CVE-2026-10933
- EPSS 0.27%
- Veröffentlicht 04.06.2026 23:03:44
- Zuletzt bearbeitet 05.06.2026 20:35:22
Use after free in Audio in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-10929
- EPSS 0.31%
- Veröffentlicht 04.06.2026 23:03:43
- Zuletzt bearbeitet 05.06.2026 20:10:26
Heap buffer overflow in ANGLE in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-10930
- EPSS 0.32%
- Veröffentlicht 04.06.2026 23:03:43
- Zuletzt bearbeitet 05.06.2026 20:23:16
Out of bounds read in ANGLE in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)
CVE-2026-10931
- EPSS 0.33%
- Veröffentlicht 04.06.2026 23:03:43
- Zuletzt bearbeitet 05.06.2026 20:23:28
Use after free in FileSystem in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-10927
- EPSS 0.29%
- Veröffentlicht 04.06.2026 23:03:42
- Zuletzt bearbeitet 05.06.2026 15:44:59
Out of bounds read in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-10928
- EPSS 0.41%
- Veröffentlicht 04.06.2026 23:03:42
- Zuletzt bearbeitet 05.06.2026 20:10:41
Script injection in Headless in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)
CVE-2026-10925
- EPSS 0.29%
- Veröffentlicht 04.06.2026 23:03:41
- Zuletzt bearbeitet 05.06.2026 15:46:48
Out of bounds write in Skia in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-10926
- EPSS 0.19%
- Veröffentlicht 04.06.2026 23:03:41
- Zuletzt bearbeitet 05.06.2026 15:46:32
Use after free in Cast in Google Chrome prior to 149.0.7827.53 allowed an attacker on the local network segment to execute arbitrary code via malicious network traffic. (Chromium security severity: High)
CVE-2026-10922
- EPSS 0.3%
- Veröffentlicht 04.06.2026 23:03:40
- Zuletzt bearbeitet 05.06.2026 20:10:53
Insufficient validation of untrusted input in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass same origin policy via malicious network traffic. (Chromium secu...
CVE-2026-10923
- EPSS 0.35%
- Veröffentlicht 04.06.2026 23:03:40
- Zuletzt bearbeitet 06.06.2026 01:43:03
Use after free in WebAppInstalls in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to execute arbitrary code via a malicious file. (Chromium security severity: High)