in SVG in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11166.json","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11166.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11166","reference_id":"","reference_type":"","scores":[{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09675","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09636","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09685","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11166"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11166","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11166"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485197","reference_id":"2485197","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485197"},{"reference_url":"https://issues.chromium.org/issues/502118936","reference_id":"502118936","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T17:22:25Z/"}],"url":"https://issues.chromium.org/issues/502118936"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T17:22:25Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11166"],"risk_score":3.6,"exploitability":"0.5","weighted_severity":"7.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dxs5-afy5-gfgr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82056?format=json","vulnerability_id":"VCID-dz2j-wbqd-23fb","summary":"Use after free in WebMIDI in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11165.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11165.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11165","reference_id":"","reference_type":"","scores":[{"value":"0.00067","scoring_system":"epss","scoring_elements":"0.21173","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00067","scoring_system":"epss","scoring_elements":"0.20997","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00067","scoring_system":"epss","scoring_elements":"0.21176","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00067","scoring_system":"epss","scoring_elements":"0.21193","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11165"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11165","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11165"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485639","reference_id":"2485639","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485639"},{"reference_url":"https://issues.chromium.org/issues/502099949","reference_id":"502099949","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T17:25:23Z/"}],"url":"https://issues.chromium.org/issues/502099949"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T17:25:23Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11165"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dz2j-wbqd-23fb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82351?format=json","vulnerability_id":"VCID-e3wp-c6fd-17cr","summary":"Inappropriate implementation in Payments in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11001.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11001.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11001","reference_id":"","reference_type":"","scores":[{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08364","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08327","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08365","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08367","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11001"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11001","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11001"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485124","reference_id":"2485124","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485124"},{"reference_url":"https://issues.chromium.org/issues/493691489","reference_id":"493691489","reference_type":"","scores":[{"value":"4.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T16:53:55Z/"}],"url":"https://issues.chromium.org/issues/493691489"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T16:53:55Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11001"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-e3wp-c6fd-17cr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82072?format=json","vulnerability_id":"VCID-e41n-7qet-wqhr","summary":"Inappropriate implementation in DevTools in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11126.json","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11126.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11126","reference_id":"","reference_type":"","scores":[{"value":"0.00037","scoring_system":"epss","scoring_elements":"0.11443","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00037","scoring_system":"epss","scoring_elements":"0.11409","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00037","scoring_system":"epss","scoring_elements":"0.11484","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00037","scoring_system":"epss","scoring_elements":"0.11476","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11126"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11126","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11126"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485243","reference_id":"2485243","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485243"},{"reference_url":"https://issues.chromium.org/issues/501528031","reference_id":"501528031","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T15:41:32Z/"}],"url":"https://issues.chromium.org/issues/501528031"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T15:41:32Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11126"],"risk_score":2.6,"exploitability":"0.5","weighted_severity":"5.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-e41n-7qet-wqhr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82474?format=json","vulnerability_id":"VCID-e67n-tf84-k3a8","summary":"Inappropriate implementation in MHTML in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11195.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11195.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11195","reference_id":"","reference_type":"","scores":[{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.04707","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.04727","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.04728","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.04714","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11195"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11195","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11195"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485337","reference_id":"2485337","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485337"},{"reference_url":"https://issues.chromium.org/issues/503865896","reference_id":"503865896","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:20:46Z/"}],"url":"https://issues.chromium.org/issues/503865896"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:20:46Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11195"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-e67n-tf84-k3a8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82305?format=json","vulnerability_id":"VCID-ecau-yf6d-w3hj","summary":"Inappropriate implementation in ImageCapture in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11296.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11296.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11296","reference_id":"","reference_type":"","scores":[{"value":"0.00084","scoring_system":"epss","scoring_elements":"0.24616","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00084","scoring_system":"epss","scoring_elements":"0.24425","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00084","scoring_system":"epss","scoring_elements":"0.2462","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00084","scoring_system":"epss","scoring_elements":"0.24631","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11296"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11296","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11296"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485278","reference_id":"2485278","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485278"},{"reference_url":"https://issues.chromium.org/issues/502493950","reference_id":"502493950","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:09:30Z/"}],"url":"https://issues.chromium.org/issues/502493950"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:09:30Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11296"],"risk_score":2.2,"exploitability":"0.5","weighted_severity":"4.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ecau-yf6d-w3hj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82515?format=json","vulnerability_id":"VCID-ecdu-c2t6-8qh7","summary":"Inappropriate implementation in Link Preview in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11017.json","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11017.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11017","reference_id":"","reference_type":"","scores":[{"value":"0.00025","scoring_system":"epss","scoring_elements":"0.07561","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00025","scoring_system":"epss","scoring_elements":"0.0754","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00025","scoring_system":"epss","scoring_elements":"0.07575","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00025","scoring_system":"epss","scoring_elements":"0.0757","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11017"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11017","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11017"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485238","reference_id":"2485238","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485238"},{"reference_url":"https://issues.chromium.org/issues/497336872","reference_id":"497336872","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T14:53:02Z/"}],"url":"https://issues.chromium.org/issues/497336872"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T14:53:02Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11017"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"4.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ecdu-c2t6-8qh7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76695?format=json","vulnerability_id":"VCID-ecfy-rbbk-7fex","summary":"Use after free in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10909.json","reference_id":"","reference_type":"","scores":[{"value":"8.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10909.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10909","reference_id":"","reference_type":"","scores":[{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30392","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30191","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30387","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30404","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10909"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10909","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10909"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485028","reference_id":"2485028","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485028"},{"reference_url":"https://issues.chromium.org/issues/508092644","reference_id":"508092644","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:39:21Z/"}],"url":"https://issues.chromium.org/issues/508092644"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:39:21Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10909"],"risk_score":3.6,"exploitability":"0.5","weighted_severity":"7.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ecfy-rbbk-7fex"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76719?format=json","vulnerability_id":"VCID-ecx3-1z5j-jugm","summary":"Use after free in PDF in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code inside a sandbox via a crafted PDF file. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10945.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10945.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10945","reference_id":"","reference_type":"","scores":[{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33937","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33737","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33915","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10945"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10945","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10945"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484995","reference_id":"2484995","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484995"},{"reference_url":"https://issues.chromium.org/issues/504417768","reference_id":"504417768","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:01:02Z/"}],"url":"https://issues.chromium.org/issues/504417768"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:01:02Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10945"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ecx3-1z5j-jugm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76787?format=json","vulnerability_id":"VCID-eh5f-p2pm-7yft","summary":"Use after free in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10952.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10952.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10952","reference_id":"","reference_type":"","scores":[{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30392","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30191","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30387","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30404","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10952"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10952","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10952"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485634","reference_id":"2485634","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485634"},{"reference_url":"https://issues.chromium.org/issues/505231370","reference_id":"505231370","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:50:39Z/"}],"url":"https://issues.chromium.org/issues/505231370"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:50:39Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10952"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-eh5f-p2pm-7yft"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76846?format=json","vulnerability_id":"VCID-ej1n-nefa-bbdd","summary":"Use after free in ANGLE in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10913.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10913.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10913","reference_id":"","reference_type":"","scores":[{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33937","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33737","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33915","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10913"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10913","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10913"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485188","reference_id":"2485188","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485188"},{"reference_url":"https://issues.chromium.org/issues/497450927","reference_id":"497450927","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:26:25Z/"}],"url":"https://issues.chromium.org/issues/497450927"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:26:25Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10913"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ej1n-nefa-bbdd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82158?format=json","vulnerability_id":"VCID-ekar-3g2m-ufbg","summary":"Insufficient policy enforcement in Paint in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11132.json","reference_id":"","reference_type":"","scores":[{"value":"9.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11132.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11132","reference_id":"","reference_type":"","scores":[{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01498","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01481","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01484","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01489","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11132"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11132","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11132"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485304","reference_id":"2485304","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485304"},{"reference_url":"https://issues.chromium.org/issues/501597365","reference_id":"501597365","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:53:28Z/"}],"url":"https://issues.chromium.org/issues/501597365"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:53:28Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11132"],"risk_score":4.2,"exploitability":"0.5","weighted_severity":"8.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ekar-3g2m-ufbg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82284?format=json","vulnerability_id":"VCID-ekph-dat5-43a2","summary":"Inappropriate implementation in Cronet in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform domain spoofing via a crafted domain name. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11215.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11215.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11215","reference_id":"","reference_type":"","scores":[{"value":"0.00024","scoring_system":"epss","scoring_elements":"0.07122","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00024","scoring_system":"epss","scoring_elements":"0.07099","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00024","scoring_system":"epss","scoring_elements":"0.07132","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00024","scoring_system":"epss","scoring_elements":"0.07127","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11215"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11215","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11215"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485008","reference_id":"2485008","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485008"},{"reference_url":"https://issues.chromium.org/issues/513446116","reference_id":"513446116","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:25:25Z/"}],"url":"https://issues.chromium.org/issues/513446116"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:25:25Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11215"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ekph-dat5-43a2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82517?format=json","vulnerability_id":"VCID-enut-2fke-ykfy","summary":"Inappropriate implementation in Network in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11194.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11194.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11194","reference_id":"","reference_type":"","scores":[{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.04707","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.04727","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.04728","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.04714","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11194"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11194","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11194"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485011","reference_id":"2485011","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485011"},{"reference_url":"https://issues.chromium.org/issues/503719488","reference_id":"503719488","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:21:42Z/"}],"url":"https://issues.chromium.org/issues/503719488"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:21:42Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11194"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-enut-2fke-ykfy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82058?format=json","vulnerability_id":"VCID-eqrk-jhav-2fb1","summary":"Inappropriate implementation in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform privilege escalation via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11295.json","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11295.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11295","reference_id":"","reference_type":"","scores":[{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.27324","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.27118","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.27321","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00099","scoring_system":"epss","scoring_elements":"0.27342","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11295"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11295","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11295"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485287","reference_id":"2485287","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485287"},{"reference_url":"https://issues.chromium.org/issues/502444677","reference_id":"502444677","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T18:54:04Z/"}],"url":"https://issues.chromium.org/issues/502444677"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T18:54:04Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11295"],"risk_score":2.9,"exploitability":"0.5","weighted_severity":"5.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-eqrk-jhav-2fb1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82216?format=json","vulnerability_id":"VCID-etp3-dw4m-dqhx","summary":"Inappropriate implementation in SafeBrowsing in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass Safe Browsing via a malicious file. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11266.json","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11266.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11266","reference_id":"","reference_type":"","scores":[{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08684","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08643","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08685","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.0869","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11266"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11266","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11266"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484967","reference_id":"2484967","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484967"},{"reference_url":"https://issues.chromium.org/issues/500521311","reference_id":"500521311","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:44:55Z/"}],"url":"https://issues.chromium.org/issues/500521311"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:44:55Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11266"],"risk_score":2.9,"exploitability":"0.5","weighted_severity":"5.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-etp3-dw4m-dqhx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82046?format=json","vulnerability_id":"VCID-etu7-ef4g-8kap","summary":"Race in Geolocation in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11145.json","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11145.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11145","reference_id":"","reference_type":"","scores":[{"value":"0.00027","scoring_system":"epss","scoring_elements":"0.08156","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00027","scoring_system":"epss","scoring_elements":"0.08126","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00027","scoring_system":"epss","scoring_elements":"0.08162","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00027","scoring_system":"epss","scoring_elements":"0.08158","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11145"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11145","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11145"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485165","reference_id":"2485165","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485165"},{"reference_url":"https://issues.chromium.org/issues/501683745","reference_id":"501683745","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:32:23Z/"}],"url":"https://issues.chromium.org/issues/501683745"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:32:23Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11145"],"risk_score":2.8,"exploitability":"0.5","weighted_severity":"5.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-etu7-ef4g-8kap"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82466?format=json","vulnerability_id":"VCID-ewys-pcwr-e7bv","summary":"Out of bounds read in Input in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11160.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11160.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11160","reference_id":"","reference_type":"","scores":[{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.0914","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09095","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09152","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11160"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11160","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11160"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485182","reference_id":"2485182","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485182"},{"reference_url":"https://issues.chromium.org/issues/501862016","reference_id":"501862016","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T17:35:31Z/"}],"url":"https://issues.chromium.org/issues/501862016"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T17:35:31Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11160"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ewys-pcwr-e7bv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82414?format=json","vulnerability_id":"VCID-ey2n-xuy3-33fq","summary":"Inappropriate implementation in Fenced Frames in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11217.json","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11217.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11217","reference_id":"","reference_type":"","scores":[{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01498","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01481","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01484","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01489","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11217"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11217","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11217"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485260","reference_id":"2485260","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485260"},{"reference_url":"https://issues.chromium.org/issues/487564032","reference_id":"487564032","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:21:00Z/"}],"url":"https://issues.chromium.org/issues/487564032"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:21:00Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11217"],"risk_score":2.6,"exploitability":"0.5","weighted_severity":"5.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ey2n-xuy3-33fq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82093?format=json","vulnerability_id":"VCID-f269-t8by-hkd1","summary":"Inappropriate implementation in File System Access in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass discretionary access control via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11258.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11258.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11258","reference_id":"","reference_type":"","scores":[{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06234","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06242","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06264","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06253","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11258"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11258","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11258"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485249","reference_id":"2485249","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485249"},{"reference_url":"https://issues.chromium.org/issues/499078161","reference_id":"499078161","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:55:26Z/"}],"url":"https://issues.chromium.org/issues/499078161"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:55:26Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11258"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-f269-t8by-hkd1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82291?format=json","vulnerability_id":"VCID-f3bc-gttg-jffd","summary":"Insufficient validation of untrusted input in Navigation in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11220.json","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11220.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11220","reference_id":"","reference_type":"","scores":[{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09752","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09711","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09762","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09764","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11220"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11220","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11220"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485052","reference_id":"2485052","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485052"},{"reference_url":"https://issues.chromium.org/issues/487300831","reference_id":"487300831","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:13:44Z/"}],"url":"https://issues.chromium.org/issues/487300831"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:13:44Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11220"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"6.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-f3bc-gttg-jffd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82215?format=json","vulnerability_id":"VCID-fc35-e34r-sybw","summary":"Inappropriate implementation in Google Lens in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11248.json","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11248.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11248","reference_id":"","reference_type":"","scores":[{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.13159","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.13083","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.13181","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.13183","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11248"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11248","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11248"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485147","reference_id":"2485147","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485147"},{"reference_url":"https://issues.chromium.org/issues/497946941","reference_id":"497946941","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T11:57:00Z/"}],"url":"https://issues.chromium.org/issues/497946941"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T11:57:00Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11248"],"risk_score":2.6,"exploitability":"0.5","weighted_severity":"5.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fc35-e34r-sybw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82413?format=json","vulnerability_id":"VCID-fd1b-fyp1-97fh","summary":"Inappropriate implementation in Web Share in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11128.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11128.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11128","reference_id":"","reference_type":"","scores":[{"value":"0.0004","scoring_system":"epss","scoring_elements":"0.12403","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0004","scoring_system":"epss","scoring_elements":"0.12324","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0004","scoring_system":"epss","scoring_elements":"0.12415","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0004","scoring_system":"epss","scoring_elements":"0.12424","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11128"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11128","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11128"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485019","reference_id":"2485019","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485019"},{"reference_url":"https://issues.chromium.org/issues/501541341","reference_id":"501541341","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T15:49:33Z/"}],"url":"https://issues.chromium.org/issues/501541341"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T15:49:33Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11128"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fd1b-fyp1-97fh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82384?format=json","vulnerability_id":"VCID-fe6m-u1b7-h7gg","summary":"Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11304.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11304.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11304","reference_id":"","reference_type":"","scores":[{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30392","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30191","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30387","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30404","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11304"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11304","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11304"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485271","reference_id":"2485271","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485271"},{"reference_url":"https://issues.chromium.org/issues/504418475","reference_id":"504418475","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:19:25Z/"}],"url":"https://issues.chromium.org/issues/504418475"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:19:25Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11304"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fe6m-u1b7-h7gg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82241?format=json","vulnerability_id":"VCID-ffmd-1cx4-ryca","summary":"Insufficient policy enforcement in Blink in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass content security policy via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11292.json","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11292.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11292","reference_id":"","reference_type":"","scores":[{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.10389","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.10358","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.10409","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.10414","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11292"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11292","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11292"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485313","reference_id":"2485313","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485313"},{"reference_url":"https://issues.chromium.org/issues/502358901","reference_id":"502358901","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T18:57:31Z/"}],"url":"https://issues.chromium.org/issues/502358901"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T18:57:31Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11292"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"4.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ffmd-1cx4-ryca"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82333?format=json","vulnerability_id":"VCID-fhwh-x47x-77f4","summary":"Out of bounds read in Extensions in Google Chrome on Linux prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information from process memory via a crafted Chrome Extension. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11143.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11143.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11143","reference_id":"","reference_type":"","scores":[{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.03632","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.0361","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.03626","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.03619","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11143"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11143","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11143"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485127","reference_id":"2485127","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485127"},{"reference_url":"https://issues.chromium.org/issues/501674219","reference_id":"501674219","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:35:07Z/"}],"url":"https://issues.chromium.org/issues/501674219"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:35:07Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11143"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fhwh-x47x-77f4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82359?format=json","vulnerability_id":"VCID-fkwa-n8bb-2uc7","summary":"Inappropriate implementation in Installer in Google Chrome on Windows prior to 149.0.7827.53 allowed a local attacker to perform OS-level privilege escalation via a malicious file. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11103.json","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11103.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11103","reference_id":"","reference_type":"","scores":[{"value":"5e-05","scoring_system":"epss","scoring_elements":"0.00286","published_at":"2026-06-14T12:55:00Z"},{"value":"5e-05","scoring_system":"epss","scoring_elements":"0.00285","published_at":"2026-06-11T12:55:00Z"},{"value":"5e-05","scoring_system":"epss","scoring_elements":"0.00284","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11103"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11103","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11103"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485282","reference_id":"2485282","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485282"},{"reference_url":"https://issues.chromium.org/issues/500483038","reference_id":"500483038","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T02:53:55Z/"}],"url":"https://issues.chromium.org/issues/500483038"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T02:53:55Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11103"],"risk_score":3.7,"exploitability":"0.5","weighted_severity":"7.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fkwa-n8bb-2uc7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82087?format=json","vulnerability_id":"VCID-fp62-tqk7-ckc4","summary":"Out of bounds read in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11075.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11075.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11075","reference_id":"","reference_type":"","scores":[{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.0914","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09095","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09152","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11075"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11075","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11075"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485023","reference_id":"2485023","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485023"},{"reference_url":"https://issues.chromium.org/issues/499659070","reference_id":"499659070","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:27:54Z/"}],"url":"https://issues.chromium.org/issues/499659070"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:27:54Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11075"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fp62-tqk7-ckc4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82156?format=json","vulnerability_id":"VCID-frq2-amam-aub3","summary":"Type Confusion in XML in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted XML file. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11196.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11196.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11196","reference_id":"","reference_type":"","scores":[{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11042","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11016","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11078","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11074","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11196"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11196","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11196"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485191","reference_id":"2485191","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485191"},{"reference_url":"https://issues.chromium.org/issues/503879106","reference_id":"503879106","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:26:47Z/"}],"url":"https://issues.chromium.org/issues/503879106"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:26:47Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11196"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-frq2-amam-aub3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82048?format=json","vulnerability_id":"VCID-ft2d-zyp3-s3hp","summary":"Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11026.json","reference_id":"","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11026.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11026","reference_id":"","reference_type":"","scores":[{"value":"0.00017","scoring_system":"epss","scoring_elements":"0.04223","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00017","scoring_system":"epss","scoring_elements":"0.04222","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00017","scoring_system":"epss","scoring_elements":"0.04233","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00017","scoring_system":"epss","scoring_elements":"0.0422","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11026"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11026","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11026"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485021","reference_id":"2485021","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485021"},{"reference_url":"https://issues.chromium.org/issues/497599683","reference_id":"497599683","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:32:41Z/"}],"url":"https://issues.chromium.org/issues/497599683"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:32:41Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11026"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ft2d-zyp3-s3hp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82435?format=json","vulnerability_id":"VCID-fuky-gfy5-8fbj","summary":"Inappropriate implementation in Passwords in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11209.json","reference_id":"","reference_type":"","scores":[{"value":"5.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11209.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11209","reference_id":"","reference_type":"","scores":[{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.0914","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09095","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09152","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11209"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11209","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11209"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484993","reference_id":"2484993","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484993"},{"reference_url":"https://issues.chromium.org/issues/506391032","reference_id":"506391032","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:36:09Z/"}],"url":"https://issues.chromium.org/issues/506391032"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:36:09Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11209"],"risk_score":2.2,"exploitability":"0.5","weighted_severity":"4.