CVE-2026-13026
- EPSS 0.19%
- Veröffentlicht 24.06.2026 19:17:08
- Zuletzt bearbeitet 26.06.2026 02:12:05
Use after free in Digital Credentials in Google Chrome on Mac prior to 149.0.7827.197 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2026-13027
- EPSS 0.19%
- Veröffentlicht 24.06.2026 19:17:08
- Zuletzt bearbeitet 26.06.2026 02:11:50
Use after free in FileSystem in Google Chrome prior to 149.0.7827.197 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2026-12033
- EPSS 0.19%
- Veröffentlicht 11.06.2026 20:48:14
- Zuletzt bearbeitet 12.06.2026 18:04:51
Out of bounds read in VideoCapture in Google Chrome prior to 149.0.7827.115 allowed a remote attacker who had compromised the GPU process to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security seve...
CVE-2026-12034
- EPSS 0.18%
- Veröffentlicht 11.06.2026 20:48:14
- Zuletzt bearbeitet 12.06.2026 17:58:48
Insufficient validation of untrusted input in Linux Toolkit Theming in Google Chrome on Linux prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a malicious file. (Ch...
CVE-2026-12035
- EPSS 0.19%
- Veröffentlicht 11.06.2026 20:48:14
- Zuletzt bearbeitet 12.06.2026 17:58:35
Use after free in Views in Google Chrome on Windows prior to 149.0.7827.115 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2026-12031
- EPSS 0.19%
- Veröffentlicht 11.06.2026 20:48:13
- Zuletzt bearbeitet 12.06.2026 18:05:24
Inappropriate implementation in Views in Google Chrome on Windows prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity:...
CVE-2026-12032
- EPSS 0.16%
- Veröffentlicht 11.06.2026 20:48:13
- Zuletzt bearbeitet 12.06.2026 18:05:11
Inappropriate implementation in Passwords in Google Chrome on Android prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. (Chromium security severity: High)
CVE-2026-12028
- EPSS 0.23%
- Veröffentlicht 11.06.2026 20:48:12
- Zuletzt bearbeitet 12.06.2026 18:06:08
Use after free in GPU in Google Chrome on Android prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-12029
- EPSS 0.19%
- Veröffentlicht 11.06.2026 20:48:12
- Zuletzt bearbeitet 12.06.2026 18:05:55
Use after free in Video in Google Chrome on Windows prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-12030
- EPSS 0.19%
- Veröffentlicht 11.06.2026 20:48:12
- Zuletzt bearbeitet 12.06.2026 18:05:38
Out of bounds write in GPU in Google Chrome on Android prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)