CVE-2026-8019
- EPSS 0.16%
- Veröffentlicht 06.05.2026 18:13:15
- Zuletzt bearbeitet 07.05.2026 15:26:05
Insufficient policy enforcement in WebApp in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-8020
- EPSS 0.21%
- Veröffentlicht 06.05.2026 18:13:15
- Zuletzt bearbeitet 07.05.2026 15:21:55
Uninitialized Use in GPU in Google Chrome on Android prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security...
CVE-2026-8016
- EPSS 0.31%
- Veröffentlicht 06.05.2026 18:13:14
- Zuletzt bearbeitet 07.05.2026 15:29:36
Use after free in WebRTC in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-8017
- EPSS 0.15%
- Veröffentlicht 06.05.2026 18:13:14
- Zuletzt bearbeitet 07.05.2026 15:29:05
Side-channel information leakage in Media in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-8018
- EPSS 0.26%
- Veröffentlicht 06.05.2026 18:13:14
- Zuletzt bearbeitet 08.05.2026 20:16:33
Insufficient policy enforcement in DevTools in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to potentially perform a sandbox escape via malicious network traffic. (Chromium security severity: Low)
CVE-2026-8013
- EPSS 0.16%
- Veröffentlicht 06.05.2026 18:13:13
- Zuletzt bearbeitet 07.05.2026 15:19:30
Insufficient validation of untrusted input in FedCM in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-8014
- EPSS 0.16%
- Veröffentlicht 06.05.2026 18:13:13
- Zuletzt bearbeitet 07.05.2026 15:16:42
Inappropriate implementation in Preload in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-8015
- EPSS 0.16%
- Veröffentlicht 06.05.2026 18:13:13
- Zuletzt bearbeitet 07.05.2026 15:30:17
Inappropriate implementation in Media in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-8011
- EPSS 0.16%
- Veröffentlicht 06.05.2026 18:13:12
- Zuletzt bearbeitet 07.05.2026 15:16:58
Insufficient policy enforcement in Search in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-8012
- EPSS 0.14%
- Veröffentlicht 06.05.2026 18:13:12
- Zuletzt bearbeitet 07.05.2026 15:19:48
Inappropriate implementation in MHTML in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. (Chromium security severity: Low)