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fuky-gfy5-8fbj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82266?format=json","vulnerability_id":"VCID-fye5-4pk2-4qgu","summary":"Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11123.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11123.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11123","reference_id":"","reference_type":"","scores":[{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09277","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09233","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09285","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09287","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11123"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11123","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11123"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485275","reference_id":"2485275","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485275"},{"reference_url":"https://issues.chromium.org/issues/501505198","reference_id":"501505198","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T15:33:28Z/"}],"url":"https://issues.chromium.org/issues/501505198"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T15:33:28Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11123"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fye5-4pk2-4qgu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82373?format=json","vulnerability_id":"VCID-g4nd-3w3a-quff","summary":"Inappropriate implementation in Downloads in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11243.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11243.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11243","reference_id":"","reference_type":"","scores":[{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.01686","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.01673","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.01676","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.01679","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11243"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11243","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11243"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485168","reference_id":"2485168","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485168"},{"reference_url":"https://issues.chromium.org/issues/497394061","reference_id":"497394061","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T12:28:22Z/"}],"url":"https://issues.chromium.org/issues/497394061"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T12:28:22Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11243"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-g4nd-3w3a-quff"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82403?format=json","vulnerability_id":"VCID-g63t-ptpr-mqf6","summary":"Insufficient validation of untrusted input in Storage Access API in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11255.json","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11255.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11255","reference_id":"","reference_type":"","scores":[{"value":"0.00048","scoring_system":"epss","scoring_elements":"0.15289","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00048","scoring_system":"epss","scoring_elements":"0.15189","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00048","scoring_system":"epss","scoring_elements":"0.15318","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00048","scoring_system":"epss","scoring_elements":"0.15324","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11255"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11255","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11255"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485170","reference_id":"2485170","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485170"},{"reference_url":"https://issues.chromium.org/issues/498417152","reference_id":"498417152","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-06-05T11:00:36Z/"}],"url":"https://issues.chromium.org/issues/498417152"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-06-05T11:00:36Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11255"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"6.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-g63t-ptpr-mqf6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82338?format=json","vulnerability_id":"VCID-g892-29cv-qfhm","summary":"Stack buffer overflow in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially exploit stack corruption via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11024.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11024.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11024","reference_id":"","reference_type":"","scores":[{"value":"0.00079","scoring_system":"epss","scoring_elements":"0.23674","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00079","scoring_system":"epss","scoring_elements":"0.23488","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00079","scoring_system":"epss","scoring_elements":"0.23684","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00079","scoring_system":"epss","scoring_elements":"0.23694","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11024"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11024","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11024"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484992","reference_id":"2484992","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484992"},{"reference_url":"https://issues.chromium.org/issues/497591594","reference_id":"497591594","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-08T14:11:15Z/"}],"url":"https://issues.chromium.org/issues/497591594"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-08T14:11:15Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11024"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-g892-29cv-qfhm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82077?format=json","vulnerability_id":"VCID-gcfs-9sx2-f3g8","summary":"Out of bounds read in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11111.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11111.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11111","reference_id":"","reference_type":"","scores":[{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22495","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22306","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.225","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22513","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11111"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11111","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11111"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485056","reference_id":"2485056","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485056"},{"reference_url":"https://issues.chromium.org/issues/500530720","reference_id":"500530720","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:11:00Z/"}],"url":"https://issues.chromium.org/issues/500530720"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:11:00Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11111"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"4.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gcfs-9sx2-f3g8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82034?format=json","vulnerability_id":"VCID-ghxq-bppu-kbd2","summary":"Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11239.json","reference_id":"","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11239.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11239","reference_id":"","reference_type":"","scores":[{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28443","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28231","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28428","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28452","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11239"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11239","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11239"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484989","reference_id":"2484989","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484989"},{"reference_url":"https://issues.chromium.org/issues/497025738","reference_id":"497025738","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:11:30Z/"}],"url":"https://issues.chromium.org/issues/497025738"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:11:30Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11239"],"risk_score":3.9,"exploitability":"0.5","weighted_severity":"7.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ghxq-bppu-kbd2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82157?format=json","vulnerability_id":"VCID-gtxm-kcdf-zfcu","summary":"Use after free in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11054.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11054.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11054","reference_id":"","reference_type":"","scores":[{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23165","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.2298","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23176","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23187","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11054"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11054","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11054"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484984","reference_id":"2484984","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484984"},{"reference_url":"https://issues.chromium.org/issues/498845284","reference_id":"498845284","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:24:58Z/"}],"url":"https://issues.chromium.org/issues/498845284"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:24:58Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11054"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gtxm-kcdf-zfcu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82154?format=json","vulnerability_id":"VCID-gvuk-vj3t-uqgy","summary":"Insufficient validation of untrusted input in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11007.json","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11007.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11007","reference_id":"","reference_type":"","scores":[{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.20201","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.20032","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.20205","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.20225","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11007"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11007","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11007"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484962","reference_id":"2484962","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484962"},{"reference_url":"https://issues.chromium.org/issues/495834228","reference_id":"495834228","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T16:08:21Z/"}],"url":"https://issues.chromium.org/issues/495834228"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T16:08:21Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11007"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"6.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gvuk-vj3t-uqgy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82520?format=json","vulnerability_id":"VCID-gw73-gvrq-v3dy","summary":"Use after free in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11130.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11130.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11130","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25099","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24898","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25097","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25114","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11130"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11130","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11130"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485116","reference_id":"2485116","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485116"},{"reference_url":"https://issues.chromium.org/issues/501546443","reference_id":"501546443","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:24:16Z/"}],"url":"https://issues.chromium.org/issues/501546443"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:24:16Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11130"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gw73-gvrq-v3dy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76427?format=json","vulnerability_id":"VCID-gxnh-kv1j-wbgz","summary":"Out of bounds read in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10889.json","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10889.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10889","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25108","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24906","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25105","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25122","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10889"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10889","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10889"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484974","reference_id":"2484974","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484974"},{"reference_url":"https://issues.chromium.org/issues/513003797","reference_id":"513003797","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:39:45Z/"}],"url":"https://issues.chromium.org/issues/513003797"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:39:45Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10889"],"risk_score":3.7,"exploitability":"0.5","weighted_severity":"7.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gxnh-kv1j-wbgz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82361?format=json","vulnerability_id":"VCID-gzqv-1qvk-wfdp","summary":"Use after free in Base in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11071.json","reference_id":"","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11071.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11071","reference_id":"","reference_type":"","scores":[{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22495","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22306","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.225","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22513","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11071"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11071","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11071"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485330","reference_id":"2485330","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485330"},{"reference_url":"https://issues.chromium.org/issues/499227659","reference_id":"499227659","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T16:51:08Z/"}],"url":"https://issues.chromium.org/issues/499227659"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T16:51:08Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11071"],"risk_score":2.6,"exploitability":"0.5","weighted_severity":"5.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gzqv-1qvk-wfdp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76468?format=json","vulnerability_id":"VCID-h7ay-secu-5fa7","summary":"Use after free in ANGLE in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10914.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10914.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10914","reference_id":"","reference_type":"","scores":[{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33937","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33737","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33915","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10914"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10914","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10914"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485299","reference_id":"2485299","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485299"},{"reference_url":"https://issues.chromium.org/issues/497574371","reference_id":"497574371","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:26:21Z/"}],"url":"https://issues.chromium.org/issues/497574371"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:26:21Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10914"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-h7ay-secu-5fa7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76577?format=json","vulnerability_id":"VCID-hgyt-6tws-3ye6","summary":"Integer overflow in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10964.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10964.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10964","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25099","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24898","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25097","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25114","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10964"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10964","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10964"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485308","reference_id":"2485308","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485308"},{"reference_url":"https://issues.chromium.org/issues/511228272","reference_id":"511228272","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:19:12Z/"}],"url":"https://issues.chromium.org/issues/511228272"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:19:12Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10964"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hgyt-6tws-3ye6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82047?format=json","vulnerability_id":"VCID-hjy4-yxwv-27ct","summary":"Insufficient validation of untrusted input in WebUI in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11105.json","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11105.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11105","reference_id":"","reference_type":"","scores":[{"value":"0.0004","scoring_system":"epss","scoring_elements":"0.12403","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0004","scoring_system":"epss","scoring_elements":"0.12324","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0004","scoring_system":"epss","scoring_elements":"0.12415","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0004","scoring_system":"epss","scoring_elements":"0.12424","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11105"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11105","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11105"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485207","reference_id":"2485207","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485207"},{"reference_url":"https://issues.chromium.org/issues/500505339","reference_id":"500505339","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T02:58:20Z/"}],"url":"https://issues.chromium.org/issues/500505339"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T02:58:20Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11105"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"6.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hjy4-yxwv-27ct"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76598?format=json","vulnerability_id":"VCID-hkhd-2cvj-wfcb","summary":"Uninitialized Use in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10976.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10976.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10976","reference_id":"","reference_type":"","scores":[{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11042","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11016","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11078","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11074","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10976"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10976","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10976"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485084","reference_id":"2485084","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485084"},{"reference_url":"https://issues.chromium.org/issues/513249847","reference_id":"513249847","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T20:03:03Z/"}],"url":"https://issues.chromium.org/issues/513249847"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T20:03:03Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10976"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hkhd-2cvj-wfcb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76637?format=json","vulnerability_id":"VCID-hrfz-y9h8-ube6","summary":"Inappropriate implementation in Passwords in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10937.json","reference_id":"","reference_type":"","scores":[{"value":"9.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10937.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10937","reference_id":"","reference_type":"","scores":[{"value":"0.00014","scoring_system":"epss","scoring_elements":"0.0264","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00014","scoring_system":"epss","scoring_elements":"0.02634","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00014","scoring_system":"epss","scoring_elements":"0.02639","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00014","scoring_system":"epss","scoring_elements":"0.0263","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10937"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10937","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10937"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485234","reference_id":"2485234","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485234"},{"reference_url":"https://issues.chromium.org/issues/502651056","reference_id":"502651056","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T19:29:30Z/"}],"url":"https://issues.chromium.org/issues/502651056"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T19:29:30Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10937"],"risk_score":4.2,"exploitability":"0.5","weighted_severity":"8.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hrfz-y9h8-ube6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76625?format=json","vulnerability_id":"VCID-hw8z-2sxf-gubj","summary":"Use after free in Network in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10905.json","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10905.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10905","reference_id":"","reference_type":"","scores":[{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30392","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30191","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30387","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30404","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10905"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10905","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10905"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485301","reference_id":"2485301","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485301"},{"reference_url":"https://issues.chromium.org/issues/487357841","reference_id":"487357841","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:39:31Z/"}],"url":"https://issues.chromium.org/issues/487357841"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:39:31Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10905"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hw8z-2sxf-gubj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82142?format=json","vulnerability_id":"VCID-hwrh-78e3-uybu","summary":"Use after free in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11154.json","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11154.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11154","reference_id":"","reference_type":"","scores":[{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22495","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22306","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.225","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22513","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11154"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11154","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11154"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485286","reference_id":"2485286","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485286"},{"reference_url":"https://issues.chromium.org/issues/501789156","reference_id":"501789156","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T17:51:09Z/"}],"url":"https://issues.chromium.org/issues/501789156"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T17:51:09Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11154"],"risk_score":3.7,"exploitability":"0.5","weighted_severity":"7.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hwrh-78e3-uybu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82036?format=json","vulnerability_id":"VCID-j5tx-jgs4-ebgm","summary":"Use after free in Messages in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11163.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11163.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11163","reference_id":"","reference_type":"","scores":[{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22495","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22306","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.225","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22513","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11163"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11163","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11163"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485305","reference_id":"2485305","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485305"},{"reference_url":"https://issues.chromium.org/issues/502072755","reference_id":"502072755","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T17:26:45Z/"}],"url":"https://issues.chromium.org/issues/502072755"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T17:26:45Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11163"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-j5tx-jgs4-ebgm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82086?format=json","vulnerability_id":"VCID-j8mf-74ht-tfcu","summary":"Inappropriate implementation in Passwords in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11271.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11271.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11271","reference_id":"","reference_type":"","scores":[{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.0914","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09095","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09152","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11271"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11271","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11271"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485051","reference_id":"2485051","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485051"},{"reference_url":"https://issues.chromium.org/issues/501685207","reference_id":"501685207","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:34:45Z/"}],"url":"https://issues.chromium.org/issues/501685207"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:34:45Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11271"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-j8mf-74ht-tfcu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76510?format=json","vulnerability_id":"VCID-jbzg-r163-5ufd","summary":"Use after free in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10975.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10975.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10975","reference_id":"","reference_type":"","scores":[{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23165","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.2298","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23176","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23187","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10975"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10975","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10975"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485120","reference_id":"2485120","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485120"},{"reference_url":"https://issues.chromium.org/issues/513154132","reference_id":"513154132","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:25:35Z/"}],"url":"https://issues.chromium.org/issues/513154132"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:25:35Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10975"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jbzg-r163-5ufd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76580?format=json","vulnerability_id":"VCID-jdfm-sjqw-nfez","summary":"Inappropriate implementation in UI in Google Chrome on Windows prior to 149.0.7827.53 allowed a local attacker to perform privilege escalation via a malicious file. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10942.json","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10942.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10942","reference_id":"","reference_type":"","scores":[{"value":"0.0001","scoring_system":"epss","scoring_elements":"0.01093","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0001","scoring_system":"epss","scoring_elements":"0.01087","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0001","scoring_system":"epss","scoring_elements":"0.01084","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0001","scoring_system":"epss","scoring_elements":"0.01091","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10942"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10942","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10942"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485022","reference_id":"2485022","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485022"},{"reference_url":"https://issues.chromium.org/issues/504104263","reference_id":"504104263","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:05:02Z/"}],"url":"https://issues.chromium.org/issues/504104263"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:05:02Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10942"],"risk_score":3.3,"exploitability":"0.5","weighted_severity":"6.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jdfm-sjqw-nfez"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82187?format=json","vulnerability_id":"VCID-jwec-jm17-cqew","summary":"Inappropriate implementation in CSS in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11162.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11162.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11162","reference_id":"","reference_type":"","scores":[{"value":"0.00027","scoring_system":"epss","scoring_elements":"0.08028","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00027","scoring_system":"epss","scoring_elements":"0.08","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00027","scoring_system":"epss","scoring_elements":"0.08035","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00027","scoring_system":"epss","scoring_elements":"0.08031","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11162"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11162","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11162"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484960","reference_id":"2484960","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484960"},{"reference_url":"https://issues.chromium.org/issues/502035074","reference_id":"502035074","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T17:28:54Z/"}],"url":"https://issues.chromium.org/issues/502035074"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T17:28:54Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11162"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jwec-jm17-cqew"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82277?format=json","vulnerability_id":"VCID-k4a1-k83s-cbdb","summary":"Out of bounds read in ANGLE in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11051.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11051.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11051","reference_id":"","reference_type":"","scores":[{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.0914","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09095","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09152","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11051"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11051","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11051"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485303","reference_id":"2485303","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485303"},{"reference_url":"https://issues.chromium.org/issues/498828605","reference_id":"498828605","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T18:50:04Z/"}],"url":"https://issues.chromium.org/issues/498828605"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T18:50:04Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11051"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-k4a1-k83s-cbdb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82121?format=json","vulnerability_id":"VCID-k5eu-6rz2-8yew","summary":"Insufficient validation of untrusted input in Password Manager in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11151.json","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11151.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11151","reference_id":"","reference_type":"","scores":[{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28443","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28231","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28428","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28452","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11151"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11151","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11151"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485176","reference_id":"2485176","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485176"},{"reference_url":"https://issues.chromium.org/issues/501740323","reference_id":"501740323","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T17:59:51Z/"}],"url":"https://issues.chromium.org/issues/501740323"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T17:59:51Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11151"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-k5eu-6rz2-8yew"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82398?format=json","vulnerability_id":"VCID-k8xg-bewt-1fe9","summary":"Use after free in Password Manager in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11049.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11049.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11049","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25099","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24898","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25097","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25114","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11049"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11049","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11049"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485014","reference_id":"2485014","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485014"},{"reference_url":"https://issues.chromium.org/issues/498815068","reference_id":"498815068","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:25:08Z/"}],"url":"https://issues.chromium.org/issues/498815068"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:25:08Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11049"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-k8xg-bewt-1fe9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82031?format=json","vulnerability_id":"VCID-k966-guv9-wfg8","summary":"Out of bounds memory access in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11191.json","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11191.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11191","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25108","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24906","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25105","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25122","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11191"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11191","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11191"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485100","reference_id":"2485100","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485100"},{"reference_url":"https://issues.chromium.org/issues/503392431","reference_id":"503392431","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:22:37Z/"}],"url":"https://issues.chromium.org/issues/503392431"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:22:37Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11191"],"risk_score":2.9,"exploitability":"0.5","weighted_severity":"5.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-k966-guv9-wfg8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82038?format=json","vulnerability_id":"VCID-kav6-euze-a7c9","summary":"Use after free in Fonts in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11000.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11000.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11000","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25099","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24898","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25097","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25114","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11000"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11000","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11000"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485048","reference_id":"2485048","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485048"},{"reference_url":"https://issues.chromium.org/issues/492374380","reference_id":"492374380","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:25:22Z/"}],"url":"https://issues.chromium.org/issues/492374380"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:25:22Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11000"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kav6-euze-a7c9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82477?format=json","vulnerability_id":"VCID-kavj-8p87-9ka7","summary":"Use after free in Chromoting in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via malicious network traffic. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11116.json","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11116.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11116","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25099","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24898","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25097","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25114","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11116"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11116","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11116"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484954","reference_id":"2484954","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484954"},{"reference_url":"https://issues.chromium.org/issues/501376612","reference_id":"501376612","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T03:22:10Z/"}],"url":"https://issues.chromium.org/issues/501376612"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T03:22:10Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11116"],"risk_score":4.4,"exploitability":"0.5","weighted_severity":"8.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kavj-8p87-9ka7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76516?format=json","vulnerability_id":"VCID-kbj3-1ndw-9qep","summary":"Use after free in Autofill in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10951.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10951.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10951","reference_id":"","reference_type":"","scores":[{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30392","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30191","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30387","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30404","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10951"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10951","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10951"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485633","reference_id":"2485633","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485633"},{"reference_url":"https://issues.chromium.org/issues/505191883","reference_id":"505191883","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T19:12:18Z/"}],"url":"https://issues.chromium.org/issues/505191883"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T19:12:18Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10951"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kbj3-1ndw-9qep"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82422?format=json","vulnerability_id":"VCID-kd2n-8a87-muba","summary":"Script injection in Accessibility in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to inject arbitrary scripts or HTML (UXSS) via a crafted Chrome Extension. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11157.json","reference_id":"","reference_type":"","scores":[{"value":"7.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11157.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11157","reference_id":"","reference_type":"","scores":[{"value":"0.00014","scoring_system":"epss","scoring_elements":"0.02782","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00014","scoring_system":"epss","scoring_elements":"0.02779","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00014","scoring_system":"epss","scoring_elements":"0.02788","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00014","scoring_system":"epss","scoring_elements":"0.02772","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11157"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11157","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11157"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485065","reference_id":"2485065","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485065"},{"reference_url":"https://issues.chromium.org/issues/501823385","reference_id":"501823385","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T17:43:20Z/"}],"url":"https://issues.chromium.org/issues/501823385"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T17:43:20Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11157"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kd2n-8a87-muba"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82256?format=json","vulnerability_id":"VCID-kd9w-6bum-xqc5","summary":"Inappropriate implementation in ORB in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass site isolation via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11179.json","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11179.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11179","reference_id":"","reference_type":"","scores":[{"value":"0.00031","scoring_system":"epss","scoring_elements":"0.09432","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00031","scoring_system":"epss","scoring_elements":"0.09397","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00031","scoring_system":"epss","scoring_elements":"0.09451","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00031","scoring_system":"epss","scoring_elements":"0.09444","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11179"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11179","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11179"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485156","reference_id":"2485156","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485156"},{"reference_url":"https://issues.chromium.org/issues/502615170","reference_id":"502615170","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T16:35:04Z/"}],"url":"https://issues.chromium.org/issues/502615170"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T16:35:04Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11179"],"risk_score":3.7,"exploitability":"0.5","weighted_severity":"7.