CVE-2026-9947
- EPSS 0.3%
- Veröffentlicht 28.05.2026 22:25:33
- Zuletzt bearbeitet 29.05.2026 16:29:06
Use after free in XML in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-9948
- EPSS 0.22%
- Veröffentlicht 28.05.2026 22:25:33
- Zuletzt bearbeitet 01.06.2026 18:31:07
Use after free in Views in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-9943
- EPSS 0.21%
- Veröffentlicht 28.05.2026 22:25:32
- Zuletzt bearbeitet 01.06.2026 18:43:30
Out of bounds read in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)
CVE-2026-9944
- EPSS 0.2%
- Veröffentlicht 28.05.2026 22:25:32
- Zuletzt bearbeitet 01.06.2026 18:31:22
Uninitialized Use in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)
CVE-2026-9945
- EPSS 0.3%
- Veröffentlicht 28.05.2026 22:25:32
- Zuletzt bearbeitet 29.05.2026 16:29:39
Use after free in Media in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-9940
- EPSS 0.26%
- Veröffentlicht 28.05.2026 22:25:31
- Zuletzt bearbeitet 01.06.2026 18:49:45
Heap buffer overflow in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2026-9941
- EPSS 0.3%
- Veröffentlicht 28.05.2026 22:25:31
- Zuletzt bearbeitet 01.06.2026 18:49:52
Use after free in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
- EPSS 0.2%
- Veröffentlicht 28.05.2026 22:25:31
- Zuletzt bearbeitet 29.05.2026 18:26:02
Uninitialized Use in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. (Chromium security severity: High)
CVE-2026-9937
- EPSS 0.22%
- Veröffentlicht 28.05.2026 22:25:30
- Zuletzt bearbeitet 29.05.2026 16:52:33
Use after free in UI in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-9938
- EPSS 0.32%
- Veröffentlicht 28.05.2026 22:25:30
- Zuletzt bearbeitet 29.05.2026 17:12:38
Inappropriate implementation in V8 in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)