CVE-2026-9897
- EPSS 0.29%
- Veröffentlicht 28.05.2026 22:25:16
- Zuletzt bearbeitet 29.05.2026 18:08:13
Use after free in DOM in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-9898
- EPSS 0.23%
- Veröffentlicht 28.05.2026 22:25:16
- Zuletzt bearbeitet 01.06.2026 18:44:19
Insufficient validation of untrusted input in GPU in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium securi...
CVE-2026-9893
- EPSS 0.27%
- Veröffentlicht 28.05.2026 22:25:15
- Zuletzt bearbeitet 03.06.2026 02:24:11
Use after free in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)
CVE-2026-9894
- EPSS 0.21%
- Veröffentlicht 28.05.2026 22:25:15
- Zuletzt bearbeitet 03.06.2026 02:20:49
Use after free in GPU in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-9895
- EPSS 0.21%
- Veröffentlicht 28.05.2026 22:25:15
- Zuletzt bearbeitet 03.06.2026 02:20:35
Out of bounds read in GPU in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-9890
- EPSS 0.21%
- Veröffentlicht 28.05.2026 22:25:14
- Zuletzt bearbeitet 03.06.2026 02:25:40
Use after free in XR in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)
- EPSS 0.25%
- Veröffentlicht 28.05.2026 22:25:14
- Zuletzt bearbeitet 29.05.2026 17:15:18
Use after free in Extensions in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted Chrome Extension. (Chromium security severity: Critical)
CVE-2026-9892
- EPSS 0.21%
- Veröffentlicht 28.05.2026 22:25:14
- Zuletzt bearbeitet 01.06.2026 18:44:31
Inappropriate implementation in Skia in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: ...
CVE-2026-9888
- EPSS 0.21%
- Veröffentlicht 28.05.2026 22:25:13
- Zuletzt bearbeitet 01.06.2026 18:44:48
Use after free in WebView in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)
CVE-2026-9889
- EPSS 0.21%
- Veröffentlicht 28.05.2026 22:25:13
- Zuletzt bearbeitet 01.06.2026 18:44:39
Out of bounds read and write in Dawn in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)