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kd9w-6bum-xqc5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82229?format=json","vulnerability_id":"VCID-kehx-zfec-xqhj","summary":"Inappropriate implementation in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11086.json","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11086.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11086","reference_id":"","reference_type":"","scores":[{"value":"0.00125","scoring_system":"epss","scoring_elements":"0.31503","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00125","scoring_system":"epss","scoring_elements":"0.31308","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00125","scoring_system":"epss","scoring_elements":"0.31501","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00125","scoring_system":"epss","scoring_elements":"0.31521","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11086"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11086","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11086"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484959","reference_id":"2484959","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484959"},{"reference_url":"https://issues.chromium.org/issues/500140111","reference_id":"500140111","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:40:21Z/"}],"url":"https://issues.chromium.org/issues/500140111"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:40:21Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11086"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kehx-zfec-xqhj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82250?format=json","vulnerability_id":"VCID-kfd6-8u9g-5kex","summary":"Inappropriate implementation in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11250.json","reference_id":"","reference_type":"","scores":[{"value":"3.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11250.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11250","reference_id":"","reference_type":"","scores":[{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22495","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22306","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.225","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22513","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11250"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11250","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11250"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485040","reference_id":"2485040","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485040"},{"reference_url":"https://issues.chromium.org/issues/498281224","reference_id":"498281224","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T11:45:10Z/"}],"url":"https://issues.chromium.org/issues/498281224"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T11:45:10Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11250"],"risk_score":2.9,"exploitability":"0.5","weighted_severity":"5.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kfd6-8u9g-5kex"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82421?format=json","vulnerability_id":"VCID-kfza-w6ds-cqd5","summary":"Inappropriate implementation in GPU in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11119.json","reference_id":"","reference_type":"","scores":[{"value":"8.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11119.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11119","reference_id":"","reference_type":"","scores":[{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28443","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28231","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28428","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28452","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11119"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11119","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11119"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485130","reference_id":"2485130","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485130"},{"reference_url":"https://issues.chromium.org/issues/501461853","reference_id":"501461853","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T03:23:42Z/"}],"url":"https://issues.chromium.org/issues/501461853"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T03:23:42Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11119"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kfza-w6ds-cqd5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82092?format=json","vulnerability_id":"VCID-khz7-am3p-yfe1","summary":"Inappropriate implementation in XML in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via a crafted XML file. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11169.json","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11169.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11169","reference_id":"","reference_type":"","scores":[{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09675","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09636","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09685","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11169"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11169","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11169"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485274","reference_id":"2485274","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485274"},{"reference_url":"https://issues.chromium.org/issues/502285273","reference_id":"502285273","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T17:13:15Z/"}],"url":"https://issues.chromium.org/issues/502285273"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T17:13:15Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11169"],"risk_score":3.6,"exploitability":"0.5","weighted_severity":"7.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-khz7-am3p-yfe1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82004?format=json","vulnerability_id":"VCID-krja-yx5n-sqcz","summary":"Insufficient policy enforcement in Content Settings in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass discretionary access control via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11252.json","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11252.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11252","reference_id":"","reference_type":"","scores":[{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06234","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06242","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06264","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06253","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11252"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11252","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11252"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485323","reference_id":"2485323","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485323"},{"reference_url":"https://issues.chromium.org/issues/498373018","reference_id":"498373018","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T11:14:24Z/"}],"url":"https://issues.chromium.org/issues/498373018"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T11:14:24Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11252"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"4.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-krja-yx5n-sqcz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76498?format=json","vulnerability_id":"VCID-krnt-uuw6-dbe9","summary":"Integer overflow in ANGLE in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10999.json","reference_id":"","reference_type":"","scores":[{"value":"5.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10999.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10999","reference_id":"","reference_type":"","scores":[{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10866","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10842","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10901","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10897","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10999"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10999","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10999"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485042","reference_id":"2485042","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485042"},{"reference_url":"https://issues.chromium.org/issues/489369089","reference_id":"489369089","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T16:46:40Z/"}],"url":"https://issues.chromium.org/issues/489369089"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T16:46:40Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10999"],"risk_score":2.2,"exploitability":"0.5","weighted_severity":"4.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-krnt-uuw6-dbe9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76420?format=json","vulnerability_id":"VCID-ksb4-ched-zbhv","summary":"Use after free in Core in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10915.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10915.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10915","reference_id":"","reference_type":"","scores":[{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30392","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30191","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30387","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30404","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10915"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10915","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10915"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485630","reference_id":"2485630","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485630"},{"reference_url":"https://issues.chromium.org/issues/497612174","reference_id":"497612174","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:39:12Z/"}],"url":"https://issues.chromium.org/issues/497612174"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:39:12Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10915"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ksb4-ched-zbhv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82207?format=json","vulnerability_id":"VCID-ku67-zbpq-b7gw","summary":"Out of bounds read in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11006.json","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11006.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11006","reference_id":"","reference_type":"","scores":[{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10866","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10842","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10901","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10897","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11006"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11006","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11006"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485216","reference_id":"2485216","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485216"},{"reference_url":"https://issues.chromium.org/issues/495489174","reference_id":"495489174","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T17:07:23Z/"}],"url":"https://issues.chromium.org/issues/495489174"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T17:07:23Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11006"],"risk_score":3.6,"exploitability":"0.5","weighted_severity":"7.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ku67-zbpq-b7gw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82400?format=json","vulnerability_id":"VCID-kur8-wr38-vyd7","summary":"Inappropriate implementation in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11091.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11091.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11091","reference_id":"","reference_type":"","scores":[{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22495","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22306","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.225","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22513","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11091"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11091","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11091"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485189","reference_id":"2485189","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485189"},{"reference_url":"https://issues.chromium.org/issues/500162791","reference_id":"500162791","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T14:00:49Z/"}],"url":"https://issues.chromium.org/issues/500162791"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T14:00:49Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11091"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kur8-wr38-vyd7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82496?format=json","vulnerability_id":"VCID-kwkk-bhxu-pyd4","summary":"Insufficient policy enforcement in Web Bluetooth in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11236.json","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11236.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11236","reference_id":"","reference_type":"","scores":[{"value":"0.00143","scoring_system":"epss","scoring_elements":"0.34417","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00143","scoring_system":"epss","scoring_elements":"0.34235","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00143","scoring_system":"epss","scoring_elements":"0.34413","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00143","scoring_system":"epss","scoring_elements":"0.34438","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11236"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11236","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11236"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485348","reference_id":"2485348","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485348"},{"reference_url":"https://issues.chromium.org/issues/496427030","reference_id":"496427030","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T13:24:57Z/"}],"url":"https://issues.chromium.org/issues/496427030"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T13:24:57Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11236"],"risk_score":3.7,"exploitability":"0.5","weighted_severity":"7.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kwkk-bhxu-pyd4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82423?format=json","vulnerability_id":"VCID-kxsq-eszw-tudh","summary":"Insufficient validation of untrusted input in Cast in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11069.json","reference_id":"","reference_type":"","scores":[{"value":"9.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11069.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11069","reference_id":"","reference_type":"","scores":[{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09752","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09711","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09762","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09764","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11069"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11069","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11069"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484996","reference_id":"2484996","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484996"},{"reference_url":"https://issues.chromium.org/issues/499213367","reference_id":"499213367","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T16:52:48Z/"}],"url":"https://issues.chromium.org/issues/499213367"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T16:52:48Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11069"],"risk_score":4.2,"exploitability":"0.5","weighted_severity":"8.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kxsq-eszw-tudh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76822?format=json","vulnerability_id":"VCID-kygq-k22j-mbep","summary":"Use after free in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10958.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10958.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10958","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25099","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24898","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25097","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25114","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10958"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10958","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10958"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485635","reference_id":"2485635","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485635"},{"reference_url":"https://issues.chromium.org/issues/507251069","reference_id":"507251069","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:25:43Z/"}],"url":"https://issues.chromium.org/issues/507251069"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:25:43Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10958"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kygq-k22j-mbep"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76469?format=json","vulnerability_id":"VCID-m1df-macm-8fg6","summary":"Stack buffer overflow in GPU in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10898.json","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10898.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10898","reference_id":"","reference_type":"","scores":[{"value":"0.00079","scoring_system":"epss","scoring_elements":"0.23674","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00079","scoring_system":"epss","scoring_elements":"0.23488","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00079","scoring_system":"epss","scoring_elements":"0.23684","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00079","scoring_system":"epss","scoring_elements":"0.23694","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10898"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10898","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10898"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485088","reference_id":"2485088","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485088"},{"reference_url":"https://issues.chromium.org/issues/513946753","reference_id":"513946753","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:39:36Z/"}],"url":"https://issues.chromium.org/issues/513946753"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:39:36Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10898"],"risk_score":3.7,"exploitability":"0.5","weighted_severity":"7.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-m1df-macm-8fg6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82096?format=json","vulnerability_id":"VCID-m2fg-gfqw-wqds","summary":"Type Confusion in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11061.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11061.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11061","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25108","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24906","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25105","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25122","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11061"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11061","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11061"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485306","reference_id":"2485306","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485306"},{"reference_url":"https://issues.chromium.org/issues/499031961","reference_id":"499031961","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T18:46:16Z/"}],"url":"https://issues.chromium.org/issues/499031961"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T18:46:16Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11061"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-m2fg-gfqw-wqds"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/81999?format=json","vulnerability_id":"VCID-m45g-ddfh-xkeg","summary":"Insufficient validation of untrusted input in GPU in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11021.json","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11021.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11021","reference_id":"","reference_type":"","scores":[{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.3823","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.38041","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.38218","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.38243","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11021"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11021","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11021"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484946","reference_id":"2484946","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484946"},{"reference_url":"https://issues.chromium.org/issues/497487755","reference_id":"497487755","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-08T15:04:54Z/"}],"url":"https://issues.chromium.org/issues/497487755"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-08T15:04:54Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11021"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-m45g-ddfh-xkeg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82080?format=json","vulnerability_id":"VCID-m4a8-jfzt-4bcc","summary":"Inappropriate implementation in Enterprise in Google Chrome prior to 149.0.7827.53 allowed a local attacker to perform privilege escalation via physical access to the device. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11229.json","reference_id":"","reference_type":"","scores":[{"value":"6.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11229.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11229","reference_id":"","reference_type":"","scores":[{"value":"0.0001","scoring_system":"epss","scoring_elements":"0.0128","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0001","scoring_system":"epss","scoring_elements":"0.01274","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0001","scoring_system":"epss","scoring_elements":"0.0127","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0001","scoring_system":"epss","scoring_elements":"0.01277","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11229"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11229","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11229"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485226","reference_id":"2485226","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485226"},{"reference_url":"https://issues.chromium.org/issues/482713603","reference_id":"482713603","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T12:09:40Z/"}],"url":"https://issues.chromium.org/issues/482713603"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T12:09:40Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11229"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-m4a8-jfzt-4bcc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82484?format=json","vulnerability_id":"VCID-m4ac-gaqq-rkh7","summary":"Incorrect security UI in Tab Hover Cards in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform domain spoofing via a crafted domain name. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11227.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11227.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11227","reference_id":"","reference_type":"","scores":[{"value":"0.00024","scoring_system":"epss","scoring_elements":"0.07122","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00024","scoring_system":"epss","scoring_elements":"0.07099","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00024","scoring_system":"epss","scoring_elements":"0.07132","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00024","scoring_system":"epss","scoring_elements":"0.07127","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11227"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11227","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11227"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485110","reference_id":"2485110","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485110"},{"reference_url":"https://issues.chromium.org/issues/448421954","reference_id":"448421954","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T13:46:05Z/"}],"url":"https://issues.chromium.org/issues/448421954"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T13:46:05Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11227"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-m4ac-gaqq-rkh7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82498?format=json","vulnerability_id":"VCID-ma3h-2tkw-u3c8","summary":"Insufficient validation of untrusted input in Network in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11016.json","reference_id":"","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11016.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11016","reference_id":"","reference_type":"","scores":[{"value":"0.00051","scoring_system":"epss","scoring_elements":"0.16389","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00051","scoring_system":"epss","scoring_elements":"0.16265","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00051","scoring_system":"epss","scoring_elements":"0.16408","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00051","scoring_system":"epss","scoring_elements":"0.16419","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11016"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11016","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11016"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484950","reference_id":"2484950","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484950"},{"reference_url":"https://issues.chromium.org/issues/497278395","reference_id":"497278395","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T14:57:07Z/"}],"url":"https://issues.chromium.org/issues/497278395"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T14:57:07Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11016"],"risk_score":3.9,"exploitability":"0.5","weighted_severity":"7.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ma3h-2tkw-u3c8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82298?format=json","vulnerability_id":"VCID-meup-j62y-x7h7","summary":"Integer overflow in ANGLE in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11044.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11044.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11044","reference_id":"","reference_type":"","scores":[{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.0914","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09095","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09152","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11044"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11044","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11044"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485217","reference_id":"2485217","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485217"},{"reference_url":"https://issues.chromium.org/issues/498724803","reference_id":"498724803","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:09:24Z/"}],"url":"https://issues.chromium.org/issues/498724803"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:09:24Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11044"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-meup-j62y-x7h7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76479?format=json","vulnerability_id":"VCID-mfmq-171u-nfdy","summary":"Use after free in GFX in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10891.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10891.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10891","reference_id":"","reference_type":"","scores":[{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30392","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30191","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30387","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30404","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10891"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10891","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10891"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485242","reference_id":"2485242","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485242"},{"reference_url":"https://issues.chromium.org/issues/513160681","reference_id":"513160681","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:50:53Z/"}],"url":"https://issues.chromium.org/issues/513160681"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:50:53Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10891"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mfmq-171u-nfdy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82495?format=json","vulnerability_id":"VCID-mgb7-s6r3-ybg3","summary":"Use after free in WebShare in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11010.json","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11010.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11010","reference_id":"","reference_type":"","scores":[{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.2885","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.28636","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.28836","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00108","scoring_system":"epss","scoring_elements":"0.28861","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11010"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11010","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11010"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485135","reference_id":"2485135","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485135"},{"reference_url":"https://issues.chromium.org/issues/496266444","reference_id":"496266444","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T17:17:34Z/"}],"url":"https://issues.chromium.org/issues/496266444"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T17:17:34Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11010"],"risk_score":3.7,"exploitability":"0.5","weighted_severity":"7.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mgb7-s6r3-ybg3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76794?format=json","vulnerability_id":"VCID-mj24-cyyw-wkdx","summary":"Integer overflow in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a malicious file. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10986.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10986.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10986","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25099","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24898","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25097","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25114","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10986"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10986","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10986"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485035","reference_id":"2485035","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485035"},{"reference_url":"https://issues.chromium.org/issues/514744613","reference_id":"514744613","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:50:30Z/"}],"url":"https://issues.chromium.org/issues/514744613"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:50:30Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10986"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mj24-cyyw-wkdx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76853?format=json","vulnerability_id":"VCID-mp5f-ptdk-97cs","summary":"Insufficient policy enforcement in Autofill in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10950.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10950.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10950","reference_id":"","reference_type":"","scores":[{"value":"0.00046","scoring_system":"epss","scoring_elements":"0.14631","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00046","scoring_system":"epss","scoring_elements":"0.14539","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00046","scoring_system":"epss","scoring_elements":"0.14658","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00046","scoring_system":"epss","scoring_elements":"0.14657","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10950"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10950","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10950"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485632","reference_id":"2485632","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485632"},{"reference_url":"https://issues.chromium.org/issues/505123022","reference_id":"505123022","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:13:30Z/"}],"url":"https://issues.chromium.org/issues/505123022"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:13:30Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10950"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mp5f-ptdk-97cs"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82257?format=json","vulnerability_id":"VCID-myvn-38d8-97d6","summary":"Insufficient policy enforcement in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11178.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11178.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11178","reference_id":"","reference_type":"","scores":[{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.01915","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.019","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.01903","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.01906","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11178"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11178","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11178"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485241","reference_id":"2485241","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485241"},{"reference_url":"https://issues.chromium.org/issues/502501810","reference_id":"502501810","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T16:39:28Z/"}],"url":"https://issues.chromium.org/issues/502501810"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T16:39:28Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11178"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-myvn-38d8-97d6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82519?format=json","vulnerability_id":"VCID-mzcx-n2sk-qber","summary":"Insufficient validation of untrusted input in Downloads in Google Chrome on Mac prior to 149.0.7827.53 allowed a local attacker to potentially perform a sandbox escape via a crafted AppleScript command. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11158.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11158.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11158","reference_id":"","reference_type":"","scores":[{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01447","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01428","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01431","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01439","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11158"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11158","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11158"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485058","reference_id":"2485058","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485058"},{"reference_url":"https://issues.chromium.org/issues/501844153","reference_id":"501844153","reference_type":"","scores":[{"value":"8.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T17:41:24Z/"}],"url":"https://issues.chromium.org/issues/501844153"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T17:41:24Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11158"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mzcx-n2sk-qber"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82225?format=json","vulnerability_id":"VCID-n4xj-hap9-wyaq","summary":"Uninitialized Use in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11057.json","reference_id":"","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11057.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11057","reference_id":"","reference_type":"","scores":[{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09277","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09233","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09285","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09287","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11057"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11057","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11057"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485036","reference_id":"2485036","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485036"},{"reference_url":"https://issues.chromium.org/issues/498951946","reference_id":"498951946","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T18:59:35Z/"}],"url":"https://issues.chromium.org/issues/498951946"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T18:59:35Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11057"],"risk_score":2.1,"exploitability":"0.5","weighted_severity":"4.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-n4xj-hap9-wyaq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82029?format=json","vulnerability_id":"VCID-n5cb-pgd1-e7dz","summary":"Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to perform privilege escalation via a crafted XML file. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11035.json","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11035.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11035","reference_id":"","reference_type":"","scores":[{"value":"8e-05","scoring_system":"epss","scoring_elements":"0.00698","published_at":"2026-06-14T12:55:00Z"},{"value":"8e-05","scoring_system":"epss","scoring_elements":"0.00695","published_at":"2026-06-11T12:55:00Z"},{"value":"8e-05","scoring_system":"epss","scoring_elements":"0.00693","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11035"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11035","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11035"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485063","reference_id":"2485063","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485063"},{"reference_url":"https://issues.chromium.org/issues/497936421","reference_id":"497936421","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T18:59:22Z/"}],"url":"https://issues.chromium.org/issues/497936421"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T18:59:22Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11035"],"risk_score":3.2,"exploitability":"0.5","weighted_severity":"6.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-n5cb-pgd1-e7dz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82013?format=json","vulnerability_id":"VCID-n9nn-abwm-jfbk","summary":"Inappropriate implementation in DataTransfer in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11161.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11161.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11161","reference_id":"","reference_type":"","scores":[{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02326","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02333","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02331","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11161"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11161","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11161"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485350","reference_id":"2485350","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485350"},{"reference_url":"https://issues.chromium.org/issues/501920294","reference_id":"501920294","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T17:32:10Z/"}],"url":"https://issues.chromium.org/issues/501920294"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T17:32:10Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11161"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-n9nn-abwm-jfbk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82514?format=json","vulnerability_id":"VCID-nfhe-kjmv-57c5","summary":"Use after free in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted video file. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11144.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11144.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11144","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25099","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24898","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25097","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25114","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11144"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11144","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11144"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485258","reference_id":"2485258","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485258"},{"reference_url":"https://issues.chromium.org/issues/501676175","reference_id":"501676175","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T03:34:04Z/"}],"url":"https://issues.chromium.org/issues/501676175"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T03:34:04Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11144"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nfhe-kjmv-57c5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82487?format=json","vulnerability_id":"VCID-nfsw-24pm-aqba","summary":"Insufficient validation of untrusted input in WebNN in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11063.json","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11063.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11063","reference_id":"","reference_type":"","scores":[{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.2707","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.2687","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.27071","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.27086","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11063"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11063","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11063"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485347","reference_id":"2485347","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485347"},{"reference_url":"https://issues.chromium.org/issues/499051067","reference_id":"499051067","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T18:26:10Z/"}],"url":"https://issues.chromium.org/issues/499051067"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T18:26:10Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11063"],"risk_score":3.7,"exploitability":"0.5","weighted_severity":"7.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nfsw-24pm-aqba"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76571?format=json","vulnerability_id":"VCID-nfwd-s9h9-xyhw","summary":"Use after free in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10943.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10943.