CVE-2026-5866
- EPSS 0.3%
- Veröffentlicht 08.04.2026 21:20:42
- Zuletzt bearbeitet 13.04.2026 17:20:46
Use after free in Media in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-5862
- EPSS 0.3%
- Veröffentlicht 08.04.2026 21:20:41
- Zuletzt bearbeitet 13.04.2026 17:23:10
Inappropriate implementation in V8 in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-5863
- EPSS 0.29%
- Veröffentlicht 08.04.2026 21:20:41
- Zuletzt bearbeitet 10.05.2026 21:16:29
Inappropriate implementation in V8 in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-5864
- EPSS 0.24%
- Veröffentlicht 08.04.2026 21:20:41
- Zuletzt bearbeitet 14.04.2026 13:16:22
Heap buffer overflow in WebAudio in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: High)
CVE-2026-5860
- EPSS 0.48%
- Veröffentlicht 08.04.2026 21:20:40
- Zuletzt bearbeitet 26.05.2026 19:16:29
Use after free in WebRTC in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-5861
- EPSS 0.3%
- Veröffentlicht 08.04.2026 21:20:40
- Zuletzt bearbeitet 13.04.2026 17:23:28
Use after free in V8 in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-5859
- EPSS 0.35%
- Veröffentlicht 08.04.2026 21:20:39
- Zuletzt bearbeitet 13.04.2026 17:23:57
Integer overflow in WebML in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)
CVE-2026-5858
- EPSS 0.61%
- Veröffentlicht 08.04.2026 21:20:38
- Zuletzt bearbeitet 13.04.2026 17:24:19
Heap buffer overflow in WebML in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical)
CVE-2026-5291
- EPSS 0.19%
- Veröffentlicht 01.04.2026 04:41:37
- Zuletzt bearbeitet 01.04.2026 16:40:46
Inappropriate implementation in WebGL in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-5292
- EPSS 0.25%
- Veröffentlicht 01.04.2026 04:41:37
- Zuletzt bearbeitet 01.04.2026 17:07:20
Out of bounds read in WebCodecs in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Medium)