Google

Chrome

4139 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2026-5859

Medienbericht
  • EPSS 0.09%
  • Veröffentlicht 08.04.2026 21:20:39
  • Zuletzt bearbeitet 13.04.2026 17:23:57

Integer overflow in WebML in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)

8.8

CVE-2026-5858

Medienbericht
  • EPSS 0.09%
  • Veröffentlicht 08.04.2026 21:20:38
  • Zuletzt bearbeitet 13.04.2026 17:24:19

Heap buffer overflow in WebML in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical)

6.5

CVE-2026-5291

  • EPSS 0.03%
  • Veröffentlicht 01.04.2026 04:41:37
  • Zuletzt bearbeitet 01.04.2026 16:40:46

Inappropriate implementation in WebGL in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)

8.8

CVE-2026-5292

  • EPSS 0.02%
  • Veröffentlicht 01.04.2026 04:41:37
  • Zuletzt bearbeitet 01.04.2026 17:07:20

Out of bounds read in WebCodecs in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Medium)

9.6

CVE-2026-5288

  • EPSS 0.02%
  • Veröffentlicht 01.04.2026 04:41:36
  • Zuletzt bearbeitet 01.04.2026 16:41:09

Use after free in WebView in Google Chrome on Android prior to 146.0.7680.178 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

9.6

CVE-2026-5289

  • EPSS 0.03%
  • Veröffentlicht 01.04.2026 04:41:36
  • Zuletzt bearbeitet 01.04.2026 16:40:59

Use after free in Navigation in Google Chrome prior to 146.0.7680.178 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

9.6

CVE-2026-5290

  • EPSS 0.03%
  • Veröffentlicht 01.04.2026 04:41:36
  • Zuletzt bearbeitet 01.04.2026 16:40:52

Use after free in Compositing in Google Chrome prior to 146.0.7680.178 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

6.3

CVE-2026-5273

  • EPSS 0.02%
  • Veröffentlicht 01.04.2026 04:41:35
  • Zuletzt bearbeitet 01.04.2026 16:36:13

Use after free in CSS in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2026-5286

  • EPSS 0.03%
  • Veröffentlicht 01.04.2026 04:41:35
  • Zuletzt bearbeitet 01.04.2026 17:08:31

Use after free in Dawn in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2026-5287

  • EPSS 0.03%
  • Veröffentlicht 01.04.2026 04:41:35
  • Zuletzt bearbeitet 02.04.2026 00:16:24

Use after free in PDF in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. (Chromium security severity: High)