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10943","reference_id":"","reference_type":"","scores":[{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.31174","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.3098","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.31176","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.31191","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10943"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10943","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10943"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484969","reference_id":"2484969","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484969"},{"reference_url":"https://issues.chromium.org/issues/504194151","reference_id":"504194151","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:26:12Z/"}],"url":"https://issues.chromium.org/issues/504194151"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:26:12Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10943"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nfwd-s9h9-xyhw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76535?format=json","vulnerability_id":"VCID-njah-5v2e-n3et","summary":"Inappropriate implementation in Input in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10938.json","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10938.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10938","reference_id":"","reference_type":"","scores":[{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08551","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08516","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08554","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08556","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10938"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10938","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10938"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485296","reference_id":"2485296","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485296"},{"reference_url":"https://issues.chromium.org/issues/502681591","reference_id":"502681591","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T19:19:44Z/"}],"url":"https://issues.chromium.org/issues/502681591"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T19:19:44Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10938"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"6.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-njah-5v2e-n3et"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82288?format=json","vulnerability_id":"VCID-njvh-xzg3-ffcc","summary":"Insufficient validation of untrusted input in Chromoting in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the network process to potentially perform a sandbox escape via malicious network traffic. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11070.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11070.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11070","reference_id":"","reference_type":"","scores":[{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28443","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28231","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28428","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28452","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11070"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11070","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11070"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485090","reference_id":"2485090","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485090"},{"reference_url":"https://issues.chromium.org/issues/499225384","reference_id":"499225384","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T16:52:00Z/"}],"url":"https://issues.chromium.org/issues/499225384"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T16:52:00Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11070"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-njvh-xzg3-ffcc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76455?format=json","vulnerability_id":"VCID-nuwu-1qct-27ax","summary":"Insufficient validation of untrusted input in Extensions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10912.json","reference_id":"","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10912.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10912","reference_id":"","reference_type":"","scores":[{"value":"0.00051","scoring_system":"epss","scoring_elements":"0.16389","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00051","scoring_system":"epss","scoring_elements":"0.16265","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00051","scoring_system":"epss","scoring_elements":"0.16408","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00051","scoring_system":"epss","scoring_elements":"0.16419","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10912"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10912","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10912"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485273","reference_id":"2485273","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485273"},{"reference_url":"https://issues.chromium.org/issues/496614553","reference_id":"496614553","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:36:24Z/"}],"url":"https://issues.chromium.org/issues/496614553"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:36:24Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10912"],"risk_score":3.9,"exploitability":"0.5","weighted_severity":"7.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nuwu-1qct-27ax"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76537?format=json","vulnerability_id":"VCID-nvns-xj9d-43fe","summary":"Insufficient validation of untrusted input in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass same origin policy via malicious network traffic. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10922.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10922.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10922","reference_id":"","reference_type":"","scores":[{"value":"0.00074","scoring_system":"epss","scoring_elements":"0.22557","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00074","scoring_system":"epss","scoring_elements":"0.22368","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00074","scoring_system":"epss","scoring_elements":"0.22562","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00074","scoring_system":"epss","scoring_elements":"0.22575","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10922"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10922","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10922"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485244","reference_id":"2485244","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485244"},{"reference_url":"https://issues.chromium.org/issues/499164652","reference_id":"499164652","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:04:10Z/"}],"url":"https://issues.chromium.org/issues/499164652"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:04:10Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10922"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nvns-xj9d-43fe"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76641?format=json","vulnerability_id":"VCID-p9xp-snz5-vufy","summary":"Use after free in Input in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10959.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10959.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10959","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25099","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24898","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25097","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25114","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10959"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10959","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10959"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485067","reference_id":"2485067","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485067"},{"reference_url":"https://issues.chromium.org/issues/507258648","reference_id":"507258648","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:25:39Z/"}],"url":"https://issues.chromium.org/issues/507258648"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:25:39Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10959"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-p9xp-snz5-vufy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82531?format=json","vulnerability_id":"VCID-patn-9s5j-rqg9","summary":"Insufficient policy enforcement in Password Manager in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11011.json","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11011.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11011","reference_id":"","reference_type":"","scores":[{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11117","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11089","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11155","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11148","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11011"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11011","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11011"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484986","reference_id":"2484986","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484986"},{"reference_url":"https://issues.chromium.org/issues/496702621","reference_id":"496702621","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T16:00:04Z/"}],"url":"https://issues.chromium.org/issues/496702621"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T16:00:04Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11011"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"6.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-patn-9s5j-rqg9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82255?format=json","vulnerability_id":"VCID-pdw2-2qjw-9kan","summary":"Inappropriate implementation in Payments in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11148.json","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11148.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11148","reference_id":"","reference_type":"","scores":[{"value":"8e-05","scoring_system":"epss","scoring_elements":"0.00773","published_at":"2026-06-14T12:55:00Z"},{"value":"8e-05","scoring_system":"epss","scoring_elements":"0.00771","published_at":"2026-06-13T12:55:00Z"},{"value":"8e-05","scoring_system":"epss","scoring_elements":"0.00769","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11148"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11148","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11148"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485131","reference_id":"2485131","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485131"},{"reference_url":"https://issues.chromium.org/issues/501738451","reference_id":"501738451","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:28:58Z/"}],"url":"https://issues.chromium.org/issues/501738451"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:28:58Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11148"],"risk_score":2.9,"exploitability":"0.5","weighted_severity":"5.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pdw2-2qjw-9kan"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76459?format=json","vulnerability_id":"VCID-peb4-5gwp-1uge","summary":"Type Confusion in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10883.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10883.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10883","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25108","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24906","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25105","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25122","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10883"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10883","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10883"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485237","reference_id":"2485237","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485237"},{"reference_url":"https://issues.chromium.org/issues/503768143","reference_id":"503768143","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:50:58Z/"}],"url":"https://issues.chromium.org/issues/503768143"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:50:58Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10883"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-peb4-5gwp-1uge"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76851?format=json","vulnerability_id":"VCID-pehh-smtz-sfbk","summary":"Insufficient policy enforcement in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to bypass discretionary access control via a crafted Chrome Extension. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10997.json","reference_id":"","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10997.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10997","reference_id":"","reference_type":"","scores":[{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.03748","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.03726","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.03745","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.03735","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10997"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10997","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10997"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485098","reference_id":"2485098","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485098"},{"reference_url":"https://issues.chromium.org/issues/464217867","reference_id":"464217867","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T16:29:00Z/"}],"url":"https://issues.chromium.org/issues/464217867"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T16:29:00Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10997"],"risk_score":3.2,"exploitability":"0.5","weighted_severity":"6.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pehh-smtz-sfbk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82045?format=json","vulnerability_id":"VCID-pf9f-fw3s-b7dz","summary":"Out of bounds read in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11279.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11279.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11279","reference_id":"","reference_type":"","scores":[{"value":"0.00102","scoring_system":"epss","scoring_elements":"0.27781","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00102","scoring_system":"epss","scoring_elements":"0.27564","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00102","scoring_system":"epss","scoring_elements":"0.27766","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00102","scoring_system":"epss","scoring_elements":"0.27791","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11279"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11279","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11279"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485179","reference_id":"2485179","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485179"},{"reference_url":"https://issues.chromium.org/issues/501878477","reference_id":"501878477","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:40:08Z/"}],"url":"https://issues.chromium.org/issues/501878477"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:40:08Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11279"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pf9f-fw3s-b7dz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76547?format=json","vulnerability_id":"VCID-pjmb-244c-akhh","summary":"Use after free in Printing in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10894.json","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10894.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10894","reference_id":"","reference_type":"","scores":[{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30392","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30191","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30387","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30404","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10894"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10894","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10894"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484961","reference_id":"2484961","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484961"},{"reference_url":"https://issues.chromium.org/issues/513445101","reference_id":"513445101","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:39:41Z/"}],"url":"https://issues.chromium.org/issues/513445101"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:39:41Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10894"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pjmb-244c-akhh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82317?format=json","vulnerability_id":"VCID-pqrv-2hej-y3bp","summary":"Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to bypass discretionary access control via a crafted Chrome Extension. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11190.json","reference_id":"","reference_type":"","scores":[{"value":"3.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11190.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11190","reference_id":"","reference_type":"","scores":[{"value":"0.00017","scoring_system":"epss","scoring_elements":"0.04223","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00017","scoring_system":"epss","scoring_elements":"0.04222","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00017","scoring_system":"epss","scoring_elements":"0.04233","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00017","scoring_system":"epss","scoring_elements":"0.0422","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11190"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11190","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11190"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485121","reference_id":"2485121","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485121"},{"reference_url":"https://issues.chromium.org/issues/503375371","reference_id":"503375371","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:14:22Z/"}],"url":"https://issues.chromium.org/issues/503375371"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:14:22Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11190"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pqrv-2hej-y3bp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82108?format=json","vulnerability_id":"VCID-pzpk-xbas-v3bp","summary":"Insufficient validation of untrusted input in Reader Mode in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to bypass navigation restrictions via a malicious file. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11297.json","reference_id":"","reference_type":"","scores":[{"value":"2.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11297.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11297","reference_id":"","reference_type":"","scores":[{"value":"0.0001","scoring_system":"epss","scoring_elements":"0.01197","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0001","scoring_system":"epss","scoring_elements":"0.0119","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0001","scoring_system":"epss","scoring_elements":"0.01188","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0001","scoring_system":"epss","scoring_elements":"0.01193","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11297"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11297","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11297"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485010","reference_id":"2485010","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485010"},{"reference_url":"https://issues.chromium.org/issues/502502017","reference_id":"502502017","reference_type":"","scores":[{"value":"7.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:27:23Z/"}],"url":"https://issues.chromium.org/issues/502502017"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"7.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:27:23Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11297"],"risk_score":2.3,"exploitability":"0.5","weighted_severity":"4.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pzpk-xbas-v3bp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82192?format=json","vulnerability_id":"VCID-q1zf-4e91-rbfe","summary":"Uninitialized Use in Audio in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11141.json","reference_id":"","reference_type":"","scores":[{"value":"5.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11141.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11141","reference_id":"","reference_type":"","scores":[{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09277","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09233","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09285","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09287","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11141"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11141","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11141"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484978","reference_id":"2484978","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484978"},{"reference_url":"https://issues.chromium.org/issues/501667839","reference_id":"501667839","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:38:14Z/"}],"url":"https://issues.chromium.org/issues/501667839"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:38:14Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11141"],"risk_score":2.2,"exploitability":"0.5","weighted_severity":"4.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-q1zf-4e91-rbfe"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82244?format=json","vulnerability_id":"VCID-q5fx-twwb-gydx","summary":"Incorrect security UI in File Input in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11216.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11216.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11216","reference_id":"","reference_type":"","scores":[{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06151","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06152","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06174","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06165","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11216"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11216","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11216"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485320","reference_id":"2485320","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485320"},{"reference_url":"https://issues.chromium.org/issues/474583539","reference_id":"474583539","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:22:56Z/"}],"url":"https://issues.chromium.org/issues/474583539"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:22:56Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11216"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-q5fx-twwb-gydx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76597?format=json","vulnerability_id":"VCID-q6r9-44cq-3fae","summary":"Use after free in WebXR in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10982.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10982.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10982","reference_id":"","reference_type":"","scores":[{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23165","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.2298","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23176","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23187","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10982"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10982","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10982"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485314","reference_id":"2485314","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485314"},{"reference_url":"https://issues.chromium.org/issues/513774197","reference_id":"513774197","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:25:30Z/"}],"url":"https://issues.chromium.org/issues/513774197"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:25:30Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10982"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-q6r9-44cq-3fae"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82247?format=json","vulnerability_id":"VCID-qb2j-qx48-9fdz","summary":"Inappropriate implementation in Payments in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to perform domain spoofing via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11019.json","reference_id":"","reference_type":"","scores":[{"value":"5.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11019.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11019","reference_id":"","reference_type":"","scores":[{"value":"0.00027","scoring_system":"epss","scoring_elements":"0.08313","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00027","scoring_system":"epss","scoring_elements":"0.08275","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00027","scoring_system":"epss","scoring_elements":"0.08314","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11019"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11019","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11019"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485228","reference_id":"2485228","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485228"},{"reference_url":"https://issues.chromium.org/issues/497344640","reference_id":"497344640","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T16:14:20Z/"}],"url":"https://issues.chromium.org/issues/497344640"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T16:14:20Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11019"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qb2j-qx48-9fdz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82348?format=json","vulnerability_id":"VCID-qc94-zy4x-vkh5","summary":"Insufficient policy enforcement in PreviewTab in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass same origin policy via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11226.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11226.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11226","reference_id":"","reference_type":"","scores":[{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01498","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01481","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01484","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01489","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11226"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11226","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11226"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485095","reference_id":"2485095","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485095"},{"reference_url":"https://issues.chromium.org/issues/385662278","reference_id":"385662278","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T13:49:54Z/"}],"url":"https://issues.chromium.org/issues/385662278"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T13:49:54Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11226"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qc94-zy4x-vkh5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82037?format=json","vulnerability_id":"VCID-qfn9-1jgk-afhq","summary":"Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11113.json","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11113.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11113","reference_id":"","reference_type":"","scores":[{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25261","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25058","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25256","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25275","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11113"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11113","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11113"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484968","reference_id":"2484968","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484968"},{"reference_url":"https://issues.chromium.org/issues/500560764","reference_id":"500560764","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T03:14:51Z/"}],"url":"https://issues.chromium.org/issues/500560764"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T03:14:51Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11113"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qfn9-1jgk-afhq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82260?format=json","vulnerability_id":"VCID-qfxd-bhf9-hkef","summary":"Insufficient policy enforcement in Navigation in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11287.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11287.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11287","reference_id":"","reference_type":"","scores":[{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07715","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.0769","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07726","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.0772","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11287"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11287","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11287"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485133","reference_id":"2485133","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485133"},{"reference_url":"https://issues.chromium.org/issues/502173136","reference_id":"502173136","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:09:54Z/"}],"url":"https://issues.chromium.org/issues/502173136"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:09:54Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11287"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qfxd-bhf9-hkef"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82406?format=json","vulnerability_id":"VCID-qgs9-uj9v-vyav","summary":"Inappropriate implementation in DevTools in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information from process memory via a crafted Chrome Extension. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11238.json","reference_id":"","reference_type":"","scores":[{"value":"5.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11238.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11238","reference_id":"","reference_type":"","scores":[{"value":"0.00019","scoring_system":"epss","scoring_elements":"0.05559","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00019","scoring_system":"epss","scoring_elements":"0.05548","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00019","scoring_system":"epss","scoring_elements":"0.05573","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00019","scoring_system":"epss","scoring_elements":"0.05567","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11238"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11238","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11238"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485251","reference_id":"2485251","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485251"},{"reference_url":"https://issues.chromium.org/issues/496705691","reference_id":"496705691","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T12:48:10Z/"}],"url":"https://issues.chromium.org/issues/496705691"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T12:48:10Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11238"],"risk_score":2.2,"exploitability":"0.5","weighted_severity":"4.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qgs9-uj9v-vyav"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82402?format=json","vulnerability_id":"VCID-qgxm-k9uj-r7dn","summary":"Uninitialized Use in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11039.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11039.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11039","reference_id":"","reference_type":"","scores":[{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09277","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09233","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09285","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09287","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11039"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11039","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11039"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485071","reference_id":"2485071","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485071"},{"reference_url":"https://issues.chromium.org/issues/498204112","reference_id":"498204112","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:05:29Z/"}],"url":"https://issues.chromium.org/issues/498204112"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:05:29Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11039"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qgxm-k9uj-r7dn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76506?format=json","vulnerability_id":"VCID-qm5b-1rrn-6yg4","summary":"Use after free in UI in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10932.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10932.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10932","reference_id":"","reference_type":"","scores":[{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22495","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22306","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.225","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22513","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10932"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10932","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10932"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485163","reference_id":"2485163","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485163"},{"reference_url":"https://issues.chromium.org/issues/501335606","reference_id":"501335606","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:50:43Z/"}],"url":"https://issues.chromium.org/issues/501335606"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:50:43Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10932"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qm5b-1rrn-6yg4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/81998?format=json","vulnerability_id":"VCID-qngp-9tvp-q3dq","summary":"Insufficient validation of untrusted input in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11046.json","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11046.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11046","reference_id":"","reference_type":"","scores":[{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.38224","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.38035","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.38212","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0017","scoring_system":"epss","scoring_elements":"0.38237","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11046"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11046","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11046"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485034","reference_id":"2485034","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485034"},{"reference_url":"https://issues.chromium.org/issues/498728857","reference_id":"498728857","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:40:34Z/"}],"url":"https://issues.chromium.org/issues/498728857"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:40:34Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11046"],"risk_score":3.7,"exploitability":"0.5","weighted_severity":"7.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qngp-9tvp-q3dq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76645?format=json","vulnerability_id":"VCID-qr9j-t4ak-2fa1","summary":"Out of bounds memory access in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10941.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10941.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10941","reference_id":"","reference_type":"","scores":[{"value":"0.00102","scoring_system":"epss","scoring_elements":"0.27781","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00102","scoring_system":"epss","scoring_elements":"0.27564","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00102","scoring_system":"epss","scoring_elements":"0.27766","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00102","scoring_system":"epss","scoring_elements":"0.27791","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10941"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10941","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10941"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485352","reference_id":"2485352","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485352"},{"reference_url":"https://issues.chromium.org/issues/503958940","reference_id":"503958940","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:38:46Z/"}],"url":"https://issues.chromium.org/issues/503958940"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:38:46Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10941"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qr9j-t4ak-2fa1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82204?format=json","vulnerability_id":"VCID-qryw-enwy-67gn","summary":"Use after free in WebGL in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11073.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11073.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11073","reference_id":"","reference_type":"","scores":[{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08342","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08302","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08339","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11073"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11073","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11073"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485264","reference_id":"2485264","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485264"},{"reference_url":"https://issues.chromium.org/issues/499365904","reference_id":"499365904","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:34:11Z/"}],"url":"https://issues.chromium.org/issues/499365904"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:34:11Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11073"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qryw-enwy-67gn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76542?format=json","vulnerability_id":"VCID-qsy3-ypxb-9bd1","summary":"Use after free in Glic in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10990.json","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10990.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10990","reference_id":"","reference_type":"","scores":[{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30392","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30191","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30387","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30404","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10990"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10990","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10990"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485082","reference_id":"2485082","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485082"},{"reference_url":"https://issues.chromium.org/issues/506311914","reference_id":"506311914","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T16:40:22Z/"}],"url":"https://issues.chromium.org/issues/506311914"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T16:40:22Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10990"],"risk_score":3.7,"exploitability":"0.5","weighted_severity":"7.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qsy3-ypxb-9bd1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82430?format=json","vulnerability_id":"VCID-qu9a-9cz6-8bed","summary":"Inappropriate implementation in Canvas in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11081.json","reference_id":"","reference_type":"","scores":[{"value":"9.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11081.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11081","reference_id":"","reference_type":"","scores":[{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01498","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01481","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01484","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01489","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11081"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11081","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11081"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485085","reference_id":"2485085","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485085"},{"reference_url":"https://issues.chromium.org/issues/500076131","reference_id":"500076131","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:29:38Z/"}],"url":"https://issues.chromium.org/issues/500076131"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:29:38Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11081"],"risk_score":4.2,"exploitability":"0.5","weighted_severity":"8.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qu9a-9cz6-8bed"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76622?format=json","vulnerability_id":"VCID-qvxn-pyag-bygc","summary":"Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10994.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10994.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10994","reference_id":"","reference_type":"","scores":[{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11042","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11016","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11078","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11074","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10994"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10994","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10994"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484977","reference_id":"2484977","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484977"},{"reference_url":"https://issues.chromium.org/issues/504820809","reference_id":"504820809","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T16:46:03Z/"}],"url":"https://issues.chromium.org/issues/504820809"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T16:46:03Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10994"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qvxn-pyag-bygc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76762?format=json","vulnerability_id":"VCID-r1ht-njq8-wya3","summary":"Out of bounds read in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10979.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10979.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10979","reference_id":"","reference_type":"","scores":[{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10866","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10842","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10901","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10897","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10979"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10979","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10979"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485319","reference_id":"2485319","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485319"},{"reference_url":"https://issues.chromium.org/issues/513468021","reference_id":"513468021","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:59:43Z/"}],"url":"https://issues.chromium.org/issues/513468021"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:59:43Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10979"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-r1ht-njq8-wya3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82490?format=json","vulnerability_id":"VCID-r4jb-qtek-juh4","summary":"Inappropriate implementation in UI in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11270.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11270.