CVE-2026-5283
- EPSS 0.2%
- Veröffentlicht 01.04.2026 04:41:33
- Zuletzt bearbeitet 01.04.2026 16:35:30
Inappropriate implementation in ANGLE in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)
CVE-2026-5280
- EPSS 0.4%
- Veröffentlicht 01.04.2026 04:41:32
- Zuletzt bearbeitet 02.04.2026 00:16:24
Use after free in WebCodecs in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-5281
- EPSS 5.04%
- Veröffentlicht 01.04.2026 04:41:32
- Zuletzt bearbeitet 02.04.2026 13:16:01
Use after free in Dawn in Google Chrome prior to 146.0.7680.178 allowed a remote attacker who had compromised the renderer process to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)
CVE-2026-5276
- EPSS 0.19%
- Veröffentlicht 01.04.2026 04:41:31
- Zuletzt bearbeitet 01.04.2026 16:40:07
Insufficient policy enforcement in WebUSB in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: High)
CVE-2026-5277
- EPSS 0.26%
- Veröffentlicht 01.04.2026 04:41:31
- Zuletzt bearbeitet 01.04.2026 16:40:22
Integer overflow in ANGLE in Google Chrome on Windows prior to 146.0.7680.178 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: High)
CVE-2026-5278
- EPSS 0.41%
- Veröffentlicht 01.04.2026 04:41:31
- Zuletzt bearbeitet 01.04.2026 17:09:45
Use after free in Web MIDI in Google Chrome on Android prior to 146.0.7680.178 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)
CVE-2026-5279
- EPSS 0.34%
- Veröffentlicht 01.04.2026 04:41:31
- Zuletzt bearbeitet 02.04.2026 00:16:24
Object corruption in V8 in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-5275
- EPSS 0.35%
- Veröffentlicht 01.04.2026 04:41:30
- Zuletzt bearbeitet 01.04.2026 16:40:00
Heap buffer overflow in ANGLE in Google Chrome on Mac prior to 146.0.7680.178 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)
CVE-2026-5274
- EPSS 0.34%
- Veröffentlicht 01.04.2026 04:41:29
- Zuletzt bearbeitet 01.04.2026 16:39:51
Integer overflow in Codecs in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High)
CVE-2026-4680
- EPSS 0.42%
- Veröffentlicht 24.03.2026 00:24:43
- Zuletzt bearbeitet 24.03.2026 17:50:13
Use after free in FedCM in Google Chrome prior to 146.0.7680.165 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)