CVE-2026-9962
- EPSS 0.36%
- Veröffentlicht 28.05.2026 22:25:38
- Zuletzt bearbeitet 29.05.2026 16:17:15
Use after free in WebRTC in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-9963
- EPSS 0.28%
- Veröffentlicht 28.05.2026 22:25:38
- Zuletzt bearbeitet 29.05.2026 16:06:09
Uninitialized Use in iOS in Google Chrome on iOS prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity:...
CVE-2026-9964
- EPSS 0.23%
- Veröffentlicht 28.05.2026 22:25:38
- Zuletzt bearbeitet 29.05.2026 20:33:33
Use after free in Bluetooth in Google Chrome on Mac prior to 148.0.7778.216 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension. (Chromium security severity: High)
CVE-2026-9958
- EPSS 0.22%
- Veröffentlicht 28.05.2026 22:25:37
- Zuletzt bearbeitet 01.06.2026 18:28:51
Use after free in PDFium in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: High)
CVE-2026-9959
- EPSS 0.14%
- Veröffentlicht 28.05.2026 22:25:37
- Zuletzt bearbeitet 29.05.2026 20:38:45
Race in WebRTC in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)
CVE-2026-9960
- EPSS 0.24%
- Veröffentlicht 28.05.2026 22:25:37
- Zuletzt bearbeitet 29.05.2026 16:18:15
Integer overflow in PDFium in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted font file. (Chromium security severity: High)
CVE-2026-9961
- EPSS 0.24%
- Veröffentlicht 28.05.2026 22:25:37
- Zuletzt bearbeitet 29.05.2026 20:35:20
Use after free in SurfaceCapture in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2026-9955
- EPSS 0.19%
- Veröffentlicht 28.05.2026 22:25:36
- Zuletzt bearbeitet 01.06.2026 18:29:14
Inappropriate implementation in iOS in Google Chrome on iOS prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)
CVE-2026-9956
- EPSS 0.26%
- Veröffentlicht 28.05.2026 22:25:36
- Zuletzt bearbeitet 29.05.2026 16:20:09
Use after free in iOS in Google Chrome on iOS prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)
CVE-2026-9957
- EPSS 0.28%
- Veröffentlicht 28.05.2026 22:25:36
- Zuletzt bearbeitet 29.05.2026 16:19:18
Use after free in PDF in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. (Chromium security severity: High)