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11270","reference_id":"","reference_type":"","scores":[{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.0319","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03181","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03194","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03177","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11270"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11270","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11270"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485104","reference_id":"2485104","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485104"},{"reference_url":"https://issues.chromium.org/issues/501504245","reference_id":"501504245","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:35:53Z/"}],"url":"https://issues.chromium.org/issues/501504245"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:35:53Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11270"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-r4jb-qtek-juh4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82282?format=json","vulnerability_id":"VCID-raz4-g8jv-5kfv","summary":"Insufficient validation of untrusted input in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11022.json","reference_id":"","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11022.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11022","reference_id":"","reference_type":"","scores":[{"value":"0.00051","scoring_system":"epss","scoring_elements":"0.16389","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00051","scoring_system":"epss","scoring_elements":"0.16265","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00051","scoring_system":"epss","scoring_elements":"0.16408","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00051","scoring_system":"epss","scoring_elements":"0.16419","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11022"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11022","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11022"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485257","reference_id":"2485257","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485257"},{"reference_url":"https://issues.chromium.org/issues/497532918","reference_id":"497532918","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T14:47:34Z/"}],"url":"https://issues.chromium.org/issues/497532918"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T14:47:34Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11022"],"risk_score":3.9,"exploitability":"0.5","weighted_severity":"7.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-raz4-g8jv-5kfv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76616?format=json","vulnerability_id":"VCID-rcjp-1mw1-zubu","summary":"Use after free in Chromoting in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via malicious network traffic. (Chromium security severity: Critical)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10887.json","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10887.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10887","reference_id":"","reference_type":"","scores":[{"value":"0.00336","scoring_system":"epss","scoring_elements":"0.56949","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00336","scoring_system":"epss","scoring_elements":"0.56823","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00336","scoring_system":"epss","scoring_elements":"0.56944","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00336","scoring_system":"epss","scoring_elements":"0.56958","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10887"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10887","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10887"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485157","reference_id":"2485157","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485157"},{"reference_url":"https://issues.chromium.org/issues/505204771","reference_id":"505204771","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:56:27Z/"}],"url":"https://issues.chromium.org/issues/505204771"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:56:27Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10887"],"risk_score":4.4,"exploitability":"0.5","weighted_severity":"8.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rcjp-1mw1-zubu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76746?format=json","vulnerability_id":"VCID-rcs8-71gh-23he","summary":"Integer overflow in Chromecast in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10924.json","reference_id":"","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10924.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10924","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25108","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24906","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25105","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25122","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10924"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10924","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10924"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485016","reference_id":"2485016","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485016"},{"reference_url":"https://issues.chromium.org/issues/500055357","reference_id":"500055357","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:38:41Z/"}],"url":"https://issues.chromium.org/issues/500055357"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:38:41Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10924"],"risk_score":3.9,"exploitability":"0.5","weighted_severity":"7.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rcs8-71gh-23he"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82342?format=json","vulnerability_id":"VCID-rcv2-w7vw-e7dm","summary":"Insufficient policy enforcement in Paint in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11133.json","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11133.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11133","reference_id":"","reference_type":"","scores":[{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01498","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01481","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01484","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00011","scoring_system":"epss","scoring_elements":"0.01489","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11133"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11133","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11133"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485169","reference_id":"2485169","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485169"},{"reference_url":"https://issues.chromium.org/issues/501606085","reference_id":"501606085","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:51:03Z/"}],"url":"https://issues.chromium.org/issues/501606085"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:51:03Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11133"],"risk_score":3.2,"exploitability":"0.5","weighted_severity":"6.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rcv2-w7vw-e7dm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76833?format=json","vulnerability_id":"VCID-rdzp-jjjs-zqgb","summary":"Use after free in Network in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10882.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10882.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10882","reference_id":"","reference_type":"","scores":[{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33937","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33737","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33915","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10882"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10882","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10882"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485219","reference_id":"2485219","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485219"},{"reference_url":"https://issues.chromium.org/issues/503420443","reference_id":"503420443","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:26:58Z/"}],"url":"https://issues.chromium.org/issues/503420443"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:26:58Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10882"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rdzp-jjjs-zqgb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82415?format=json","vulnerability_id":"VCID-rfs4-vu8h-8ycn","summary":"Insufficient validation of untrusted input in Autofill in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via malicious network traffic. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11207.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11207.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11207","reference_id":"","reference_type":"","scores":[{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28443","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28231","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28428","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28452","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11207"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11207","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11207"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485006","reference_id":"2485006","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485006"},{"reference_url":"https://issues.chromium.org/issues/506127858","reference_id":"506127858","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T14:28:48Z/"}],"url":"https://issues.chromium.org/issues/506127858"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T14:28:48Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11207"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rfs4-vu8h-8ycn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82206?format=json","vulnerability_id":"VCID-rmrb-3w8r-7kgm","summary":"Use after free in WebSockets in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11068.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11068.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11068","reference_id":"","reference_type":"","scores":[{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23165","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.2298","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23176","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23187","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11068"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11068","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11068"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485338","reference_id":"2485338","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485338"},{"reference_url":"https://issues.chromium.org/issues/499194333","reference_id":"499194333","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:24:39Z/"}],"url":"https://issues.chromium.org/issues/499194333"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:24:39Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11068"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rmrb-3w8r-7kgm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76661?format=json","vulnerability_id":"VCID-rt3t-8xdt-6kdj","summary":"Use after free in Ozone in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10899.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10899.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10899","reference_id":"","reference_type":"","scores":[{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30392","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30191","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30387","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30404","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10899"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10899","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10899"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485129","reference_id":"2485129","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485129"},{"reference_url":"https://issues.chromium.org/issues/516653777","reference_id":"516653777","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:45:18Z/"}],"url":"https://issues.chromium.org/issues/516653777"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:45:18Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10899"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rt3t-8xdt-6kdj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76467?format=json","vulnerability_id":"VCID-rt86-qv4m-7ydc","summary":"Inappropriate implementation in Workers in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10996.json","reference_id":"","reference_type":"","scores":[{"value":"9.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10996.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10996","reference_id":"","reference_type":"","scores":[{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02183","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02172","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02176","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02173","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10996"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10996","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10996"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484945","reference_id":"2484945","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484945"},{"reference_url":"https://issues.chromium.org/issues/40051700","reference_id":"40051700","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T16:32:04Z/"}],"url":"https://issues.chromium.org/issues/40051700"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T16:32:04Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10996"],"risk_score":4.2,"exploitability":"0.5","weighted_severity":"8.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rt86-qv4m-7ydc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76671?format=json","vulnerability_id":"VCID-rypz-49pf-73e8","summary":"Use after free in FileSystem in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10931.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10931.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10931","reference_id":"","reference_type":"","scores":[{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30392","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30191","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30387","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30404","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10931"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10931","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10931"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484990","reference_id":"2484990","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484990"},{"reference_url":"https://issues.chromium.org/issues/501115599","reference_id":"501115599","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:31:32Z/"}],"url":"https://issues.chromium.org/issues/501115599"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:31:32Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10931"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rypz-49pf-73e8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82280?format=json","vulnerability_id":"VCID-s6d6-94bz-rugh","summary":"Out of bounds read in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11004.json","reference_id":"","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11004.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11004","reference_id":"","reference_type":"","scores":[{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10866","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10842","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10901","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10897","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11004"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11004","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11004"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485155","reference_id":"2485155","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485155"},{"reference_url":"https://issues.chromium.org/issues/494823889","reference_id":"494823889","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T17:07:00Z/"}],"url":"https://issues.chromium.org/issues/494823889"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T17:07:00Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11004"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-s6d6-94bz-rugh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76607?format=json","vulnerability_id":"VCID-s6dj-bkfm-pkcv","summary":"Type Confusion in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10935.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10935.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10935","reference_id":"","reference_type":"","scores":[{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25337","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25134","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25332","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25349","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10935"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10935","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10935"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485099","reference_id":"2485099","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485099"},{"reference_url":"https://issues.chromium.org/issues/501898683","reference_id":"501898683","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:38:13Z/"}],"url":"https://issues.chromium.org/issues/501898683"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:38:13Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10935"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-s6dj-bkfm-pkcv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76689?format=json","vulnerability_id":"VCID-s8kb-t6am-9kfj","summary":"Use after free in WebAuthentication in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10906.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10906.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10906","reference_id":"","reference_type":"","scores":[{"value":"0.00145","scoring_system":"epss","scoring_elements":"0.34813","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00145","scoring_system":"epss","scoring_elements":"0.34628","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00145","scoring_system":"epss","scoring_elements":"0.34807","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00145","scoring_system":"epss","scoring_elements":"0.34831","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10906"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10906","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10906"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485294","reference_id":"2485294","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485294"},{"reference_url":"https://issues.chromium.org/issues/503420438","reference_id":"503420438","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:44:16Z/"}],"url":"https://issues.chromium.org/issues/503420438"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:44:16Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10906"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-s8kb-t6am-9kfj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82267?format=json","vulnerability_id":"VCID-setx-ummp-yqhq","summary":"Insufficient validation of untrusted input in Drag and Drop in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11029.json","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11029.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11029","reference_id":"","reference_type":"","scores":[{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28443","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28231","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28428","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28452","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11029"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11029","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11029"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485295","reference_id":"2485295","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485295"},{"reference_url":"https://issues.chromium.org/issues/497651688","reference_id":"497651688","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-07T03:56:26Z/"}],"url":"https://issues.chromium.org/issues/497651688"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-07T03:56:26Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11029"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-setx-ummp-yqhq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82184?format=json","vulnerability_id":"VCID-sfvb-k6ud-kkbm","summary":"Incorrect security UI in Contact Picker in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11172.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11172.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11172","reference_id":"","reference_type":"","scores":[{"value":"0.00076","scoring_system":"epss","scoring_elements":"0.23095","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00076","scoring_system":"epss","scoring_elements":"0.22908","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00076","scoring_system":"epss","scoring_elements":"0.23105","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00076","scoring_system":"epss","scoring_elements":"0.23117","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11172"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11172","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11172"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485164","reference_id":"2485164","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485164"},{"reference_url":"https://issues.chromium.org/issues/502328201","reference_id":"502328201","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T17:09:07Z/"}],"url":"https://issues.chromium.org/issues/502328201"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T17:09:07Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11172"],"risk_score":2.6,"exploitability":"0.5","weighted_severity":"5.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-sfvb-k6ud-kkbm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76843?format=json","vulnerability_id":"VCID-sh41-7qbg-6ya6","summary":"Use after free in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10939.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10939.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10939","reference_id":"","reference_type":"","scores":[{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23165","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.2298","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23176","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00077","scoring_system":"epss","scoring_elements":"0.23187","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10939"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10939","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10939"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485102","reference_id":"2485102","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485102"},{"reference_url":"https://issues.chromium.org/issues/503502607","reference_id":"503502607","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:26:16Z/"}],"url":"https://issues.chromium.org/issues/503502607"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:26:16Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10939"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-sh41-7qbg-6ya6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82462?format=json","vulnerability_id":"VCID-sn6e-6r13-hkew","summary":"Inappropriate implementation in NFC in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform privilege escalation via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11108.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11108.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11108","reference_id":"","reference_type":"","scores":[{"value":"0.00071","scoring_system":"epss","scoring_elements":"0.22022","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00071","scoring_system":"epss","scoring_elements":"0.21847","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00071","scoring_system":"epss","scoring_elements":"0.22036","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00071","scoring_system":"epss","scoring_elements":"0.22046","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11108"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11108","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11108"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485122","reference_id":"2485122","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485122"},{"reference_url":"https://issues.chromium.org/issues/500517053","reference_id":"500517053","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T03:05:13Z/"}],"url":"https://issues.chromium.org/issues/500517053"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T03:05:13Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11108"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-sn6e-6r13-hkew"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76678?format=json","vulnerability_id":"VCID-spep-mgt1-3yet","summary":"Use after free in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10947.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10947.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10947","reference_id":"","reference_type":"","scores":[{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.31174","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.3098","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.31176","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.31191","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10947"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10947","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10947"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485343","reference_id":"2485343","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485343"},{"reference_url":"https://issues.chromium.org/issues/504597736","reference_id":"504597736","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:26:07Z/"}],"url":"https://issues.chromium.org/issues/504597736"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:26:07Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10947"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-spep-mgt1-3yet"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82278?format=json","vulnerability_id":"VCID-sqrr-4sb4-ube8","summary":"Inappropriate implementation in Page Info in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11275.json","reference_id":"","reference_type":"","scores":[{"value":"3.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11275.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11275","reference_id":"","reference_type":"","scores":[{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06234","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06242","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06264","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06253","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11275"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11275","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11275"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485269","reference_id":"2485269","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485269"},{"reference_url":"https://issues.chromium.org/issues/501763121","reference_id":"501763121","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:28:32Z/"}],"url":"https://issues.chromium.org/issues/501763121"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:28:32Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11275"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-sqrr-4sb4-ube8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76586?format=json","vulnerability_id":"VCID-sttq-bs4b-f3cu","summary":"Inappropriate implementation in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10904.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10904.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10904","reference_id":"","reference_type":"","scores":[{"value":"0.00212","scoring_system":"epss","scoring_elements":"0.44008","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00212","scoring_system":"epss","scoring_elements":"0.43845","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00212","scoring_system":"epss","scoring_elements":"0.44","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00212","scoring_system":"epss","scoring_elements":"0.4402","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10904"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10904","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10904"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485221","reference_id":"2485221","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485221"},{"reference_url":"https://issues.chromium.org/issues/506855825","reference_id":"506855825","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T12:16:10Z/"}],"url":"https://issues.chromium.org/issues/506855825"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T12:16:10Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10904"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-sttq-bs4b-f3cu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82362?format=json","vulnerability_id":"VCID-synf-eyth-a3ag","summary":"Integer overflow in Blink in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11171.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11171.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11171","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25099","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24898","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25097","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25114","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11171"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11171","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11171"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485096","reference_id":"2485096","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485096"},{"reference_url":"https://issues.chromium.org/issues/502322843","reference_id":"502322843","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:19:08Z/"}],"url":"https://issues.chromium.org/issues/502322843"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:19:08Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11171"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-synf-eyth-a3ag"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76828?format=json","vulnerability_id":"VCID-t94a-pnt3-2ua6","summary":"Insufficient policy enforcement in Autofill in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10944.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10944.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10944","reference_id":"","reference_type":"","scores":[{"value":"0.00046","scoring_system":"epss","scoring_elements":"0.14631","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00046","scoring_system":"epss","scoring_elements":"0.14539","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00046","scoring_system":"epss","scoring_elements":"0.14658","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00046","scoring_system":"epss","scoring_elements":"0.14657","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10944"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10944","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10944"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485631","reference_id":"2485631","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485631"},{"reference_url":"https://issues.chromium.org/issues/504215814","reference_id":"504215814","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:16:47Z/"}],"url":"https://issues.chromium.org/issues/504215814"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:16:47Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10944"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-t94a-pnt3-2ua6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82335?format=json","vulnerability_id":"VCID-tbwd-knpz-17a4","summary":"Inappropriate implementation in Chromoting in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to perform OS-level privilege escalation via malicious network traffic. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11170.json","reference_id":"","reference_type":"","scores":[{"value":"10.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11170.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11170","reference_id":"","reference_type":"","scores":[{"value":"0.00128","scoring_system":"epss","scoring_elements":"0.31925","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00128","scoring_system":"epss","scoring_elements":"0.31738","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00128","scoring_system":"epss","scoring_elements":"0.31926","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00128","scoring_system":"epss","scoring_elements":"0.31943","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11170"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11170","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11170"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485222","reference_id":"2485222","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485222"},{"reference_url":"https://issues.chromium.org/issues/502322596","reference_id":"502322596","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T17:10:37Z/"}],"url":"https://issues.chromium.org/issues/502322596"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T17:10:37Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11170"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tbwd-knpz-17a4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/211456?format=json","vulnerability_id":"VCID-tete-dyqx-mqcr","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11053.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11053.json"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11053","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11053"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485637","reference_id":"2485637","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485637"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11053"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tete-dyqx-mqcr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82014?format=json","vulnerability_id":"VCID-thy7-t7pz-afb3","summary":"Use after free in File Input in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11100.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11100.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11100","reference_id":"","reference_type":"","scores":[{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22495","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22306","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.225","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22513","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11100"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11100","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11100"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485059","reference_id":"2485059","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485059"},{"reference_url":"https://issues.chromium.org/issues/500416901","reference_id":"500416901","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T02:46:47Z/"}],"url":"https://issues.chromium.org/issues/500416901"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T02:46:47Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11100"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-thy7-t7pz-afb3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76795?format=json","vulnerability_id":"VCID-tr3d-tutj-37e8","summary":"Use after free in WebAppInstalls in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to execute arbitrary code via a malicious file. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10923.json","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10923.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10923","reference_id":"","reference_type":"","scores":[{"value":"0.00033","scoring_system":"epss","scoring_elements":"0.10193","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00033","scoring_system":"epss","scoring_elements":"0.10155","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00033","scoring_system":"epss","scoring_elements":"0.10202","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00033","scoring_system":"epss","scoring_elements":"0.10207","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10923"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10923","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10923"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485279","reference_id":"2485279","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485279"},{"reference_url":"https://issues.chromium.org/issues/499423683","reference_id":"499423683","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T19:34:28Z/"}],"url":"https://issues.chromium.org/issues/499423683"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T19:34:28Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10923"],"risk_score":3.3,"exploitability":"0.5","weighted_severity":"6.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tr3d-tutj-37e8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82537?format=json","vulnerability_id":"VCID-ttcp-j5tc-6bf8","summary":"Out of bounds read in Chromecast in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11140.json","reference_id":"","reference_type":"","scores":[{"value":"2.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11140.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11140","reference_id":"","reference_type":"","scores":[{"value":"0.00043","scoring_system":"epss","scoring_elements":"0.13711","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00043","scoring_system":"epss","scoring_elements":"0.13622","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00043","scoring_system":"epss","scoring_elements":"0.13739","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11140"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11140","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11140"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485018","reference_id":"2485018","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485018"},{"reference_url":"https://issues.chromium.org/issues/501659253","reference_id":"501659253","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:39:21Z/"}],"url":"https://issues.chromium.org/issues/501659253"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:39:21Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11140"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ttcp-j5tc-6bf8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76532?format=json","vulnerability_id":"VCID-tthj-fngb-yker","summary":"Out of bounds write in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10907.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10907.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10907","reference_id":"","reference_type":"","scores":[{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.28951","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.2874","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.28942","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00109","scoring_system":"epss","scoring_elements":"0.28965","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10907"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10907","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10907"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485153","reference_id":"2485153","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485153"},{"reference_url":"https://issues.chromium.org/issues/489071023","reference_id":"489071023","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:50:48Z/"}],"url":"https://issues.chromium.org/issues/489071023"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:50:48Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10907"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tthj-fngb-yker"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82276?format=json","vulnerability_id":"VCID-tx55-qe7j-kke9","summary":"Use after free in Media in Google Chrome on Linux and ChromeOS prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11028.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11028.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11028","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25099","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24898","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25097","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25114","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11028"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11028","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11028"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484994","reference_id":"2484994","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484994"},{"reference_url":"https://issues.chromium.org/issues/497627277","reference_id":"497627277","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:25:13Z/"}],"url":"https://issues.chromium.org/issues/497627277"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:25:13Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11028"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tx55-qe7j-kke9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82197?format=json","vulnerability_id":"VCID-tytp-7kt4-xfcd","summary":"Inappropriate implementation in Payments in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11245.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11245.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11245","reference_id":"","reference_type":"","scores":[{"value":"0.00024","scoring_system":"epss","scoring_elements":"0.07122","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00024","scoring_system":"epss","scoring_elements":"0.07099","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00024","scoring_system":"epss","scoring_elements":"0.07132","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00024","scoring_system":"epss","scoring_elements":"0.07127","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11245"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11245","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11245"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485178","reference_id":"2485178","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485178"},{"reference_url":"https://issues.chromium.org/issues/497610654","reference_id":"497610654","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T12:10:16Z/"}],"url":"https://issues.chromium.org/issues/497610654"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T12:10:16Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11245"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tytp-7kt4-xfcd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82512?format=json","vulnerability_id":"VCID-u1vs-3muq-kuhf","summary":"Use after free in V8 in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code inside a sandbox via a crafted Chrome Extension. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11185.json","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11185.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11185","reference_id":"","reference_type":"","scores":[{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.04013","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.03997","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.04014","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.04003","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11185"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11185","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11185"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484987","reference_id":"2484987","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484987"},{"reference_url":"https://issues.chromium.org/issues/502784366","reference_id":"502784366","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T12:18:32Z/"}],"url":"https://issues.chromium.org/issues/502784366"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T12:18:32Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11185"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-u1vs-3muq-kuhf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82416?format=json","vulnerability_id":"VCID-u374-pu37-n7hf","summary":"Inappropriate implementation in TabGroups in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via malicious network traffic. