CVE-2026-5887
- EPSS 0.19%
- Veröffentlicht 08.04.2026 21:20:51
- Zuletzt bearbeitet 13.04.2026 21:17:32
Insufficient validation of untrusted input in Downloads in Google Chrome on Windows prior to 147.0.7727.55 allowed a remote attacker to bypass download restrictions via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-5883
- EPSS 0.29%
- Veröffentlicht 08.04.2026 21:20:50
- Zuletzt bearbeitet 02.06.2026 17:16:38
Use after free in Media in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-5884
- EPSS 0.29%
- Veröffentlicht 08.04.2026 21:20:50
- Zuletzt bearbeitet 13.04.2026 21:19:48
Insufficient validation of untrusted input in Media in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security seve...
CVE-2026-5880
- EPSS 0.19%
- Veröffentlicht 08.04.2026 21:20:49
- Zuletzt bearbeitet 14.04.2026 20:01:46
Insufficient policy enforcement in browser UI in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who had compromised the renderer process to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. (Chromium security severi...
CVE-2026-5881
- EPSS 0.22%
- Veröffentlicht 08.04.2026 21:20:49
- Zuletzt bearbeitet 14.04.2026 20:01:36
Policy bypass in LocalNetworkAccess in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-5882
- EPSS 0.19%
- Veröffentlicht 08.04.2026 21:20:49
- Zuletzt bearbeitet 14.04.2026 20:01:27
Incorrect security UI in Fullscreen in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-5878
- EPSS 0.19%
- Veröffentlicht 08.04.2026 21:20:48
- Zuletzt bearbeitet 14.04.2026 20:02:04
Incorrect security UI in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-5879
- EPSS 0.3%
- Veröffentlicht 08.04.2026 21:20:48
- Zuletzt bearbeitet 26.05.2026 19:16:30
Insufficient validation of untrusted input in ANGLE in Google Chrome on Mac prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-5876
- EPSS 0.25%
- Veröffentlicht 08.04.2026 21:20:47
- Zuletzt bearbeitet 13.04.2026 17:40:36
Side-channel information leakage in Navigation in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-5877
- EPSS 0.3%
- Veröffentlicht 08.04.2026 21:20:47
- Zuletzt bearbeitet 14.04.2026 20:02:13
Use after free in Navigation in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)