CVE-2026-11653
- EPSS 0.23%
- Veröffentlicht 08.06.2026 23:27:35
- Zuletzt bearbeitet 10.06.2026 19:00:32
Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. (Chromium security severity: High)
CVE-2026-11651
- EPSS 0.34%
- Veröffentlicht 08.06.2026 23:27:34
- Zuletzt bearbeitet 09.06.2026 14:57:39
Use after free in Network in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-11649
- EPSS 0.31%
- Veröffentlicht 08.06.2026 23:27:33
- Zuletzt bearbeitet 09.06.2026 14:57:56
Use after free in V8 in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-11650
- EPSS 0.31%
- Veröffentlicht 08.06.2026 23:27:33
- Zuletzt bearbeitet 09.06.2026 14:57:45
Use after free in V8 in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-11647
- EPSS 0.22%
- Veröffentlicht 08.06.2026 23:27:32
- Zuletzt bearbeitet 09.06.2026 20:30:30
Use after free in Printing in Google Chrome on Android prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-11648
- EPSS 0.26%
- Veröffentlicht 08.06.2026 23:27:32
- Zuletzt bearbeitet 09.06.2026 14:58:01
Use after free in FullScreen in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2026-11645
- EPSS 1.65%
- Veröffentlicht 08.06.2026 23:27:31
- Zuletzt bearbeitet 09.06.2026 19:41:08
Out of bounds read and write in V8 in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-11646
- EPSS 0.26%
- Veröffentlicht 08.06.2026 23:27:31
- Zuletzt bearbeitet 09.06.2026 14:56:55
Use after free in ViewTransitions in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-11643
- EPSS 0.27%
- Veröffentlicht 08.06.2026 23:27:30
- Zuletzt bearbeitet 09.06.2026 14:57:10
Use after free in Proxy in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code via malicious network traffic. (Chromium security severity: Critical)
CVE-2026-11644
- EPSS 0.2%
- Veröffentlicht 08.06.2026 23:27:30
- Zuletzt bearbeitet 09.06.2026 14:57:16
Use after free in Views in Google Chrome on Linux prior to 149.0.7827.103 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension. (Chromium security severity: Critical)