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11232.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11232.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11232","reference_id":"","reference_type":"","scores":[{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22343","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.2216","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22351","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22364","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11232"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11232","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11232"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485134","reference_id":"2485134","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485134"},{"reference_url":"https://issues.chromium.org/issues/495981782","reference_id":"495981782","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T12:26:54Z/"}],"url":"https://issues.chromium.org/issues/495981782"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T12:26:54Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11232"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-u374-pu37-n7hf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82275?format=json","vulnerability_id":"VCID-u49h-s5ts-3fh4","summary":"Inappropriate implementation in PlatformIntegration in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a malicious file. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11218.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11218.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11218","reference_id":"","reference_type":"","scores":[{"value":"0.00054","scoring_system":"epss","scoring_elements":"0.17311","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00054","scoring_system":"epss","scoring_elements":"0.17159","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00054","scoring_system":"epss","scoring_elements":"0.17322","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00054","scoring_system":"epss","scoring_elements":"0.17337","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11218"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11218","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11218"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484973","reference_id":"2484973","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484973"},{"reference_url":"https://issues.chromium.org/issues/476862276","reference_id":"476862276","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T14:09:11Z/"}],"url":"https://issues.chromium.org/issues/476862276"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T14:09:11Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11218"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-u49h-s5ts-3fh4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82274?format=json","vulnerability_id":"VCID-u65b-qz8k-kybj","summary":"Use after free in Omnibox in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11177.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11177.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11177","reference_id":"","reference_type":"","scores":[{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22495","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22306","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.225","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22513","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11177"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11177","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11177"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485080","reference_id":"2485080","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485080"},{"reference_url":"https://issues.chromium.org/issues/502449864","reference_id":"502449864","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T16:51:07Z/"}],"url":"https://issues.chromium.org/issues/502449864"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T16:51:07Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11177"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-u65b-qz8k-kybj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76638?format=json","vulnerability_id":"VCID-u824-yqjz-a7d9","summary":"Insufficient validation of untrusted input in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10916.json","reference_id":"","reference_type":"","scores":[{"value":"9.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10916.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10916","reference_id":"","reference_type":"","scores":[{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19629","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.1946","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19633","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19656","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10916"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10916","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10916"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485291","reference_id":"2485291","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485291"},{"reference_url":"https://issues.chromium.org/issues/497643690","reference_id":"497643690","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:35:21Z/"}],"url":"https://issues.chromium.org/issues/497643690"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:35:21Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10916"],"risk_score":4.2,"exploitability":"0.5","weighted_severity":"8.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-u824-yqjz-a7d9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82370?format=json","vulnerability_id":"VCID-u8f3-awwe-ffah","summary":"Use after free in Input in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11293.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11293.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11293","reference_id":"","reference_type":"","scores":[{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30392","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30191","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30387","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30404","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11293"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11293","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11293"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485312","reference_id":"2485312","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485312"},{"reference_url":"https://issues.chromium.org/issues/502362260","reference_id":"502362260","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T18:56:20Z/"}],"url":"https://issues.chromium.org/issues/502362260"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T18:56:20Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11293"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-u8f3-awwe-ffah"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82254?format=json","vulnerability_id":"VCID-u8sy-f7pu-37h3","summary":"Inappropriate implementation in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11167.json","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11167.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11167","reference_id":"","reference_type":"","scores":[{"value":"0.00067","scoring_system":"epss","scoring_elements":"0.21173","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00067","scoring_system":"epss","scoring_elements":"0.20997","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00067","scoring_system":"epss","scoring_elements":"0.21176","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00067","scoring_system":"epss","scoring_elements":"0.21193","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11167"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11167","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11167"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485233","reference_id":"2485233","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485233"},{"reference_url":"https://issues.chromium.org/issues/502228856","reference_id":"502228856","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T17:18:51Z/"}],"url":"https://issues.chromium.org/issues/502228856"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T17:18:51Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11167"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-u8sy-f7pu-37h3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76501?format=json","vulnerability_id":"VCID-u9yw-fbxp-qyhp","summary":"Inappropriate implementation in Accessibility in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10984.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10984.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10984","reference_id":"","reference_type":"","scores":[{"value":"0.00063","scoring_system":"epss","scoring_elements":"0.19949","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00063","scoring_system":"epss","scoring_elements":"0.19782","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00063","scoring_system":"epss","scoring_elements":"0.19957","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00063","scoring_system":"epss","scoring_elements":"0.19973","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10984"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10984","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10984"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484956","reference_id":"2484956","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484956"},{"reference_url":"https://issues.chromium.org/issues/514022635","reference_id":"514022635","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T18:04:02Z/"}],"url":"https://issues.chromium.org/issues/514022635"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T18:04:02Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10984"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-u9yw-fbxp-qyhp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82431?format=json","vulnerability_id":"VCID-ubz9-zzjd-x7bh","summary":"Inappropriate implementation in Keyboard in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11122.json","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11122.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11122","reference_id":"","reference_type":"","scores":[{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08376","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.0834","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08378","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08381","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11122"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11122","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11122"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485053","reference_id":"2485053","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485053"},{"reference_url":"https://issues.chromium.org/issues/501485453","reference_id":"501485453","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T15:28:52Z/"}],"url":"https://issues.chromium.org/issues/501485453"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T15:28:52Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11122"],"risk_score":3.6,"exploitability":"0.5","weighted_severity":"7.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ubz9-zzjd-x7bh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76776?format=json","vulnerability_id":"VCID-ud7n-dpqz-qbe2","summary":"Insufficient validation of untrusted input in InterestGroups in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10970.json","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10970.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10970","reference_id":"","reference_type":"","scores":[{"value":"0.00144","scoring_system":"epss","scoring_elements":"0.34685","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00144","scoring_system":"epss","scoring_elements":"0.34504","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00144","scoring_system":"epss","scoring_elements":"0.34681","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00144","scoring_system":"epss","scoring_elements":"0.34705","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10970"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10970","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10970"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485281","reference_id":"2485281","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485281"},{"reference_url":"https://issues.chromium.org/issues/512772489","reference_id":"512772489","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:37:46Z/"}],"url":"https://issues.chromium.org/issues/512772489"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:37:46Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10970"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ud7n-dpqz-qbe2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82509?format=json","vulnerability_id":"VCID-udfj-g7bw-ruce","summary":"Use after free in Blink in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11164.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11164.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11164","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25099","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24898","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25097","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25114","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11164"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11164","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11164"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485050","reference_id":"2485050","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485050"},{"reference_url":"https://issues.chromium.org/issues/502089411","reference_id":"502089411","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:24:03Z/"}],"url":"https://issues.chromium.org/issues/502089411"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:24:03Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11164"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-udfj-g7bw-ruce"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82380?format=json","vulnerability_id":"VCID-udue-eag3-jfh1","summary":"Inappropriate implementation in CustomTabs in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11278.json","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11278.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11278","reference_id":"","reference_type":"","scores":[{"value":"9e-05","scoring_system":"epss","scoring_elements":"0.00945","published_at":"2026-06-14T12:55:00Z"},{"value":"9e-05","scoring_system":"epss","scoring_elements":"0.00936","published_at":"2026-06-11T12:55:00Z"},{"value":"9e-05","scoring_system":"epss","scoring_elements":"0.00934","published_at":"2026-06-12T12:55:00Z"},{"value":"9e-05","scoring_system":"epss","scoring_elements":"0.00942","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11278"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11278","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11278"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485272","reference_id":"2485272","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485272"},{"reference_url":"https://issues.chromium.org/issues/501859865","reference_id":"501859865","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:26:33Z/"}],"url":"https://issues.chromium.org/issues/501859865"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:26:33Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11278"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-udue-eag3-jfh1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82433?format=json","vulnerability_id":"VCID-ugq3-2vuc-9ybz","summary":"Integer overflow in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11124.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11124.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11124","reference_id":"","reference_type":"","scores":[{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22495","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22306","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.225","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22513","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11124"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11124","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11124"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485043","reference_id":"2485043","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485043"},{"reference_url":"https://issues.chromium.org/issues/501511299","reference_id":"501511299","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-08T15:35:20Z/"}],"url":"https://issues.chromium.org/issues/501511299"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-08T15:35:20Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11124"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ugq3-2vuc-9ybz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82097?format=json","vulnerability_id":"VCID-uq4y-wa46-tyhs","summary":"Insufficient policy enforcement in Paint in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11142.json","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11142.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11142","reference_id":"","reference_type":"","scores":[{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06234","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06242","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06264","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06253","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11142"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11142","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11142"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485245","reference_id":"2485245","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485245"},{"reference_url":"https://issues.chromium.org/issues/501668745","reference_id":"501668745","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:36:38Z/"}],"url":"https://issues.chromium.org/issues/501668745"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:36:38Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11142"],"risk_score":3.6,"exploitability":"0.5","weighted_severity":"7.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-uq4y-wa46-tyhs"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82070?format=json","vulnerability_id":"VCID-uqk6-zpsc-g7es","summary":"Inappropriate implementation in FoldableAPIs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11234.json","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11234.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11234","reference_id":"","reference_type":"","scores":[{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09878","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09844","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.0989","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09892","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11234"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11234","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11234"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484979","reference_id":"2484979","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484979"},{"reference_url":"https://issues.chromium.org/issues/496095145","reference_id":"496095145","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T13:33:02Z/"}],"url":"https://issues.chromium.org/issues/496095145"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T13:33:02Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11234"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"6.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-uqk6-zpsc-g7es"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82441?format=json","vulnerability_id":"VCID-uwhe-n814-1qb2","summary":"Use after free in PDFium in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11307.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11307.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11307","reference_id":"","reference_type":"","scores":[{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33937","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33737","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33915","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11307"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11307","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11307"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485046","reference_id":"2485046","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485046"},{"reference_url":"https://issues.chromium.org/issues/504551617","reference_id":"504551617","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:00:41Z/"}],"url":"https://issues.chromium.org/issues/504551617"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:00:41Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11307"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-uwhe-n814-1qb2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76687?format=json","vulnerability_id":"VCID-uyns-737x-kuhx","summary":"Integer overflow in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10965.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10965.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10965","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25099","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24898","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25097","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25114","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10965"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10965","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10965"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485029","reference_id":"2485029","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485029"},{"reference_url":"https://issues.chromium.org/issues/511290038","reference_id":"511290038","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:19:10Z/"}],"url":"https://issues.chromium.org/issues/511290038"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:19:10Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10965"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-uyns-737x-kuhx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76650?format=json","vulnerability_id":"VCID-v3px-cwdr-zqar","summary":"Use after free in Glic in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10957.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10957.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10957","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25099","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24898","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25097","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25114","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10957"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10957","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10957"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485003","reference_id":"2485003","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485003"},{"reference_url":"https://issues.chromium.org/issues/506377279","reference_id":"506377279","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:25:48Z/"}],"url":"https://issues.chromium.org/issues/506377279"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:25:48Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10957"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-v3px-cwdr-zqar"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82315?format=json","vulnerability_id":"VCID-v491-y32n-hyaf","summary":"Use after free in ANGLE in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11055.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11055.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11055","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25099","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24898","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25097","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25114","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11055"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11055","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11055"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485123","reference_id":"2485123","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485123"},{"reference_url":"https://issues.chromium.org/issues/498881735","reference_id":"498881735","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:24:54Z/"}],"url":"https://issues.chromium.org/issues/498881735"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:24:54Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11055"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-v491-y32n-hyaf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76507?format=json","vulnerability_id":"VCID-v4t2-pa3y-rud6","summary":"Use after free in Passwords in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10900.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10900.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10900","reference_id":"","reference_type":"","scores":[{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30392","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30191","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30387","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30404","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10900"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10900","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10900"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485199","reference_id":"2485199","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485199"},{"reference_url":"https://issues.chromium.org/issues/516878683","reference_id":"516878683","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:45:02Z/"}],"url":"https://issues.chromium.org/issues/516878683"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:45:02Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10900"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-v4t2-pa3y-rud6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76765?format=json","vulnerability_id":"VCID-v4x9-eypx-h7gf","summary":"Heap buffer overflow in TabStrip in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10995.json","reference_id":"","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10995.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10995","reference_id":"","reference_type":"","scores":[{"value":"0.00079","scoring_system":"epss","scoring_elements":"0.23674","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00079","scoring_system":"epss","scoring_elements":"0.23488","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00079","scoring_system":"epss","scoring_elements":"0.23684","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00079","scoring_system":"epss","scoring_elements":"0.23694","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10995"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10995","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10995"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484952","reference_id":"2484952","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484952"},{"reference_url":"https://issues.chromium.org/issues/505371980","reference_id":"505371980","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-08T16:35:09Z/"}],"url":"https://issues.chromium.org/issues/505371980"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-08T16:35:09Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10995"],"risk_score":3.8,"exploitability":"0.5","weighted_severity":"7.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-v4x9-eypx-h7gf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82131?format=json","vulnerability_id":"VCID-v995-dfaq-5qcd","summary":"Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11137.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11137.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11137","reference_id":"","reference_type":"","scores":[{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09277","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09233","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09285","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09287","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11137"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11137","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11137"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485322","reference_id":"2485322","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485322"},{"reference_url":"https://issues.chromium.org/issues/501647943","reference_id":"501647943","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:43:52Z/"}],"url":"https://issues.chromium.org/issues/501647943"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:43:52Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11137"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-v995-dfaq-5qcd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82231?format=json","vulnerability_id":"VCID-vahy-qj72-x3av","summary":"Inappropriate implementation in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11097.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11097.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11097","reference_id":"","reference_type":"","scores":[{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08705","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08666","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08708","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08713","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11097"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11097","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11097"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485002","reference_id":"2485002","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485002"},{"reference_url":"https://issues.chromium.org/issues/500311718","reference_id":"500311718","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T02:41:18Z/"}],"url":"https://issues.chromium.org/issues/500311718"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T02:41:18Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11097"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vahy-qj72-x3av"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82281?format=json","vulnerability_id":"VCID-vaz9-wd89-1fby","summary":"Inappropriate implementation in Browser in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11257.json","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11257.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11257","reference_id":"","reference_type":"","scores":[{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06234","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06242","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06264","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06253","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11257"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11257","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11257"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485333","reference_id":"2485333","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485333"},{"reference_url":"https://issues.chromium.org/issues/499051898","reference_id":"499051898","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:56:59Z/"}],"url":"https://issues.chromium.org/issues/499051898"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:56:59Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11257"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"4.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vaz9-wd89-1fby"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82062?format=json","vulnerability_id":"VCID-vdu8-edu4-nfcs","summary":"Insufficient policy enforcement in Autofill in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass discretionary access control via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11135.json","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11135.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11135","reference_id":"","reference_type":"","scores":[{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06234","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06242","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06264","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06253","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11135"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11135","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11135"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485066","reference_id":"2485066","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485066"},{"reference_url":"https://issues.chromium.org/issues/501644835","reference_id":"501644835","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:45:31Z/"}],"url":"https://issues.chromium.org/issues/501644835"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:45:31Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11135"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"4.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vdu8-edu4-nfcs"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76798?format=json","vulnerability_id":"VCID-ve8f-21md-5uh5","summary":"Heap buffer overflow in ANGLE in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10929.json","reference_id":"","reference_type":"","scores":[{"value":"8.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10929.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10929","reference_id":"","reference_type":"","scores":[{"value":"0.00079","scoring_system":"epss","scoring_elements":"0.23674","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00079","scoring_system":"epss","scoring_elements":"0.23488","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00079","scoring_system":"epss","scoring_elements":"0.23684","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00079","scoring_system":"epss","scoring_elements":"0.23694","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10929"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10929","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10929"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485185","reference_id":"2485185","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485185"},{"reference_url":"https://issues.chromium.org/issues/500429259","reference_id":"500429259","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:38:27Z/"}],"url":"https://issues.chromium.org/issues/500429259"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:38:27Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10929"],"risk_score":3.6,"exploitability":"0.5","weighted_severity":"7.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ve8f-21md-5uh5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82161?format=json","vulnerability_id":"VCID-vey1-5749-t7bu","summary":"Insufficient validation of untrusted input in Tab Group Sync in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via malicious network traffic. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11034.json","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11034.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11034","reference_id":"","reference_type":"","scores":[{"value":"0.00052","scoring_system":"epss","scoring_elements":"0.16812","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00052","scoring_system":"epss","scoring_elements":"0.16676","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00052","scoring_system":"epss","scoring_elements":"0.16826","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00052","scoring_system":"epss","scoring_elements":"0.16838","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11034"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11034","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11034"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485086","reference_id":"2485086","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485086"},{"reference_url":"https://issues.chromium.org/issues/497934980","reference_id":"497934980","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:14:29Z/"}],"url":"https://issues.chromium.org/issues/497934980"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:14:29Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11034"],"risk_score":3.6,"exploitability":"0.5","weighted_severity":"7.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vey1-5749-t7bu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76635?format=json","vulnerability_id":"VCID-vhbh-vh7c-83du","summary":"Out of bounds read in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10927.json","reference_id":"","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10927.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10927","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25108","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24906","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25105","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25122","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10927"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10927","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10927"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485316","reference_id":"2485316","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485316"},{"reference_url":"https://issues.chromium.org/issues/500090141","reference_id":"500090141","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:38:32Z/"}],"url":"https://issues.chromium.org/issues/500090141"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:38:32Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10927"],"risk_score":3.9,"exploitability":"0.5","weighted_severity":"7.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vhbh-vh7c-83du"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82443?format=json","vulnerability_id":"VCID-vhn5-ysfh-t3ag","summary":"Inappropriate implementation in Cast in Google Chrome prior to 149.0.7827.53 allowed an attacker on the local network segment to bypass discretionary access control via malicious network traffic. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11276.json","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11276.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11276","reference_id":"","reference_type":"","scores":[{"value":"6e-05","scoring_system":"epss","scoring_elements":"0.00364","published_at":"2026-06-14T12:55:00Z"},{"value":"6e-05","scoring_system":"epss","scoring_elements":"0.0036","published_at":"2026-06-12T12:55:00Z"},{"value":"6e-05","scoring_system":"epss","scoring_elements":"0.00358","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11276"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11276","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11276"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485118","reference_id":"2485118","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485118"},{"reference_url":"https://issues.chromium.org/issues/501780338","reference_id":"501780338","reference_type":"","scores":[{"value":"5.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T01:40:53Z/"}],"url":"https://issues.chromium.org/issues/501780338"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"5.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T01:40:53Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11276"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"4.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vhn5-ysfh-t3ag"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82470?format=json","vulnerability_id":"VCID-vhsr-ffbm-pqdj","summary":"Use after free in Network in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11249.json","reference_id":"","reference_type":"","scores":[{"value":"3.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11249.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11249","reference_id":"","reference_type":"","scores":[{"value":"0.00027","scoring_system":"epss","scoring_elements":"0.08028","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00027","scoring_system":"epss","scoring_elements":"0.08","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00027","scoring_system":"epss","scoring_elements":"0.08035","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00027","scoring_system":"epss","scoring_elements":"0.08031","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11249"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11249","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11249"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485341","reference_id":"2485341","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485341"},{"reference_url":"https://issues.chromium.org/issues/497989379","reference_id":"497989379","reference_type":"","scores":[{"value":"4.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T11:49:44Z/"}],"url":"https://issues.chromium.org/issues/497989379"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T11:49:44Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11249"],"risk_score":1.6,"exploitability":"0.5","weighted_severity":"3.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vhsr-ffbm-pqdj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82409?format=json","vulnerability_id":"VCID-vmtg-bmev-c7bq","summary":"Insufficient policy enforcement in DevTools in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to perform privilege escalation via a crafted Chrome Extension. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11092.json","reference_id":"","reference_type":"","scores":[{"value":"6.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11092.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11092","reference_id":"","reference_type":"","scores":[{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07769","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07744","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.0778","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07775","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11092"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485149","reference_id":"2485149","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485149"},{"reference_url":"https://issues.chromium.org/issues/500170887","reference_id":"500170887","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T13:15:04Z/"}],"url":"https://issues.chromium.org/issues/500170887"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T13:15:04Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11092"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vmtg-bmev-c7bq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76422?format=json","vulnerability_id":"VCID-vqtp-ur8z-m3ce","summary":"Type Confusion in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10936.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10936.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10936","reference_id":"","reference_type":"","scores":[{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25337","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25134","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25332","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00088","scoring_system":"epss","scoring_elements":"0.25349","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10936"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10936","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10936"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485200","reference_id":"2485200","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485200"},{"reference_url":"https://issues.chromium.org/issues/502439789","reference_id":"502439789","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:40:44Z/"}],"url":"https://issues.chromium.org/issues/502439789"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:40:44Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10936"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vqtp-ur8z-m3ce"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82358?format=json","vulnerability_id":"VCID-vu68-8s19-5kf8","summary":"Inappropriate implementation in Permissions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11254.