CVE-2026-3936
- EPSS 0.28%
- Veröffentlicht 11.03.2026 22:04:14
- Zuletzt bearbeitet 13.03.2026 20:14:58
Use after free in WebView in Google Chrome on Android prior to 146.0.7680.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-3937
- EPSS 0.19%
- Veröffentlicht 11.03.2026 22:04:14
- Zuletzt bearbeitet 16.03.2026 18:12:19
Incorrect security UI in Downloads in Google Chrome on Android prior to 146.0.7680.71 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-3934
- EPSS 0.19%
- Veröffentlicht 11.03.2026 22:04:13
- Zuletzt bearbeitet 16.03.2026 14:19:53
Insufficient policy enforcement in ChromeDriver in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-3935
- EPSS 0.16%
- Veröffentlicht 11.03.2026 22:04:13
- Zuletzt bearbeitet 16.03.2026 18:14:28
Incorrect security UI in WebAppInstalls in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-3931
- EPSS 0.25%
- Veröffentlicht 11.03.2026 22:04:12
- Zuletzt bearbeitet 13.03.2026 15:41:38
Heap buffer overflow in Skia in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-3932
- EPSS 0.18%
- Veröffentlicht 11.03.2026 22:04:12
- Zuletzt bearbeitet 16.03.2026 14:19:53
Insufficient policy enforcement in PDF in Google Chrome on Android prior to 146.0.7680.71 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-3930
- EPSS 0.16%
- Veröffentlicht 11.03.2026 22:04:11
- Zuletzt bearbeitet 16.03.2026 14:19:53
Unsafe navigation in Navigation in Google Chrome on iOS prior to 146.0.7680.71 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-3928
- EPSS 0.12%
- Veröffentlicht 11.03.2026 22:04:10
- Zuletzt bearbeitet 17.03.2026 13:10:14
Insufficient policy enforcement in Extensions in Google Chrome prior to 146.0.7680.71 allowed an attacker who convinced a user to install a malicious extension to perform UI spoofing via a crafted Chrome Extension. (Chromium security severity: Medium...
CVE-2026-3929
- EPSS 0.16%
- Veröffentlicht 11.03.2026 22:04:10
- Zuletzt bearbeitet 13.03.2026 15:41:23
Side-channel information leakage in ResourceTiming in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-3926
- EPSS 0.23%
- Veröffentlicht 11.03.2026 22:04:09
- Zuletzt bearbeitet 13.03.2026 15:41:12
Out of bounds read in V8 in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Medium)