Google

Chrome

651 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.3

CVE-2026-7923

  • EPSS 0.09%
  • Veröffentlicht 06.05.2026 18:12:34
  • Zuletzt bearbeitet 06.05.2026 23:38:06

Out of bounds write in Skia in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

8.3

CVE-2026-7918

  • EPSS 0.07%
  • Veröffentlicht 06.05.2026 18:12:33
  • Zuletzt bearbeitet 06.05.2026 23:39:24

Use after free in GPU in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

8.3

CVE-2026-7919

  • EPSS 0.07%
  • Veröffentlicht 06.05.2026 18:12:33
  • Zuletzt bearbeitet 06.05.2026 23:38:42

Use after free in Aura in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

8.3

CVE-2026-7920

  • EPSS 0.07%
  • Veröffentlicht 06.05.2026 18:12:33
  • Zuletzt bearbeitet 06.05.2026 23:38:35

Use after free in Skia in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

8.3

CVE-2026-7916

  • EPSS 0.1%
  • Veröffentlicht 06.05.2026 18:12:32
  • Zuletzt bearbeitet 08.05.2026 20:16:32

Insufficient data validation in InterestGroups in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Hi...

8.3

CVE-2026-7917

  • EPSS 0.07%
  • Veröffentlicht 06.05.2026 18:12:32
  • Zuletzt bearbeitet 06.05.2026 23:39:31

Use after free in Fullscreen in Google Chrome on Windows prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

7.8

CVE-2026-7913

  • EPSS 0.01%
  • Veröffentlicht 06.05.2026 18:12:31
  • Zuletzt bearbeitet 06.05.2026 23:40:30

Insufficient policy enforcement in DevTools in Google Chrome on Android prior to 148.0.7778.96 allowed a local attacker to perform privilege escalation via a malicious file. (Chromium security severity: High)

8.3

CVE-2026-7914

  • EPSS 0.07%
  • Veröffentlicht 06.05.2026 18:12:31
  • Zuletzt bearbeitet 06.05.2026 23:40:21

Type Confusion in Accessibility in Google Chrome on Windows prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

4.3

CVE-2026-7915

  • EPSS 0.03%
  • Veröffentlicht 06.05.2026 18:12:31
  • Zuletzt bearbeitet 10.05.2026 14:16:51

Insufficient data validation in DevTools in Google Chrome on Android prior to 148.0.7778.96 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: High)

8.3

CVE-2026-7911

  • EPSS 0.07%
  • Veröffentlicht 06.05.2026 18:12:30
  • Zuletzt bearbeitet 06.05.2026 23:40:57

Use after free in Aura in Google Chrome on Windows prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)