CVE-2026-6317
- EPSS 0.34%
- Veröffentlicht 15.04.2026 19:04:57
- Zuletzt bearbeitet 26.05.2026 19:16:31
Use after free in Cast in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)
CVE-2026-6362
- EPSS 0.22%
- Veröffentlicht 15.04.2026 19:04:57
- Zuletzt bearbeitet 26.05.2026 18:16:54
Use after free in Codecs in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to potentially perform out of bounds memory access via a crafted video file. (Chromium security severity: High)
CVE-2026-6363
- EPSS 0.28%
- Veröffentlicht 15.04.2026 19:04:57
- Zuletzt bearbeitet 27.05.2026 18:16:31
Type Confusion in V8 in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-6316
- EPSS 0.32%
- Veröffentlicht 15.04.2026 19:04:56
- Zuletzt bearbeitet 27.05.2026 18:16:30
Use after free in Forms in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-6361
- EPSS 0.31%
- Veröffentlicht 15.04.2026 19:04:56
- Zuletzt bearbeitet 26.05.2026 19:16:31
Heap buffer overflow in PDFium in Google Chrome on Windows prior to 147.0.7727.101 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code inside a sandbox via a crafted PDF file. (Chromium security ...
CVE-2026-6314
- EPSS 0.27%
- Veröffentlicht 15.04.2026 19:04:55
- Zuletzt bearbeitet 26.05.2026 19:16:31
Out of bounds write in GPU in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the GPU process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-6315
- EPSS 0.32%
- Veröffentlicht 15.04.2026 19:04:55
- Zuletzt bearbeitet 26.05.2026 18:16:54
Use after free in Permissions in Google Chrome on Android prior to 147.0.7727.101 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)
CVE-2026-6312
- EPSS 0.22%
- Veröffentlicht 15.04.2026 19:04:54
- Zuletzt bearbeitet 10.05.2026 14:16:51
Insufficient policy enforcement in Passwords in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)
CVE-2026-6313
- EPSS 0.21%
- Veröffentlicht 15.04.2026 19:04:54
- Zuletzt bearbeitet 17.04.2026 17:26:05
Insufficient policy enforcement in CORS in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)
CVE-2026-6310
- EPSS 0.25%
- Veröffentlicht 15.04.2026 19:04:53
- Zuletzt bearbeitet 27.05.2026 18:16:29
Use after free in Dawn in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)