CVE-2026-1220
- EPSS 0.3%
- Veröffentlicht 10.06.2026 19:39:42
- Zuletzt bearbeitet 12.06.2026 19:47:09
Race in V8 in Google Chrome prior to 144.0.7559.99 allowed a remote attacker to potentially exploit type confusion via a crafted HTML page. (Chromium security severity: High)
CVE-2026-11701
- EPSS 0.18%
- Veröffentlicht 08.06.2026 23:28:04
- Zuletzt bearbeitet 09.06.2026 17:24:36
Inappropriate implementation in Guest View in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-11699
- EPSS 0.2%
- Veröffentlicht 08.06.2026 23:28:02
- Zuletzt bearbeitet 09.06.2026 14:51:24
Use after free in Bluetooth in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2026-11700
- EPSS 0.18%
- Veröffentlicht 08.06.2026 23:28:02
- Zuletzt bearbeitet 09.06.2026 14:51:36
Use after free in Tracing in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-11698
- EPSS 0.2%
- Veröffentlicht 08.06.2026 23:28:01
- Zuletzt bearbeitet 09.06.2026 14:50:16
Use after free in Bluetooth in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2026-11697
- EPSS 0.2%
- Veröffentlicht 08.06.2026 23:28:00
- Zuletzt bearbeitet 09.06.2026 14:51:16
Insufficient validation of untrusted input in UI in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-11695
- EPSS 0.18%
- Veröffentlicht 08.06.2026 23:27:59
- Zuletzt bearbeitet 09.06.2026 14:50:53
Inappropriate implementation in Passwords in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)
CVE-2026-11696
- EPSS 0.19%
- Veröffentlicht 08.06.2026 23:27:59
- Zuletzt bearbeitet 09.06.2026 14:51:05
Uninitialized Use in Video in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium secur...
CVE-2026-11693
- EPSS 0.18%
- Veröffentlicht 08.06.2026 23:27:58
- Zuletzt bearbeitet 09.06.2026 17:26:05
Inappropriate implementation in Plugins in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. (Chromium security severity: High)
CVE-2026-11694
- EPSS 0.21%
- Veröffentlicht 08.06.2026 23:27:58
- Zuletzt bearbeitet 09.06.2026 14:52:28
Use after free in ServiceWorker in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)