CVE-2026-9894
- EPSS 0.21%
- Veröffentlicht 28.05.2026 22:25:15
- Zuletzt bearbeitet 03.06.2026 02:20:49
Use after free in GPU in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-9895
- EPSS 0.21%
- Veröffentlicht 28.05.2026 22:25:15
- Zuletzt bearbeitet 03.06.2026 02:20:35
Out of bounds read in GPU in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-9890
- EPSS 0.21%
- Veröffentlicht 28.05.2026 22:25:14
- Zuletzt bearbeitet 03.06.2026 02:25:40
Use after free in XR in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)
- EPSS 0.25%
- Veröffentlicht 28.05.2026 22:25:14
- Zuletzt bearbeitet 29.05.2026 17:15:18
Use after free in Extensions in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted Chrome Extension. (Chromium security severity: Critical)
CVE-2026-9892
- EPSS 0.21%
- Veröffentlicht 28.05.2026 22:25:14
- Zuletzt bearbeitet 01.06.2026 18:44:31
Inappropriate implementation in Skia in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: ...
CVE-2026-9888
- EPSS 0.21%
- Veröffentlicht 28.05.2026 22:25:13
- Zuletzt bearbeitet 01.06.2026 18:44:48
Use after free in WebView in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)
CVE-2026-9889
- EPSS 0.21%
- Veröffentlicht 28.05.2026 22:25:13
- Zuletzt bearbeitet 01.06.2026 18:44:39
Out of bounds read and write in Dawn in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)
CVE-2026-9885
- EPSS 0.23%
- Veröffentlicht 28.05.2026 22:25:12
- Zuletzt bearbeitet 03.06.2026 02:29:36
Insufficient validation of untrusted input in UI in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security se...
CVE-2026-9886
- EPSS 0.24%
- Veröffentlicht 28.05.2026 22:25:12
- Zuletzt bearbeitet 03.06.2026 02:29:12
Use after free in Base in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)
CVE-2026-9887
- EPSS 0.22%
- Veröffentlicht 28.05.2026 22:25:12
- Zuletzt bearbeitet 29.05.2026 18:40:35
Use after free in Proxy in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code via a crafted PAC script. (Chromium security severity: Critical)