CVE-2026-5913
- EPSS 0.21%
- Veröffentlicht 08.04.2026 21:21:06
- Zuletzt bearbeitet 29.04.2026 16:16:27
Out of bounds read in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-5914
- EPSS 0.16%
- Veröffentlicht 08.04.2026 21:21:06
- Zuletzt bearbeitet 29.04.2026 16:16:27
Type Confusion in CSS in Google Chrome prior to 147.0.7727.55 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. (Chromium security severity: Low)
CVE-2026-5915
- EPSS 0.19%
- Veröffentlicht 08.04.2026 21:21:06
- Zuletzt bearbeitet 29.04.2026 16:16:27
Insufficient validation of untrusted input in WebML in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-5911
- EPSS 0.17%
- Veröffentlicht 08.04.2026 21:21:05
- Zuletzt bearbeitet 10.05.2026 21:16:29
Policy bypass in ServiceWorkers in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to bypass content security policy via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-5912
- EPSS 0.22%
- Veröffentlicht 08.04.2026 21:21:05
- Zuletzt bearbeitet 29.04.2026 16:16:27
Integer overflow in WebRTC in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-5909
- EPSS 0.2%
- Veröffentlicht 08.04.2026 21:21:04
- Zuletzt bearbeitet 29.04.2026 16:16:27
Integer overflow in Media in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to potentially exploit heap corruption via a crafted video file. (Chromium security severity: Low)
CVE-2026-5910
- EPSS 0.2%
- Veröffentlicht 08.04.2026 21:21:04
- Zuletzt bearbeitet 29.04.2026 16:16:27
Integer overflow in Media in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to potentially exploit heap corruption via a crafted video file. (Chromium security severity: Low)
CVE-2026-5907
- EPSS 0.19%
- Veröffentlicht 08.04.2026 21:21:03
- Zuletzt bearbeitet 14.04.2026 14:46:10
Insufficient data validation in Media in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform an out of bounds memory read via a crafted video file. (Chromium security severity: Low)
CVE-2026-5908
- EPSS 0.2%
- Veröffentlicht 08.04.2026 21:21:03
- Zuletzt bearbeitet 29.04.2026 16:16:26
Integer overflow in Media in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to potentially exploit heap corruption via a crafted video file. (Chromium security severity: Low)
CVE-2026-5906
- EPSS 0.16%
- Veröffentlicht 08.04.2026 21:21:02
- Zuletzt bearbeitet 14.04.2026 14:51:10
Incorrect security UI in Omnibox in Google Chrome on Android prior to 147.0.7727.55 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. (Chromium security severity: Low)