Google

Chrome

4139 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2026-6298

Medienbericht
  • EPSS 0.01%
  • Veröffentlicht 15.04.2026 19:04:46
  • Zuletzt bearbeitet 17.04.2026 15:41:53

Heap buffer overflow in Skia in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Critical)

9.6

CVE-2026-6296

Medienbericht
  • EPSS 0.03%
  • Veröffentlicht 15.04.2026 19:04:45
  • Zuletzt bearbeitet 17.04.2026 15:42:44

Heap buffer overflow in ANGLE in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)

4.3

CVE-2026-5918

  • EPSS 0.02%
  • Veröffentlicht 08.04.2026 21:21:07
  • Zuletzt bearbeitet 14.04.2026 14:09:06

Inappropriate implementation in Navigation in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)

6.5

CVE-2026-5919

  • EPSS 0.04%
  • Veröffentlicht 08.04.2026 21:21:07
  • Zuletzt bearbeitet 29.04.2026 16:16:28

Insufficient validation of untrusted input in WebSockets in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. (Chromium security severity: Low...

8.1

CVE-2026-5913

  • EPSS 0.09%
  • Veröffentlicht 08.04.2026 21:21:06
  • Zuletzt bearbeitet 29.04.2026 16:16:27

Out of bounds read in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Low)

8.8

CVE-2026-5914

  • EPSS 0.03%
  • Veröffentlicht 08.04.2026 21:21:06
  • Zuletzt bearbeitet 29.04.2026 16:16:27

Type Confusion in CSS in Google Chrome prior to 147.0.7727.55 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. (Chromium security severity: Low)

8.1

CVE-2026-5915

  • EPSS 0.11%
  • Veröffentlicht 08.04.2026 21:21:06
  • Zuletzt bearbeitet 29.04.2026 16:16:27

Insufficient validation of untrusted input in WebML in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Low)

4.3

CVE-2026-5911

  • EPSS 0.04%
  • Veröffentlicht 08.04.2026 21:21:05
  • Zuletzt bearbeitet 10.05.2026 21:16:29

Policy bypass in ServiceWorkers in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to bypass content security policy via a crafted HTML page. (Chromium security severity: Low)

8.8

CVE-2026-5912

  • EPSS 0.11%
  • Veröffentlicht 08.04.2026 21:21:05
  • Zuletzt bearbeitet 29.04.2026 16:16:27

Integer overflow in WebRTC in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Low)

8.8

CVE-2026-5909

  • EPSS 0.09%
  • Veröffentlicht 08.04.2026 21:21:04
  • Zuletzt bearbeitet 29.04.2026 16:16:27

Integer overflow in Media in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to potentially exploit heap corruption via a crafted video file. (Chromium security severity: Low)