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11254.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11254","reference_id":"","reference_type":"","scores":[{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.05061","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.05086","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.05088","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.05076","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11254"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11254","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11254"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485225","reference_id":"2485225","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485225"},{"reference_url":"https://issues.chromium.org/issues/498405554","reference_id":"498405554","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T11:06:26Z/"}],"url":"https://issues.chromium.org/issues/498405554"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T11:06:26Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11254"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vu68-8s19-5kf8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76588?format=json","vulnerability_id":"VCID-vunw-yf74-nfhp","summary":"Use after free in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10903.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10903.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10903","reference_id":"","reference_type":"","scores":[{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.31174","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.3098","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.31176","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.31191","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10903"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10903","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10903"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485250","reference_id":"2485250","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485250"},{"reference_url":"https://issues.chromium.org/issues/503422316","reference_id":"503422316","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:26:30Z/"}],"url":"https://issues.chromium.org/issues/503422316"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:26:30Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10903"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vunw-yf74-nfhp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82066?format=json","vulnerability_id":"VCID-vwzx-nu8z-9fcp","summary":"Inappropriate implementation in LiveCaption in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform out of bounds memory access via malicious network traffic. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11301.json","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11301.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11301","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25108","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24906","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25105","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25122","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11301"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11301","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11301"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485220","reference_id":"2485220","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485220"},{"reference_url":"https://issues.chromium.org/issues/504180386","reference_id":"504180386","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:21:59Z/"}],"url":"https://issues.chromium.org/issues/504180386"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:21:59Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11301"],"risk_score":3.3,"exploitability":"0.5","weighted_severity":"6.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vwzx-nu8z-9fcp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82329?format=json","vulnerability_id":"VCID-vyeh-z5ku-63ax","summary":"Insufficient validation of untrusted input in Chromoting in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11146.json","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11146.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11146","reference_id":"","reference_type":"","scores":[{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28443","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28231","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28428","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28452","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11146"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11146","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11146"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485351","reference_id":"2485351","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485351"},{"reference_url":"https://issues.chromium.org/issues/501709220","reference_id":"501709220","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T03:30:46Z/"}],"url":"https://issues.chromium.org/issues/501709220"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T03:30:46Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11146"],"risk_score":3.7,"exploitability":"0.5","weighted_severity":"7.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vyeh-z5ku-63ax"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76832?format=json","vulnerability_id":"VCID-vyka-zmry-z7hp","summary":"Use after free in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10885.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10885.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10885","reference_id":"","reference_type":"","scores":[{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33937","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33737","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33915","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10885"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10885","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10885"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485628","reference_id":"2485628","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485628"},{"reference_url":"https://issues.chromium.org/issues/504072665","reference_id":"504072665","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:26:54Z/"}],"url":"https://issues.chromium.org/issues/504072665"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:26:54Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10885"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vyka-zmry-z7hp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82378?format=json","vulnerability_id":"VCID-w1yb-f349-gqdr","summary":"Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to bypass same origin policy via a crafted Chrome Extension. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11048.json","reference_id":"","reference_type":"","scores":[{"value":"6.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11048.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11048","reference_id":"","reference_type":"","scores":[{"value":"7e-05","scoring_system":"epss","scoring_elements":"0.00685","published_at":"2026-06-14T12:55:00Z"},{"value":"7e-05","scoring_system":"epss","scoring_elements":"0.00681","published_at":"2026-06-11T12:55:00Z"},{"value":"7e-05","scoring_system":"epss","scoring_elements":"0.00679","published_at":"2026-06-12T12:55:00Z"},{"value":"7e-05","scoring_system":"epss","scoring_elements":"0.0068","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11048"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11048","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11048"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485136","reference_id":"2485136","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485136"},{"reference_url":"https://issues.chromium.org/issues/498808432","reference_id":"498808432","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:02:03Z/"}],"url":"https://issues.chromium.org/issues/498808432"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:02:03Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11048"],"risk_score":2.9,"exploitability":"0.5","weighted_severity":"5.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-w1yb-f349-gqdr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82223?format=json","vulnerability_id":"VCID-wa48-km9y-dkaw","summary":"Insufficient policy enforcement in CustomTabs in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11247.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11247.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11247","reference_id":"","reference_type":"","scores":[{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.10658","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.10621","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.1068","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00034","scoring_system":"epss","scoring_elements":"0.10681","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11247"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11247","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11247"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485094","reference_id":"2485094","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485094"},{"reference_url":"https://issues.chromium.org/issues/497865734","reference_id":"497865734","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T12:40:41Z/"}],"url":"https://issues.chromium.org/issues/497865734"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"3.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T12:40:41Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11247"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wa48-km9y-dkaw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76426?format=json","vulnerability_id":"VCID-wbcw-1emc-buck","summary":"Use after free in Audio in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10933.json","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10933.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10933","reference_id":"","reference_type":"","scores":[{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22495","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22306","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.225","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22513","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10933"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10933","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10933"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484983","reference_id":"2484983","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484983"},{"reference_url":"https://issues.chromium.org/issues/501557633","reference_id":"501557633","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:38:23Z/"}],"url":"https://issues.chromium.org/issues/501557633"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:38:23Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10933"],"risk_score":3.7,"exploitability":"0.5","weighted_severity":"7.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wbcw-1emc-buck"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82116?format=json","vulnerability_id":"VCID-wewe-s51y-4uet","summary":"Inappropriate implementation in Signin in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11280.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11280.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11280","reference_id":"","reference_type":"","scores":[{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08614","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08569","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.0861","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11280"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11280","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11280"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485648","reference_id":"2485648","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485648"},{"reference_url":"https://issues.chromium.org/issues/501892820","reference_id":"501892820","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:25:22Z/"}],"url":"https://issues.chromium.org/issues/501892820"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:25:22Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11280"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wewe-s51y-4uet"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82078?format=json","vulnerability_id":"VCID-wkgg-gf2d-5uah","summary":"Use after free in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11080.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11080.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11080","reference_id":"","reference_type":"","scores":[{"value":"0.00067","scoring_system":"epss","scoring_elements":"0.21173","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00067","scoring_system":"epss","scoring_elements":"0.20997","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00067","scoring_system":"epss","scoring_elements":"0.21176","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00067","scoring_system":"epss","scoring_elements":"0.21193","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11080"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11080","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11080"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485091","reference_id":"2485091","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485091"},{"reference_url":"https://issues.chromium.org/issues/500032538","reference_id":"500032538","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T14:33:50Z/"}],"url":"https://issues.chromium.org/issues/500032538"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T14:33:50Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11080"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wkgg-gf2d-5uah"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82222?format=json","vulnerability_id":"VCID-wn31-1h5b-ekdq","summary":"Inappropriate implementation in Password Manager in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11083.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11083.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11083","reference_id":"","reference_type":"","scores":[{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.0319","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03181","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03194","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03177","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11083"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11083","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11083"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485213","reference_id":"2485213","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485213"},{"reference_url":"https://issues.chromium.org/issues/500095743","reference_id":"500095743","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:26:34Z/"}],"url":"https://issues.chromium.org/issues/500095743"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:26:34Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11083"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wn31-1h5b-ekdq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82099?format=json","vulnerability_id":"VCID-wt45-u7wj-7kbp","summary":"Inappropriate implementation in Password Manager in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11032.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11032.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11032","reference_id":"","reference_type":"","scores":[{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.0319","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03181","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03194","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03177","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11032"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11032","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11032"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485212","reference_id":"2485212","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485212"},{"reference_url":"https://issues.chromium.org/issues/497831111","reference_id":"497831111","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T18:52:52Z/"}],"url":"https://issues.chromium.org/issues/497831111"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T18:52:52Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11032"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wt45-u7wj-7kbp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82023?format=json","vulnerability_id":"VCID-wtgm-524w-sqhd","summary":"Inappropriate implementation in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11285.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11285.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11285","reference_id":"","reference_type":"","scores":[{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08624","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08579","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.0862","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11285"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11285","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11285"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485649","reference_id":"2485649","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485649"},{"reference_url":"https://issues.chromium.org/issues/502090914","reference_id":"502090914","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:13:26Z/"}],"url":"https://issues.chromium.org/issues/502090914"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:13:26Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11285"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wtgm-524w-sqhd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82261?format=json","vulnerability_id":"VCID-wvcg-8w9s-h3a5","summary":"Use after free in TabStrip in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11262.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11262.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11262","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25099","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24898","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25097","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25114","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11262"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11262","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11262"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485057","reference_id":"2485057","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485057"},{"reference_url":"https://issues.chromium.org/issues/499386363","reference_id":"499386363","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:23:54Z/"}],"url":"https://issues.chromium.org/issues/499386363"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:23:54Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11262"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wvcg-8w9s-h3a5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76807?format=json","vulnerability_id":"VCID-wvk6-ms54-zbfd","summary":"Insufficient validation of untrusted input in Printing in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10971.json","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10971.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10971","reference_id":"","reference_type":"","scores":[{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25261","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25058","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25256","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25275","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10971"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10971","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10971"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485045","reference_id":"2485045","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485045"},{"reference_url":"https://issues.chromium.org/issues/513005991","reference_id":"513005991","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:33:32Z/"}],"url":"https://issues.chromium.org/issues/513005991"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:33:32Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10971"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wvk6-ms54-zbfd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82397?format=json","vulnerability_id":"VCID-x57j-378d-43bu","summary":"Inappropriate implementation in File Input in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11228.json","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11228.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11228","reference_id":"","reference_type":"","scores":[{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08624","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08579","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.0862","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11228"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11228","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11228"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485068","reference_id":"2485068","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485068"},{"reference_url":"https://issues.chromium.org/issues/454484864","reference_id":"454484864","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T13:27:57Z/"}],"url":"https://issues.chromium.org/issues/454484864"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T13:27:57Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11228"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"4.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-x57j-378d-43bu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76511?format=json","vulnerability_id":"VCID-x782-vt2b-wbaa","summary":"Uninitialized Use in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10977.json","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10977.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10977","reference_id":"","reference_type":"","scores":[{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11042","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11016","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11078","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11074","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10977"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10977","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10977"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485236","reference_id":"2485236","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485236"},{"reference_url":"https://issues.chromium.org/issues/513340227","reference_id":"513340227","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T20:01:38Z/"}],"url":"https://issues.chromium.org/issues/513340227"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T20:01:38Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10977"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"6.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-x782-vt2b-wbaa"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82198?format=json","vulnerability_id":"VCID-xb8x-wt61-kkc3","summary":"Inappropriate implementation in Printing in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11093.json","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11093.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11093","reference_id":"","reference_type":"","scores":[{"value":"0.00043","scoring_system":"epss","scoring_elements":"0.13711","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00043","scoring_system":"epss","scoring_elements":"0.13622","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00043","scoring_system":"epss","scoring_elements":"0.13739","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11093"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485009","reference_id":"2485009","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485009"},{"reference_url":"https://issues.chromium.org/issues/500172365","reference_id":"500172365","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T13:13:24Z/"}],"url":"https://issues.chromium.org/issues/500172365"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T13:13:24Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11093"],"risk_score":2.6,"exploitability":"0.5","weighted_severity":"5.3","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xb8x-wt61-kkc3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82065?format=json","vulnerability_id":"VCID-xdp4-2cnq-nyb8","summary":"Insufficient validation of untrusted input in Cast in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11259.json","reference_id":"","reference_type":"","scores":[{"value":"9.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11259.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11259","reference_id":"","reference_type":"","scores":[{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09752","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09711","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09762","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09764","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11259"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11259","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11259"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485103","reference_id":"2485103","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485103"},{"reference_url":"https://issues.chromium.org/issues/499215943","reference_id":"499215943","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:54:33Z/"}],"url":"https://issues.chromium.org/issues/499215943"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:54:33Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11259"],"risk_score":4.2,"exploitability":"0.5","weighted_severity":"8.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xdp4-2cnq-nyb8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76563?format=json","vulnerability_id":"VCID-xft5-y39u-gqeq","summary":"Out of bounds read and write in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10881.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10881.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10881","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25108","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24906","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25105","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25122","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10881"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10881","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10881"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485126","reference_id":"2485126","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485126"},{"reference_url":"https://issues.chromium.org/issues/498904293","reference_id":"498904293","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:29:20Z/"}],"url":"https://issues.chromium.org/issues/498904293"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:29:20Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10881"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xft5-y39u-gqeq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82311?format=json","vulnerability_id":"VCID-xgbt-v28j-vua1","summary":"Inappropriate implementation in Glic in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11187.json","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11187.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11187","reference_id":"","reference_type":"","scores":[{"value":"0.00025","scoring_system":"epss","scoring_elements":"0.07469","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00025","scoring_system":"epss","scoring_elements":"0.07452","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00025","scoring_system":"epss","scoring_elements":"0.07485","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00025","scoring_system":"epss","scoring_elements":"0.07478","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11187"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11187","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11187"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485255","reference_id":"2485255","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485255"},{"reference_url":"https://issues.chromium.org/issues/502819675","reference_id":"502819675","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T12:24:36Z/"}],"url":"https://issues.chromium.org/issues/502819675"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T12:24:36Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11187"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"4.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xgbt-v28j-vua1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82139?format=json","vulnerability_id":"VCID-xhmp-gae2-pfhs","summary":"Integer overflow in CredentialProvider in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to perform OS-level privilege escalation via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11058.json","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11058.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11058","reference_id":"","reference_type":"","scores":[{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22495","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22306","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.225","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22513","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11058"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11058","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11058"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485326","reference_id":"2485326","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485326"},{"reference_url":"https://issues.chromium.org/issues/498986406","reference_id":"498986406","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:12:38Z/"}],"url":"https://issues.chromium.org/issues/498986406"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:12:38Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11058"],"risk_score":3.7,"exploitability":"0.5","weighted_severity":"7.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xhmp-gae2-pfhs"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82332?format=json","vulnerability_id":"VCID-xj9n-1j9y-r7h5","summary":"Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted XML file. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11020.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11020.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11020","reference_id":"","reference_type":"","scores":[{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.04707","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.04727","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.04728","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.04714","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11020"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11020","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11020"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485252","reference_id":"2485252","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485252"},{"reference_url":"https://issues.chromium.org/issues/497440270","reference_id":"497440270","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T14:05:06Z/"}],"url":"https://issues.chromium.org/issues/497440270"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T14:05:06Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11020"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xj9n-1j9y-r7h5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82069?format=json","vulnerability_id":"VCID-xkse-8d5w-g3am","summary":"Inappropriate implementation in Navigation in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11219.json","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11219.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11219","reference_id":"","reference_type":"","scores":[{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08684","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08643","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08685","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.0869","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11219"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11219","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11219"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485310","reference_id":"2485310","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485310"},{"reference_url":"https://issues.chromium.org/issues/480074849","reference_id":"480074849","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:17:00Z/"}],"url":"https://issues.chromium.org/issues/480074849"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:17:00Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11219"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"4.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xkse-8d5w-g3am"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82214?format=json","vulnerability_id":"VCID-xpv6-7424-w3ba","summary":"Inappropriate implementation in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11200.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11200.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11200","reference_id":"","reference_type":"","scores":[{"value":"0.00014","scoring_system":"epss","scoring_elements":"0.02586","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00014","scoring_system":"epss","scoring_elements":"0.02582","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00014","scoring_system":"epss","scoring_elements":"0.02585","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00014","scoring_system":"epss","scoring_elements":"0.02576","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11200"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11200","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11200"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484971","reference_id":"2484971","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484971"},{"reference_url":"https://issues.chromium.org/issues/504579798","reference_id":"504579798","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:34:25Z/"}],"url":"https://issues.chromium.org/issues/504579798"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:34:25Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11200"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xpv6-7424-w3ba"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82381?format=json","vulnerability_id":"VCID-xrmg-9nrt-kqgn","summary":"Insufficient policy enforcement in Workers in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11197.json","reference_id":"","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11197.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11197","reference_id":"","reference_type":"","scores":[{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06234","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06242","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06264","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06253","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11197"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11197","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11197"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485174","reference_id":"2485174","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485174"},{"reference_url":"https://issues.chromium.org/issues/504073872","reference_id":"504073872","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:33:29Z/"}],"url":"https://issues.chromium.org/issues/504073872"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:33:29Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11197"],"risk_score":3.9,"exploitability":"0.5","weighted_severity":"7.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xrmg-9nrt-kqgn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82432?format=json","vulnerability_id":"VCID-xvqb-rqa1-2yf2","summary":"Inappropriate implementation in Permissions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11253.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11253.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11253","reference_id":"","reference_type":"","scores":[{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.05097","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.05115","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.05122","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.0511","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11253"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11253","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11253"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484982","reference_id":"2484982","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484982"},{"reference_url":"https://issues.chromium.org/issues/498397912","reference_id":"498397912","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T11:08:17Z/"}],"url":"https://issues.chromium.org/issues/498397912"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T11:08:17Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11253"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xvqb-rqa1-2yf2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76418?format=json","vulnerability_id":"VCID-y1k3-5sz7-skbd","summary":"Use after free in Chromoting in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via malicious network traffic. (Chromium security severity: Critical)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10893.json","reference_id":"","reference_type":"","scores":[{"value":"10.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10893.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10893","reference_id":"","reference_type":"","scores":[{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33937","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33737","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00139","scoring_system":"epss","scoring_elements":"0.33915","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10893"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10893","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10893"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485203","reference_id":"2485203","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485203"},{"reference_url":"https://issues.chromium.org/issues/513231432","reference_id":"513231432","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:07:42Z/"}],"url":"https://issues.chromium.org/issues/513231432"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:07:42Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10893"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-y1k3-5sz7-skbd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82521?format=json","vulnerability_id":"VCID-y28t-ra1x-qudu","summary":"Inappropriate implementation in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11214.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11214.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11214","reference_id":"","reference_type":"","scores":[{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.0319","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03181","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03194","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03177","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11214"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11214","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11214"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485643","reference_id":"2485643","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485643"},{"reference_url":"https://issues.chromium.org/issues/508257850","reference_id":"508257850","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:26:51Z/"}],"url":"https://issues.chromium.org/issues/508257850"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:26:51Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11214"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-y28t-ra1x-qudu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76534?format=json","vulnerability_id":"VCID-y2ug-v4z4-t7ge","summary":"Use after free in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10919.json","reference_id":"","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10919.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10919","reference_id":"","reference_type":"","scores":[{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30392","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30191","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30387","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30404","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10919"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10919","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10919"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485037","reference_id":"2485037","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485037"},{"reference_url":"https://issues.chromium.org/issues/498872764","reference_id":"498872764","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:38:56Z/"}],"url":"https://issues.chromium.org/issues/498872764"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:38:56Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10919"],"risk_score":3.9,"exploitability":"0.5","weighted_severity":"7.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-y2ug-v4z4-t7ge"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76634?format=json","vulnerability_id":"VCID-y7nb-zq4x-ufdy","summary":"Use after free in FileSystem in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10886.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10886.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10886","reference_id":"","reference_type":"","scores":[{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30392","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30191","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30387","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30404","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10886"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10886","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10886"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485159","reference_id":"2485159","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485159"},{"reference_url":"https://issues.chromium.org/issues/505096898","reference_id":"505096898","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:57:25Z/"}],"url":"https://issues.chromium.org/issues/505096898"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:57:25Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10886"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-y7nb-zq4x-ufdy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82450?format=json","vulnerability_id":"VCID-y9r5-hcx8-9ffu","summary":"Insufficient validation of untrusted input in Shortcuts in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a malicious file. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11283.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11283.