CVE-2026-5897
- EPSS 0.15%
- Veröffentlicht 08.04.2026 21:20:57
- Zuletzt bearbeitet 13.04.2026 21:17:16
Incorrect security UI in Downloads in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-5894
- EPSS 0.16%
- Veröffentlicht 08.04.2026 21:20:56
- Zuletzt bearbeitet 14.04.2026 17:06:45
Inappropriate implementation in PDF in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-5893
- EPSS 0.15%
- Veröffentlicht 08.04.2026 21:20:55
- Zuletzt bearbeitet 13.04.2026 21:17:51
Race in V8 in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-5892
- EPSS 0.17%
- Veröffentlicht 08.04.2026 21:20:54
- Zuletzt bearbeitet 14.04.2026 17:06:16
Insufficient policy enforcement in PWAs in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who had compromised the renderer process to install a PWA without user consent via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-5890
- EPSS 0.18%
- Veröffentlicht 08.04.2026 21:20:53
- Zuletzt bearbeitet 02.06.2026 17:16:38
Race in WebCodecs in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-5891
- EPSS 0.21%
- Veröffentlicht 08.04.2026 21:20:53
- Zuletzt bearbeitet 14.04.2026 11:44:52
Insufficient policy enforcement in browser UI in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-5888
- EPSS 0.26%
- Veröffentlicht 08.04.2026 21:20:52
- Zuletzt bearbeitet 13.04.2026 21:17:24
Uninitialized Use in WebCodecs in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-5889
- EPSS 0.1%
- Veröffentlicht 08.04.2026 21:20:52
- Zuletzt bearbeitet 14.04.2026 11:45:17
Cryptographic Flaw in PDFium in Google Chrome prior to 147.0.7727.55 allowed an attacker to read potentially sensitive information from encrypted PDFs via a brute-force attack. (Chromium security severity: Medium)
CVE-2026-5885
- EPSS 0.24%
- Veröffentlicht 08.04.2026 21:20:51
- Zuletzt bearbeitet 13.04.2026 21:17:41
Insufficient validation of untrusted input in WebML in Google Chrome on Windows prior to 147.0.7727.55 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Med...
CVE-2026-5886
- EPSS 0.22%
- Veröffentlicht 08.04.2026 21:20:51
- Zuletzt bearbeitet 13.04.2026 21:19:35
Out of bounds read in WebAudio in Google Chrome on Mac prior to 147.0.7727.55 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)