Google

Chrome

4139 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2026-6303

  • EPSS 0.05%
  • Veröffentlicht 15.04.2026 19:04:50
  • Zuletzt bearbeitet 17.04.2026 17:27:33

Use after free in Codecs in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

8.3

CVE-2026-6304

  • EPSS 0.04%
  • Veröffentlicht 15.04.2026 19:04:50
  • Zuletzt bearbeitet 17.04.2026 17:27:26

Use after free in Graphite in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2026-6305

  • EPSS 0.03%
  • Veröffentlicht 15.04.2026 19:04:50
  • Zuletzt bearbeitet 17.04.2026 17:27:19

Heap buffer overflow in PDFium in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. (Chromium security severity: High)

8.8

CVE-2026-6301

  • EPSS 0.04%
  • Veröffentlicht 15.04.2026 19:04:49
  • Zuletzt bearbeitet 17.04.2026 15:41:01

Type Confusion in Turbofan in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2026-6302

  • EPSS 0.05%
  • Veröffentlicht 15.04.2026 19:04:49
  • Zuletzt bearbeitet 17.04.2026 17:27:39

Use after free in Video in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2026-6300

  • EPSS 0.05%
  • Veröffentlicht 15.04.2026 19:04:48
  • Zuletzt bearbeitet 17.04.2026 15:41:19

Use after free in CSS in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2026-6359

  • EPSS 0.07%
  • Veröffentlicht 15.04.2026 19:04:48
  • Zuletzt bearbeitet 17.04.2026 19:21:14

Use after free in Video in Google Chrome on Windows prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2026-6299

Medienbericht
  • EPSS 0.05%
  • Veröffentlicht 15.04.2026 19:04:47
  • Zuletzt bearbeitet 17.04.2026 15:41:34

Use after free in Prerender in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical)

8.8

CVE-2026-6358

Medienbericht
  • EPSS 0.12%
  • Veröffentlicht 15.04.2026 19:04:47
  • Zuletzt bearbeitet 17.04.2026 19:09:32

Use after free in XR in Google Chrome on Android prior to 147.0.7727.101 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Critical)

8.3

CVE-2026-6297

Medienbericht
  • EPSS 0.01%
  • Veröffentlicht 15.04.2026 19:04:46
  • Zuletzt bearbeitet 17.04.2026 15:42:11

Use after free in Proxy in Google Chrome prior to 147.0.7727.101 allowed an attacker in a privileged network position to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)