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11283","reference_id":"","reference_type":"","scores":[{"value":"0.00037","scoring_system":"epss","scoring_elements":"0.11594","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00037","scoring_system":"epss","scoring_elements":"0.11552","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00037","scoring_system":"epss","scoring_elements":"0.1163","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00037","scoring_system":"epss","scoring_elements":"0.11623","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11283","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11283"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485180","reference_id":"2485180","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485180"},{"reference_url":"https://issues.chromium.org/issues/502069297","reference_id":"502069297","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:15:59Z/"}],"url":"https://issues.chromium.org/issues/502069297"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:15:59Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11283"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-y9r5-hcx8-9ffu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82452?format=json","vulnerability_id":"VCID-y9y2-pwb9-ufgt","summary":"Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to perform privilege escalation via a crafted Chrome Extension. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11308.json","reference_id":"","reference_type":"","scores":[{"value":"2.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11308.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11308","reference_id":"","reference_type":"","scores":[{"value":"0.00017","scoring_system":"epss","scoring_elements":"0.04508","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00017","scoring_system":"epss","scoring_elements":"0.04522","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00017","scoring_system":"epss","scoring_elements":"0.04529","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00017","scoring_system":"epss","scoring_elements":"0.04513","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11308"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11308","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11308"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485209","reference_id":"2485209","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485209"},{"reference_url":"https://issues.chromium.org/issues/505945112","reference_id":"505945112","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:29:31Z/"}],"url":"https://issues.chromium.org/issues/505945112"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:29:31Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11308"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-y9y2-pwb9-ufgt"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82016?format=json","vulnerability_id":"VCID-yhw2-jqv8-xyeg","summary":"Bad cast in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11077.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11077.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11077","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25099","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24898","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25097","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25114","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11077"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11077","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11077"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485190","reference_id":"2485190","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485190"},{"reference_url":"https://issues.chromium.org/issues/499908918","reference_id":"499908918","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:40:25Z/"}],"url":"https://issues.chromium.org/issues/499908918"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:40:25Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11077"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-yhw2-jqv8-xyeg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76515?format=json","vulnerability_id":"VCID-yhyy-5cjr-7fdc","summary":"Integer overflow in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10963.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10963.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10963","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25099","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24898","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25097","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25114","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10963"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10963","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10963"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485139","reference_id":"2485139","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485139"},{"reference_url":"https://issues.chromium.org/issues/511218177","reference_id":"511218177","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:19:13Z/"}],"url":"https://issues.chromium.org/issues/511218177"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:19:13Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10963"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-yhyy-5cjr-7fdc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82374?format=json","vulnerability_id":"VCID-yk4v-5dn3-bfgd","summary":"Insufficient validation of untrusted input in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scripts or HTML (UXSS) via a crafted QR code. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11205.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11205.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11205","reference_id":"","reference_type":"","scores":[{"value":"0.00038","scoring_system":"epss","scoring_elements":"0.11913","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00038","scoring_system":"epss","scoring_elements":"0.11849","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00038","scoring_system":"epss","scoring_elements":"0.11933","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00038","scoring_system":"epss","scoring_elements":"0.11934","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11205"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11205","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11205"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485642","reference_id":"2485642","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485642"},{"reference_url":"https://issues.chromium.org/issues/505290253","reference_id":"505290253","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:45:04Z/"}],"url":"https://issues.chromium.org/issues/505290253"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:45:04Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11205"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-yk4v-5dn3-bfgd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76611?format=json","vulnerability_id":"VCID-yk9r-ndxw-cbc4","summary":"Use after free in Views in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10988.json","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10988.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10988","reference_id":"","reference_type":"","scores":[{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30392","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30191","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30387","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30404","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10988"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10988","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10988"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485061","reference_id":"2485061","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485061"},{"reference_url":"https://issues.chromium.org/issues/515465685","reference_id":"515465685","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:23:54Z/"}],"url":"https://issues.chromium.org/issues/515465685"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:23:54Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10988"],"risk_score":3.7,"exploitability":"0.5","weighted_severity":"7.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-yk9r-ndxw-cbc4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82339?format=json","vulnerability_id":"VCID-ykpz-jhwk-2uhg","summary":"Insufficient validation of untrusted input in Reading Mode in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11213.json","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11213.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11213","reference_id":"","reference_type":"","scores":[{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28443","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28231","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28428","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28452","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11213"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11213","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11213"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485329","reference_id":"2485329","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485329"},{"reference_url":"https://issues.chromium.org/issues/507382702","reference_id":"507382702","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T14:18:55Z/"}],"url":"https://issues.chromium.org/issues/507382702"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T14:18:55Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11213"],"risk_score":3.7,"exploitability":"0.5","weighted_severity":"7.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ykpz-jhwk-2uhg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82526?format=json","vulnerability_id":"VCID-ynkm-kdhd-jqey","summary":"Inappropriate implementation in GPU in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11203.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11203.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11203","reference_id":"","reference_type":"","scores":[{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.0914","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09095","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09152","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11203"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11203","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11203"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485290","reference_id":"2485290","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485290"},{"reference_url":"https://issues.chromium.org/issues/505192638","reference_id":"505192638","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:47:23Z/"}],"url":"https://issues.chromium.org/issues/505192638"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:47:23Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11203"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ynkm-kdhd-jqey"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82289?format=json","vulnerability_id":"VCID-yvqa-xb9x-suh7","summary":"Inappropriate implementation in WebAPKs in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform domain spoofing via a crafted WebAPK. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11127.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11127.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11127","reference_id":"","reference_type":"","scores":[{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06251","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06259","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06281","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.0627","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11127"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11127","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11127"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485024","reference_id":"2485024","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485024"},{"reference_url":"https://issues.chromium.org/issues/501535295","reference_id":"501535295","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T15:46:47Z/"}],"url":"https://issues.chromium.org/issues/501535295"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-08T15:46:47Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11127"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-yvqa-xb9x-suh7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82237?format=json","vulnerability_id":"VCID-yxgp-mmvp-j3a6","summary":"Inappropriate implementation in Android Autofill in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11291.json","reference_id":"","reference_type":"","scores":[{"value":"9.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11291.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11291","reference_id":"","reference_type":"","scores":[{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02183","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02172","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02176","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02173","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11291"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11291","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11291"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485166","reference_id":"2485166","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485166"},{"reference_url":"https://issues.chromium.org/issues/502346855","reference_id":"502346855","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T18:58:27Z/"}],"url":"https://issues.chromium.org/issues/502346855"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T18:58:27Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11291"],"risk_score":4.2,"exploitability":"0.5","weighted_severity":"8.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-yxgp-mmvp-j3a6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82137?format=json","vulnerability_id":"VCID-z17s-2164-mba5","summary":"Inappropriate implementation in XML in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11150.json","reference_id":"","reference_type":"","scores":[{"value":"9.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11150.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11150","reference_id":"","reference_type":"","scores":[{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.0857","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08532","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08573","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00028","scoring_system":"epss","scoring_elements":"0.08575","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11150"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11150","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11150"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485031","reference_id":"2485031","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485031"},{"reference_url":"https://issues.chromium.org/issues/501740299","reference_id":"501740299","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:26:43Z/"}],"url":"https://issues.chromium.org/issues/501740299"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:26:43Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11150"],"risk_score":4.2,"exploitability":"0.5","weighted_severity":"8.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-z17s-2164-mba5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82372?format=json","vulnerability_id":"VCID-z2c8-je51-xfg4","summary":"Use after free in USB in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11188.json","reference_id":"","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11188.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11188","reference_id":"","reference_type":"","scores":[{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22495","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22306","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.225","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22513","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11188"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11188","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11188"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485224","reference_id":"2485224","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485224"},{"reference_url":"https://issues.chromium.org/issues/502959826","reference_id":"502959826","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T12:13:03Z/"}],"url":"https://issues.chromium.org/issues/502959826"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T12:13:03Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11188"],"risk_score":4.3,"exploitability":"0.5","weighted_severity":"8.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-z2c8-je51-xfg4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82389?format=json","vulnerability_id":"VCID-z2tj-1v13-wbbx","summary":"Side-channel information leakage in Forms in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11153.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11153.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11153","reference_id":"","reference_type":"","scores":[{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11184","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11161","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11226","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11218","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11153"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11153","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11153"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485215","reference_id":"2485215","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485215"},{"reference_url":"https://issues.chromium.org/issues/501779840","reference_id":"501779840","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-06-05T17:53:03Z/"}],"url":"https://issues.chromium.org/issues/501779840"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-06-05T17:53:03Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11153"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-z2tj-1v13-wbbx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82405?format=json","vulnerability_id":"VCID-z3jw-hwqm-vffs","summary":"Race in GPU in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11064.json","reference_id":"","reference_type":"","scores":[{"value":"5.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11064.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11064","reference_id":"","reference_type":"","scores":[{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09277","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09233","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09285","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09287","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11064"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11064","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11064"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485309","reference_id":"2485309","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485309"},{"reference_url":"https://issues.chromium.org/issues/499075743","reference_id":"499075743","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T18:25:10Z/"}],"url":"https://issues.chromium.org/issues/499075743"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T18:25:10Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11064"],"risk_score":2.6,"exploitability":"0.5","weighted_severity":"5.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-z3jw-hwqm-vffs"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/211457?format=json","vulnerability_id":"VCID-z3v4-y21k-4ycw","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11099.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11099.json"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11099","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11099"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485638","reference_id":"2485638","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485638"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11099"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-z3v4-y21k-4ycw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76482?format=json","vulnerability_id":"VCID-z485-nzxe-gbad","summary":"Heap buffer overflow in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10993.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10993.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10993","reference_id":"","reference_type":"","scores":[{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10866","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10842","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10901","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10897","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10993"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10993","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10993"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484981","reference_id":"2484981","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484981"},{"reference_url":"https://issues.chromium.org/issues/504160794","reference_id":"504160794","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T16:43:42Z/"}],"url":"https://issues.chromium.org/issues/504160794"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T16:43:42Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10993"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-z485-nzxe-gbad"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76584?format=json","vulnerability_id":"VCID-z63n-rjwt-zbfv","summary":"Insufficient validation of untrusted input in Dawn in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10968.json","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10968.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10968","reference_id":"","reference_type":"","scores":[{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11002","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.10974","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11036","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11032","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10968"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10968","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10968"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485041","reference_id":"2485041","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485041"},{"reference_url":"https://issues.chromium.org/issues/511758373","reference_id":"511758373","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T02:33:33Z/"}],"url":"https://issues.chromium.org/issues/511758373"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T02:33:33Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10968"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"6.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-z63n-rjwt-zbfv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82518?format=json","vulnerability_id":"VCID-z9xz-vmwj-27dh","summary":"Insufficient validation of untrusted input in Chromoting in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted Chrome Extension. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11112.json","reference_id":"","reference_type":"","scores":[{"value":"8.2","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11112.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11112","reference_id":"","reference_type":"","scores":[{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28443","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28231","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28428","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28452","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11112"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11112","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11112"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485177","reference_id":"2485177","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485177"},{"reference_url":"https://issues.chromium.org/issues/500541413","reference_id":"500541413","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T03:12:20Z/"}],"url":"https://issues.chromium.org/issues/500541413"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-06T03:12:20Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11112"],"risk_score":3.7,"exploitability":"0.5","weighted_severity":"7.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-z9xz-vmwj-27dh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82379?format=json","vulnerability_id":"VCID-za4j-741s-mbcv","summary":"Use after free in ServiceWorker in Google Chrome prior to 149.0.7827.53 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11201.json","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11201.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11201","reference_id":"","reference_type":"","scores":[{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06005","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.05995","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06019","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00021","scoring_system":"epss","scoring_elements":"0.06011","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11201"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11201","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11201"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485167","reference_id":"2485167","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485167"},{"reference_url":"https://issues.chromium.org/issues/505068950","reference_id":"505068950","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T14:51:19Z/"}],"url":"https://issues.chromium.org/issues/505068950"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T14:51:19Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11201"],"risk_score":3.3,"exploitability":"0.5","weighted_severity":"6.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-za4j-741s-mbcv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82418?format=json","vulnerability_id":"VCID-zc7p-tpqt-dfgs","summary":"Insufficient policy enforcement in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to bypass discretionary access control via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11277.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11277.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11277","reference_id":"","reference_type":"","scores":[{"value":"0.00025","scoring_system":"epss","scoring_elements":"0.07561","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00025","scoring_system":"epss","scoring_elements":"0.0754","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00025","scoring_system":"epss","scoring_elements":"0.07575","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00025","scoring_system":"epss","scoring_elements":"0.0757","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11277"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11277","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11277"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485647","reference_id":"2485647","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485647"},{"reference_url":"https://issues.chromium.org/issues/501839664","reference_id":"501839664","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:27:30Z/"}],"url":"https://issues.chromium.org/issues/501839664"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:27:30Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11277"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zc7p-tpqt-dfgs"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82340?format=json","vulnerability_id":"VCID-zdwq-h3pb-7kcb","summary":"Inappropriate implementation in FileSystem in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11078.json","reference_id":"","reference_type":"","scores":[{"value":"8.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11078.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11078","reference_id":"","reference_type":"","scores":[{"value":"0.00031","scoring_system":"epss","scoring_elements":"0.09433","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00031","scoring_system":"epss","scoring_elements":"0.09398","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00031","scoring_system":"epss","scoring_elements":"0.09452","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00031","scoring_system":"epss","scoring_elements":"0.09445","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11078"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11078","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11078"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485111","reference_id":"2485111","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485111"},{"reference_url":"https://issues.chromium.org/issues/499917177","reference_id":"499917177","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:34:38Z/"}],"url":"https://issues.chromium.org/issues/499917177"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T14:34:38Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11078"],"risk_score":3.9,"exploitability":"0.5","weighted_severity":"7.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zdwq-h3pb-7kcb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/76722?format=json","vulnerability_id":"VCID-ze2w-6zhm-qyb7","summary":"Heap buffer overflow in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10946.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-10946.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10946","reference_id":"","reference_type":"","scores":[{"value":"0.00091","scoring_system":"epss","scoring_elements":"0.2592","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00091","scoring_system":"epss","scoring_elements":"0.25722","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00091","scoring_system":"epss","scoring_elements":"0.25922","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00091","scoring_system":"epss","scoring_elements":"0.25938","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-10946"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10946","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-10946"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485044","reference_id":"2485044","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485044"},{"reference_url":"https://issues.chromium.org/issues/504587797","reference_id":"504587797","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:33:53Z/"}],"url":"https://issues.chromium.org/issues/504587797"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:33:53Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-10946"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ze2w-6zhm-qyb7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82100?format=json","vulnerability_id":"VCID-zkhm-csm3-gubx","summary":"Uninitialized Use in ANGLE in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11268.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11268.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11268","reference_id":"","reference_type":"","scores":[{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09277","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09233","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09285","published_at":"2026-06-12T12:55:00Z"},{"value":"0.0003","scoring_system":"epss","scoring_elements":"0.09287","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11268"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11268","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11268"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485214","reference_id":"2485214","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485214"},{"reference_url":"https://issues.chromium.org/issues/500528706","reference_id":"500528706","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:44:02Z/"}],"url":"https://issues.chromium.org/issues/500528706"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:44:02Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11268"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zkhm-csm3-gubx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82094?format=json","vulnerability_id":"VCID-zr4u-sbay-m7gy","summary":"Side-channel information leakage in Paint in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11289.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11289.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11289","reference_id":"","reference_type":"","scores":[{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10866","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10842","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10901","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10897","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11289"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11289","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11289"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485128","reference_id":"2485128","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485128"},{"reference_url":"https://issues.chromium.org/issues/502239897","reference_id":"502239897","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:00:44Z/"}],"url":"https://issues.chromium.org/issues/502239897"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:00:44Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11289"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zr4u-sbay-m7gy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82401?format=json","vulnerability_id":"VCID-zsa3-ppx2-suby","summary":"Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11129.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11129.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11129","reference_id":"","reference_type":"","scores":[{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.0319","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03181","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03194","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03177","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11129"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11129","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11129"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484975","reference_id":"2484975","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2484975"},{"reference_url":"https://issues.chromium.org/issues/501541962","reference_id":"501541962","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:56:23Z/"}],"url":"https://issues.chromium.org/issues/501541962"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-06T03:56:23Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11129"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zsa3-ppx2-suby"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82264?format=json","vulnerability_id":"VCID-zvnd-npy5-ckfn","summary":"Use after free in Canvas in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11136.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11136.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11136","reference_id":"","reference_type":"","scores":[{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25099","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.24898","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25097","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00086","scoring_system":"epss","scoring_elements":"0.25114","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11136"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11136","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11136"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485192","reference_id":"2485192","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485192"},{"reference_url":"https://issues.chromium.org/issues/501646327","reference_id":"501646327","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:24:12Z/"}],"url":"https://issues.chromium.org/issues/501646327"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T00:24:12Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11136"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zvnd-npy5-ckfn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82425?format=json","vulnerability_id":"VCID-zvnj-18sb-xfb6","summary":"Insufficient validation of untrusted input in Cast in Google Chrome prior to 149.0.7827.53 allowed an attacker on the local network segment to perform privilege escalation via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11241.json","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11241.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11241","reference_id":"","reference_type":"","scores":[{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.04101","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.04093","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.04111","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11241"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11241","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11241"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485317","reference_id":"2485317","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485317"},{"reference_url":"https://issues.chromium.org/issues/497203741","reference_id":"497203741","reference_type":"","scores":[{"value":"8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:41:09Z/"}],"url":"https://issues.chromium.org/issues/497203741"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T01:41:09Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11241"],"risk_score":3.3,"exploitability":"0.5","weighted_severity":"6.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zvnj-18sb-xfb6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82171?format=json","vulnerability_id":"VCID-zvp5-az19-u7er","summary":"Insufficient validation of untrusted input in GPU in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11045.json","reference_id":"","reference_type":"","scores":[{"value":"5.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11045.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11045","reference_id":"","reference_type":"","scores":[{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.18757","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.18602","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.18764","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00058","scoring_system":"epss","scoring_elements":"0.18782","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11045"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11045","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11045"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485344","reference_id":"2485344","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485344"},{"reference_url":"https://issues.chromium.org/issues/498727111","reference_id":"498727111","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:08:34Z/"}],"url":"https://issues.chromium.org/issues/498727111"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T19:08:34Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11045"],"risk_score":2.2,"exploitability":"0.5","weighted_severity":"4.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zvp5-az19-u7er"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82258?format=json","vulnerability_id":"VCID-zw31-d1yn-aycw","summary":"Type Confusion in GPU in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11052.json","reference_id":"","reference_type":"","scores":[{"value":"9.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11052.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11052","reference_id":"","reference_type":"","scores":[{"value":"0.00074","scoring_system":"epss","scoring_elements":"0.22753","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00074","scoring_system":"epss","scoring_elements":"0.22565","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00074","scoring_system":"epss","scoring_elements":"0.2276","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00074","scoring_system":"epss","scoring_elements":"0.22773","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11052"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11052","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11052"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485349","reference_id":"2485349","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485349"},{"reference_url":"https://issues.chromium.org/issues/498834967","reference_id":"498834967","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T18:47:43Z/"}],"url":"https://issues.chromium.org/issues/498834967"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"9.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T18:47:43Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11052"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zw31-d1yn-aycw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82538?format=json","vulnerability_id":"VCID-zxcj-jvfe-33bd","summary":"Inappropriate implementation in CSS in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11155.json","reference_id":"","reference_type":"","scores":[{"value":"7.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11155.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11155","reference_id":"","reference_type":"","scores":[{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02326","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02333","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00013","scoring_system":"epss","scoring_elements":"0.02331","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11155"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11155","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11155"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485346","reference_id":"2485346","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485346"},{"reference_url":"https://issues.chromium.org/issues/501801823","reference_id":"501801823","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T17:48:56Z/"}],"url":"https://issues.chromium.org/issues/501801823"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T17:48:56Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11155"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zxcj-jvfe-33bd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/82226?format=json","vulnerability_id":"VCID-zzu8-8bw1-bycv","summary":"Integer overflow in Fonts in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Low)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11299.json","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-11299.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11299","reference_id":"","reference_type":"","scores":[{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10866","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10842","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10901","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00035","scoring_system":"epss","scoring_elements":"0.10897","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-11299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-11299"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485183","reference_id":"2485183","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485183"},{"reference_url":"https://issues.chromium.org/issues/502598424","reference_id":"502598424","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:23:58Z/"}],"url":"https://issues.chromium.org/issues/502598424"},{"reference_url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html","reference_id":"stable-channel-update-for-desktop.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-06-05T15:23:58Z/"}],"url":"https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27186?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27192?format=json","purl":"pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.137-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31162?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31168?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/31165?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.53-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/27190?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.102-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.102-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1088670?format=json","purl":"pkg:deb/debian/chromium@149.0.7827.114-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.114-1%3Fdistro=trixie"}],"aliases":["CVE-2026-11299"],"risk_score":1.9,"exploitability":"0.5","weighted_severity":"3.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zzu8-8bw1-bycv"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@149.0.7827.53-1~deb13u1%3Fdistro=trixie"}