CVE-2026-6303
- EPSS 0.37%
- Veröffentlicht 15.04.2026 19:04:50
- Zuletzt bearbeitet 27.05.2026 18:16:29
Use after free in Codecs in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-6304
- EPSS 0.25%
- Veröffentlicht 15.04.2026 19:04:50
- Zuletzt bearbeitet 26.05.2026 19:16:30
Use after free in Graphite in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2026-6305
- EPSS 0.34%
- Veröffentlicht 15.04.2026 19:04:50
- Zuletzt bearbeitet 27.05.2026 18:16:29
Heap buffer overflow in PDFium in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. (Chromium security severity: High)
CVE-2026-6301
- EPSS 0.37%
- Veröffentlicht 15.04.2026 19:04:49
- Zuletzt bearbeitet 26.05.2026 19:16:30
Type Confusion in Turbofan in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-6302
- EPSS 0.33%
- Veröffentlicht 15.04.2026 19:04:49
- Zuletzt bearbeitet 26.05.2026 18:16:54
Use after free in Video in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-6300
- EPSS 0.34%
- Veröffentlicht 15.04.2026 19:04:48
- Zuletzt bearbeitet 26.05.2026 18:16:54
Use after free in CSS in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-6359
- EPSS 0.25%
- Veröffentlicht 15.04.2026 19:04:48
- Zuletzt bearbeitet 17.04.2026 19:21:14
Use after free in Video in Google Chrome on Windows prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)
CVE-2026-6299
- EPSS 0.34%
- Veröffentlicht 15.04.2026 19:04:47
- Zuletzt bearbeitet 26.05.2026 19:16:30
Use after free in Prerender in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical)
CVE-2026-6358
- EPSS 0.27%
- Veröffentlicht 15.04.2026 19:04:47
- Zuletzt bearbeitet 27.05.2026 18:16:31
Use after free in XR in Google Chrome on Android prior to 147.0.7727.101 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Critical)
CVE-2026-6297
- EPSS 0.2%
- Veröffentlicht 15.04.2026 19:04:46
- Zuletzt bearbeitet 27.05.2026 18:16:29
Use after free in Proxy in Google Chrome prior to 147.0.7727.101 allowed an attacker in a privileged network position to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)