CVE-2026-10911
- EPSS 0.31%
- Veröffentlicht 04.06.2026 23:03:35
- Zuletzt bearbeitet 05.06.2026 20:11:39
Insufficient validation of untrusted input in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severit...
CVE-2026-10912
- EPSS 0.28%
- Veröffentlicht 04.06.2026 23:03:35
- Zuletzt bearbeitet 06.06.2026 01:43:26
Insufficient validation of untrusted input in Extensions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. (Chromium security severity: Hig...
CVE-2026-10908
- EPSS 0.29%
- Veröffentlicht 04.06.2026 23:03:34
- Zuletzt bearbeitet 05.06.2026 20:00:59
Use after free in FullScreen in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-10909
- EPSS 0.29%
- Veröffentlicht 04.06.2026 23:03:34
- Zuletzt bearbeitet 05.06.2026 20:00:48
Use after free in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-10910
- EPSS 0.43%
- Veröffentlicht 04.06.2026 23:03:34
- Zuletzt bearbeitet 05.06.2026 20:11:53
Type Confusion in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-10906
- EPSS 0.33%
- Veröffentlicht 04.06.2026 23:03:33
- Zuletzt bearbeitet 05.06.2026 20:01:19
Use after free in WebAuthentication in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: ...
CVE-2026-10907
- EPSS 0.33%
- Veröffentlicht 04.06.2026 23:03:33
- Zuletzt bearbeitet 05.06.2026 20:01:07
Out of bounds write in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2026-10904
- EPSS 0.41%
- Veröffentlicht 04.06.2026 23:03:32
- Zuletzt bearbeitet 05.06.2026 20:15:24
Inappropriate implementation in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-10905
- EPSS 0.29%
- Veröffentlicht 04.06.2026 23:03:32
- Zuletzt bearbeitet 05.06.2026 20:01:27
Use after free in Network in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-10901
- EPSS 0.34%
- Veröffentlicht 04.06.2026 23:03:31
- Zuletzt bearbeitet 05.06.2026 20:15:56
Use after free in Passwords in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical)