CVE-2026-5874
- EPSS 0.25%
- Veröffentlicht 08.04.2026 21:20:46
- Zuletzt bearbeitet 13.04.2026 17:57:38
Use after free in PrivateAI in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-5875
- EPSS 0.19%
- Veröffentlicht 08.04.2026 21:20:46
- Zuletzt bearbeitet 13.04.2026 17:55:24
Policy bypass in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-5872
- EPSS 0.3%
- Veröffentlicht 08.04.2026 21:20:45
- Zuletzt bearbeitet 13.04.2026 18:06:34
Use after free in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-5873
- EPSS 0.38%
- Veröffentlicht 08.04.2026 21:20:45
- Zuletzt bearbeitet 13.04.2026 18:06:13
Out of bounds read and write in V8 in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-5870
- EPSS 0.3%
- Veröffentlicht 08.04.2026 21:20:44
- Zuletzt bearbeitet 13.04.2026 18:08:33
Integer overflow in Skia in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-5871
- EPSS 0.33%
- Veröffentlicht 08.04.2026 21:20:44
- Zuletzt bearbeitet 13.04.2026 16:18:53
Type Confusion in V8 in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-5867
- EPSS 0.29%
- Veröffentlicht 08.04.2026 21:20:43
- Zuletzt bearbeitet 26.05.2026 19:16:29
Heap buffer overflow in WebML in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: High)
CVE-2026-5868
- EPSS 0.34%
- Veröffentlicht 08.04.2026 21:20:43
- Zuletzt bearbeitet 13.04.2026 18:10:29
Heap buffer overflow in ANGLE in Google Chrome on Mac prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-5869
- EPSS 0.24%
- Veröffentlicht 08.04.2026 21:20:43
- Zuletzt bearbeitet 14.04.2026 13:16:23
Heap buffer overflow in WebML in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: High)
CVE-2026-5865
- EPSS 0.42%
- Veröffentlicht 08.04.2026 21:20:42
- Zuletzt bearbeitet 26.05.2026 19:16:29
Type Confusion in V8 in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)