CVE-2026-10934
- EPSS 0.27%
- Veröffentlicht 04.06.2026 23:03:45
- Zuletzt bearbeitet 05.06.2026 20:35:29
Use after free in Autofill in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-10935
- EPSS 0.39%
- Veröffentlicht 04.06.2026 23:03:45
- Zuletzt bearbeitet 05.06.2026 15:35:24
Type Confusion in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-10932
- EPSS 0.3%
- Veröffentlicht 04.06.2026 23:03:44
- Zuletzt bearbeitet 05.06.2026 20:35:15
Use after free in UI in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2026-10933
- EPSS 0.27%
- Veröffentlicht 04.06.2026 23:03:44
- Zuletzt bearbeitet 05.06.2026 20:35:22
Use after free in Audio in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-10929
- EPSS 0.31%
- Veröffentlicht 04.06.2026 23:03:43
- Zuletzt bearbeitet 05.06.2026 20:10:26
Heap buffer overflow in ANGLE in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-10930
- EPSS 0.32%
- Veröffentlicht 04.06.2026 23:03:43
- Zuletzt bearbeitet 05.06.2026 20:23:16
Out of bounds read in ANGLE in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)
CVE-2026-10931
- EPSS 0.33%
- Veröffentlicht 04.06.2026 23:03:43
- Zuletzt bearbeitet 05.06.2026 20:23:28
Use after free in FileSystem in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-10927
- EPSS 0.29%
- Veröffentlicht 04.06.2026 23:03:42
- Zuletzt bearbeitet 05.06.2026 15:44:59
Out of bounds read in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-10928
- EPSS 0.41%
- Veröffentlicht 04.06.2026 23:03:42
- Zuletzt bearbeitet 05.06.2026 20:10:41
Script injection in Headless in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)
CVE-2026-10925
- EPSS 0.29%
- Veröffentlicht 04.06.2026 23:03:41
- Zuletzt bearbeitet 05.06.2026 15:46:48
Out of bounds write in Skia in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)