CVE-2026-7343
- EPSS 0.18%
- Veröffentlicht 28.04.2026 22:35:54
- Zuletzt bearbeitet 30.04.2026 16:36:22
Use after free in Views in Google Chrome on Windows prior to 147.0.7727.138 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)
CVE-2026-7344
- EPSS 0.24%
- Veröffentlicht 28.04.2026 22:35:54
- Zuletzt bearbeitet 30.04.2026 16:36:12
Use after free in Accessibility in Google Chrome on Windows prior to 147.0.7727.138 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Criti...
CVE-2026-7361
- EPSS 0.26%
- Veröffentlicht 28.04.2026 22:35:53
- Zuletzt bearbeitet 30.04.2026 16:37:31
Use after free in iOS in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)
CVE-2026-7363
- EPSS 0.31%
- Veröffentlicht 28.04.2026 22:35:53
- Zuletzt bearbeitet 30.04.2026 16:37:25
Use after free in Canvas in Google Chrome on Linux, ChromeOS prior to 147.0.7727.138 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Critical)
CVE-2026-6921
- EPSS 0.19%
- Veröffentlicht 23.04.2026 16:12:24
- Zuletzt bearbeitet 27.05.2026 18:16:34
Race in GPU in Google Chrome on Windows prior to 147.0.7727.117 allowed a remote attacker to potentially perform a sandbox escape via a crafted video file. (Chromium security severity: Medium)
CVE-2026-6920
- EPSS 0.21%
- Veröffentlicht 23.04.2026 16:12:23
- Zuletzt bearbeitet 26.05.2026 18:16:55
Out of bounds read in GPU in Google Chrome on Android prior to 147.0.7727.117 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-6919
- EPSS 0.29%
- Veröffentlicht 23.04.2026 16:12:22
- Zuletzt bearbeitet 26.05.2026 19:16:33
Use after free in DevTools in Google Chrome prior to 147.0.7727.117 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-6364
- EPSS 0.23%
- Veröffentlicht 15.04.2026 19:04:59
- Zuletzt bearbeitet 26.05.2026 19:16:32
Out of bounds read in Skia in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted file. (Chromium security severity: Medium)
CVE-2026-6318
- EPSS 0.33%
- Veröffentlicht 15.04.2026 19:04:58
- Zuletzt bearbeitet 27.05.2026 18:16:31
Use after free in Codecs in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-6319
- EPSS 0.29%
- Veröffentlicht 15.04.2026 19:04:58
- Zuletzt bearbeitet 27.05.2026 18:16:31
Use after free in Payments in Google Chrome on Android prior to 147.0.7727.101 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. (Chromium security severity: Medium)