CVE-2026-9876
- EPSS 0.24%
- Veröffentlicht 28.05.2026 22:25:08
- Zuletzt bearbeitet 01.06.2026 18:44:53
Use after free in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)
CVE-2026-9872
- EPSS 0.33%
- Veröffentlicht 28.05.2026 22:25:07
- Zuletzt bearbeitet 01.06.2026 18:45:09
Out of bounds write in GPU in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)
CVE-2026-9873
- EPSS 0.3%
- Veröffentlicht 28.05.2026 22:25:07
- Zuletzt bearbeitet 29.05.2026 17:05:13
Use after free in Network in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Critical)
CVE-2026-9124
- EPSS 0.26%
- Veröffentlicht 20.05.2026 19:12:48
- Zuletzt bearbeitet 05.06.2026 17:24:44
Insufficient validation of untrusted input in Input in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-9122
- EPSS 0.27%
- Veröffentlicht 20.05.2026 19:12:47
- Zuletzt bearbeitet 05.06.2026 17:25:33
Out of bounds read in GPU in Google Chrome on Mac prior to 148.0.7778.179 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-9123
- EPSS 0.19%
- Veröffentlicht 20.05.2026 19:12:47
- Zuletzt bearbeitet 05.06.2026 17:25:17
Heap buffer overflow in Chromecast in Google Chrome on Android, Linux, ChromeOS prior to 148.0.7778.179 allowed a local attacker to execute arbitrary code inside a sandbox via malicious network traffic. (Chromium security severity: Medium)
CVE-2026-9121
- EPSS 0.33%
- Veröffentlicht 20.05.2026 19:12:46
- Zuletzt bearbeitet 21.05.2026 16:35:19
Out of bounds read in GPU in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-9126
- EPSS 0.4%
- Veröffentlicht 20.05.2026 19:12:46
- Zuletzt bearbeitet 05.06.2026 17:20:47
Use after free in DOM in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-9119
- EPSS 0.54%
- Veröffentlicht 20.05.2026 19:12:45
- Zuletzt bearbeitet 21.05.2026 16:44:34
Heap buffer overflow in WebRTC in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-9120
- EPSS 0.5%
- Veröffentlicht 20.05.2026 19:12:45
- Zuletzt bearbeitet 21.05.2026 16:41:34
Use after free in WebRTC in Google Chrome prior to 148.0.7778.179 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)