CVE-2026-10992
- EPSS 0.31%
- Veröffentlicht 04.06.2026 23:04:11
- Zuletzt bearbeitet 06.06.2026 17:16:40
Insufficient data validation in Animation in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-10993
- EPSS 0.33%
- Veröffentlicht 04.06.2026 23:04:11
- Zuletzt bearbeitet 06.06.2026 17:16:40
Heap buffer overflow in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-10989
- EPSS 0.33%
- Veröffentlicht 04.06.2026 23:04:10
- Zuletzt bearbeitet 06.06.2026 01:49:29
Inappropriate implementation in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: H...
CVE-2026-10990
- EPSS 0.3%
- Veröffentlicht 04.06.2026 23:04:10
- Zuletzt bearbeitet 06.06.2026 17:16:39
Use after free in Glic in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-10987
- EPSS 0.36%
- Veröffentlicht 04.06.2026 23:04:09
- Zuletzt bearbeitet 06.06.2026 01:48:47
Integer overflow in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-10988
- EPSS 0.33%
- Veröffentlicht 04.06.2026 23:04:09
- Zuletzt bearbeitet 06.06.2026 01:49:05
Use after free in Views in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-10984
- EPSS 0.23%
- Veröffentlicht 04.06.2026 23:04:08
- Zuletzt bearbeitet 05.06.2026 20:38:13
Inappropriate implementation in Accessibility in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: High)
CVE-2026-10985
- EPSS 0.31%
- Veröffentlicht 04.06.2026 23:04:08
- Zuletzt bearbeitet 05.06.2026 20:37:02
Out of bounds read in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)
CVE-2026-10986
- EPSS 0.33%
- Veröffentlicht 04.06.2026 23:04:08
- Zuletzt bearbeitet 06.06.2026 01:48:23
Integer overflow in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a malicious file. (Chromium security severity: High)
CVE-2026-10982
- EPSS 0.46%
- Veröffentlicht 04.06.2026 23:04:07
- Zuletzt bearbeitet 06.06.2026 01:45:56
Use after free in WebXR in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)