CVE-2026-10926
- EPSS 0.19%
- Veröffentlicht 04.06.2026 23:03:41
- Zuletzt bearbeitet 05.06.2026 15:46:32
Use after free in Cast in Google Chrome prior to 149.0.7827.53 allowed an attacker on the local network segment to execute arbitrary code via malicious network traffic. (Chromium security severity: High)
CVE-2026-10922
- EPSS 0.3%
- Veröffentlicht 04.06.2026 23:03:40
- Zuletzt bearbeitet 05.06.2026 20:10:53
Insufficient validation of untrusted input in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass same origin policy via malicious network traffic. (Chromium secu...
CVE-2026-10923
- EPSS 0.35%
- Veröffentlicht 04.06.2026 23:03:40
- Zuletzt bearbeitet 06.06.2026 01:43:03
Use after free in WebAppInstalls in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to execute arbitrary code via a malicious file. (Chromium security severity: High)
CVE-2026-10924
- EPSS 0.29%
- Veröffentlicht 04.06.2026 23:03:40
- Zuletzt bearbeitet 05.06.2026 15:47:13
Integer overflow in Chromecast in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-10920
- EPSS 0.31%
- Veröffentlicht 04.06.2026 23:03:39
- Zuletzt bearbeitet 05.06.2026 15:47:54
Insufficient validation of untrusted input in WebShare in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium securi...
CVE-2026-10921
- EPSS 0.29%
- Veröffentlicht 04.06.2026 23:03:39
- Zuletzt bearbeitet 05.06.2026 15:47:34
Integer overflow in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-10918
- EPSS 0.29%
- Veröffentlicht 04.06.2026 23:03:38
- Zuletzt bearbeitet 05.06.2026 15:48:35
Use after free in Viz in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-10919
- EPSS 0.29%
- Veröffentlicht 04.06.2026 23:03:38
- Zuletzt bearbeitet 05.06.2026 15:48:15
Use after free in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-10916
- EPSS 0.21%
- Veröffentlicht 04.06.2026 23:03:37
- Zuletzt bearbeitet 06.06.2026 01:43:15
Insufficient validation of untrusted input in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. (Chromium security s...
CVE-2026-10917
- EPSS 0.31%
- Veröffentlicht 04.06.2026 23:03:37
- Zuletzt bearbeitet 05.06.2026 15:48:49
Insufficient validation of untrusted input in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severit...