Google

Chrome

651 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2026-8587

  • EPSS 0.02%
  • Veröffentlicht 14.05.2026 19:52:45
  • Zuletzt bearbeitet 14.05.2026 21:19:23

Use after free in Extensions in Google Chrome on Mac prior to 148.0.7778.168 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension. (Chromium security severity: Medium)

4.2

CVE-2026-8584

  • EPSS 0.06%
  • Veröffentlicht 14.05.2026 19:52:44
  • Zuletzt bearbeitet 14.05.2026 22:16:51

Inappropriate implementation in Views in Google Chrome on iOS prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

7.5

CVE-2026-8585

  • EPSS 0.09%
  • Veröffentlicht 14.05.2026 19:52:44
  • Zuletzt bearbeitet 15.05.2026 15:16:56

Inappropriate implementation in Media in Google Chrome on iOS prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Med...

5.5

CVE-2026-8586

  • EPSS 0.01%
  • Veröffentlicht 14.05.2026 19:52:44
  • Zuletzt bearbeitet 15.05.2026 15:16:56

Inappropriate implementation in Chromoting in Google Chrome prior to 148.0.7778.168 allowed a local attacker to bypass discretionary access control via a malicious file. (Chromium security severity: Medium)

5.3

CVE-2026-8582

  • EPSS 0.03%
  • Veröffentlicht 14.05.2026 19:52:43
  • Zuletzt bearbeitet 14.05.2026 22:16:51

Object lifecycle issue in Dawn in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)

5.3

CVE-2026-8583

  • EPSS 0.05%
  • Veröffentlicht 14.05.2026 19:52:43
  • Zuletzt bearbeitet 14.05.2026 22:16:51

Insufficient policy enforcement in WebXR in Google Chrome on Android prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. (...

8.8

CVE-2026-8581

  • EPSS 0.13%
  • Veröffentlicht 14.05.2026 19:52:42
  • Zuletzt bearbeitet 16.05.2026 02:48:01

Use after free in GPU in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)

3.1

CVE-2026-8578

  • EPSS 0.03%
  • Veröffentlicht 14.05.2026 19:52:41
  • Zuletzt bearbeitet 15.05.2026 15:16:56

Out of bounds read in GPU in Google Chrome on Linux prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)

3.1

CVE-2026-8579

  • EPSS 0.03%
  • Veröffentlicht 14.05.2026 19:52:41
  • Zuletzt bearbeitet 15.05.2026 15:16:56

Insufficient validation of untrusted input in Skia in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory write via a crafted print file. (Chromium security sever...

9.6

CVE-2026-8580

  • EPSS 0.07%
  • Veröffentlicht 14.05.2026 19:52:41
  • Zuletzt bearbeitet 14.05.2026 21:19:23

Use after free in Mojo in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)