CVE-2026-9878
- EPSS 0.31%
- Veröffentlicht 28.05.2026 22:25:09
- Zuletzt bearbeitet 29.05.2026 16:57:14
Use after free in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Critical)
CVE-2026-9874
- EPSS 0.23%
- Veröffentlicht 28.05.2026 22:25:08
- Zuletzt bearbeitet 29.05.2026 17:04:15
Use after free in Dawn in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)
CVE-2026-9875
- EPSS 0.24%
- Veröffentlicht 28.05.2026 22:25:08
- Zuletzt bearbeitet 01.06.2026 18:45:00
Out of bounds read in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)
CVE-2026-9876
- EPSS 0.24%
- Veröffentlicht 28.05.2026 22:25:08
- Zuletzt bearbeitet 01.06.2026 18:44:53
Use after free in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)
CVE-2026-9872
- EPSS 0.33%
- Veröffentlicht 28.05.2026 22:25:07
- Zuletzt bearbeitet 01.06.2026 18:45:09
Out of bounds write in GPU in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)
CVE-2026-9873
- EPSS 0.3%
- Veröffentlicht 28.05.2026 22:25:07
- Zuletzt bearbeitet 29.05.2026 17:05:13
Use after free in Network in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Critical)
CVE-2026-9124
- EPSS 0.26%
- Veröffentlicht 20.05.2026 19:12:48
- Zuletzt bearbeitet 05.06.2026 17:24:44
Insufficient validation of untrusted input in Input in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-9122
- EPSS 0.27%
- Veröffentlicht 20.05.2026 19:12:47
- Zuletzt bearbeitet 05.06.2026 17:25:33
Out of bounds read in GPU in Google Chrome on Mac prior to 148.0.7778.179 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-9123
- EPSS 0.19%
- Veröffentlicht 20.05.2026 19:12:47
- Zuletzt bearbeitet 05.06.2026 17:25:17
Heap buffer overflow in Chromecast in Google Chrome on Android, Linux, ChromeOS prior to 148.0.7778.179 allowed a local attacker to execute arbitrary code inside a sandbox via malicious network traffic. (Chromium security severity: Medium)
CVE-2026-9121
- EPSS 0.33%
- Veröffentlicht 20.05.2026 19:12:46
- Zuletzt bearbeitet 21.05.2026 16:35:19
Out of bounds read in GPU in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)