CVE-2026-8002
- EPSS 0.24%
- Veröffentlicht 06.05.2026 18:13:08
- Zuletzt bearbeitet 07.05.2026 14:03:50
Use after free in Audio in Google Chrome on Mac prior to 148.0.7778.96 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-7998
- EPSS 0.19%
- Veröffentlicht 06.05.2026 18:13:07
- Zuletzt bearbeitet 07.05.2026 13:40:01
Insufficient validation of untrusted input in Dialog in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-7999
- EPSS 0.16%
- Veröffentlicht 06.05.2026 18:13:07
- Zuletzt bearbeitet 07.05.2026 13:39:23
Inappropriate implementation in V8 in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-7995
- EPSS 0.22%
- Veröffentlicht 06.05.2026 18:13:06
- Zuletzt bearbeitet 06.05.2026 23:19:07
Out of bounds read in AdFilter in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-7996
- EPSS 0.17%
- Veröffentlicht 06.05.2026 18:13:06
- Zuletzt bearbeitet 06.05.2026 23:18:54
Insufficient validation of untrusted input in SSL in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-7997
- EPSS 0.08%
- Veröffentlicht 06.05.2026 18:13:06
- Zuletzt bearbeitet 06.05.2026 23:18:39
Insufficient validation of untrusted input in Updater in Google Chrome on Mac prior to 148.0.7778.96 allowed a local attacker to perform OS-level privilege escalation via a malicious file. (Chromium security severity: Low)
CVE-2026-7992
- EPSS 0.22%
- Veröffentlicht 06.05.2026 18:13:05
- Zuletzt bearbeitet 06.05.2026 23:19:45
Insufficient validation of untrusted input in UI in Google Chrome on Linux, ChromeOS prior to 148.0.7778.96 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. (Chromium ...
CVE-2026-7993
- EPSS 0.19%
- Veröffentlicht 06.05.2026 18:13:05
- Zuletzt bearbeitet 06.05.2026 23:19:28
Insufficient validation of untrusted input in Payments in Google Chrome on Android prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. (Chro...
CVE-2026-7994
- EPSS 0.11%
- Veröffentlicht 06.05.2026 18:13:05
- Zuletzt bearbeitet 06.05.2026 23:19:18
Inappropriate implementation in Chromoting in Google Chrome on Windows prior to 148.0.7778.96 allowed a local attacker to perform OS-level privilege escalation via a malicious file. (Chromium security severity: Medium)
CVE-2026-7990
- EPSS 0.11%
- Veröffentlicht 06.05.2026 18:13:04
- Zuletzt bearbeitet 06.05.2026 23:20:16
Insufficient validation of untrusted input in Updater in Google Chrome on Windows prior to 148.0.7778.96 allowed a local attacker to perform OS-level privilege escalation via a malicious file. (Chromium security severity: Medium)