Google

Chrome

4139 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2026-5888

  • EPSS 0.03%
  • Veröffentlicht 08.04.2026 21:20:52
  • Zuletzt bearbeitet 13.04.2026 21:17:24

Uninitialized Use in WebCodecs in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)

4.3

CVE-2026-5889

  • EPSS 0.01%
  • Veröffentlicht 08.04.2026 21:20:52
  • Zuletzt bearbeitet 14.04.2026 11:45:17

Cryptographic Flaw in PDFium in Google Chrome prior to 147.0.7727.55 allowed an attacker to read potentially sensitive information from encrypted PDFs via a brute-force attack. (Chromium security severity: Medium)

6.5

CVE-2026-5885

  • EPSS 0.05%
  • Veröffentlicht 08.04.2026 21:20:51
  • Zuletzt bearbeitet 13.04.2026 21:17:41

Insufficient validation of untrusted input in WebML in Google Chrome on Windows prior to 147.0.7727.55 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Med...

5.3

CVE-2026-5886

  • EPSS 0.03%
  • Veröffentlicht 08.04.2026 21:20:51
  • Zuletzt bearbeitet 13.04.2026 21:19:35

Out of bounds read in WebAudio in Google Chrome on Mac prior to 147.0.7727.55 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)

4.3

CVE-2026-5887

  • EPSS 0.04%
  • Veröffentlicht 08.04.2026 21:20:51
  • Zuletzt bearbeitet 13.04.2026 21:17:32

Insufficient validation of untrusted input in Downloads in Google Chrome on Windows prior to 147.0.7727.55 allowed a remote attacker to bypass download restrictions via a crafted HTML page. (Chromium security severity: Medium)

8.8

CVE-2026-5883

  • EPSS 0.14%
  • Veröffentlicht 08.04.2026 21:20:50
  • Zuletzt bearbeitet 16.04.2026 16:36:37

Use after free in Media in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)

8.8

CVE-2026-5884

  • EPSS 0.15%
  • Veröffentlicht 08.04.2026 21:20:50
  • Zuletzt bearbeitet 13.04.2026 21:19:48

Insufficient validation of untrusted input in Media in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security seve...

4.3

CVE-2026-5880

  • EPSS 0.03%
  • Veröffentlicht 08.04.2026 21:20:49
  • Zuletzt bearbeitet 14.04.2026 20:01:46

Insufficient policy enforcement in browser UI in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who had compromised the renderer process to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. (Chromium security severi...

6.5

CVE-2026-5881

  • EPSS 0.03%
  • Veröffentlicht 08.04.2026 21:20:49
  • Zuletzt bearbeitet 14.04.2026 20:01:36

Policy bypass in LocalNetworkAccess in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Medium)

4.3

CVE-2026-5882

  • EPSS 0.03%
  • Veröffentlicht 08.04.2026 21:20:49
  • Zuletzt bearbeitet 14.04.2026 20:01:27

Incorrect security UI in Fullscreen in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)