CVE-2026-11646
- EPSS 0.26%
- Veröffentlicht 08.06.2026 23:27:31
- Zuletzt bearbeitet 09.06.2026 14:56:55
Use after free in ViewTransitions in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-11643
- EPSS 0.27%
- Veröffentlicht 08.06.2026 23:27:30
- Zuletzt bearbeitet 09.06.2026 14:57:10
Use after free in Proxy in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code via malicious network traffic. (Chromium security severity: Critical)
CVE-2026-11644
- EPSS 0.2%
- Veröffentlicht 08.06.2026 23:27:30
- Zuletzt bearbeitet 09.06.2026 14:57:16
Use after free in Views in Google Chrome on Linux prior to 149.0.7827.103 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension. (Chromium security severity: Critical)
CVE-2026-11642
- EPSS 0.23%
- Veröffentlicht 08.06.2026 23:27:29
- Zuletzt bearbeitet 09.06.2026 14:57:23
Use after free in Web Apps in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)
CVE-2026-11640
- EPSS 0.23%
- Veröffentlicht 08.06.2026 23:27:28
- Zuletzt bearbeitet 09.06.2026 20:30:59
Integer overflow in libyuv in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)
CVE-2026-11641
- EPSS 0.28%
- Veröffentlicht 08.06.2026 23:27:28
- Zuletzt bearbeitet 09.06.2026 20:30:45
Use after free in Bluetooth in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical)
CVE-2026-11638
- EPSS 0.25%
- Veröffentlicht 08.06.2026 23:27:27
- Zuletzt bearbeitet 09.06.2026 20:31:24
Use after free in Printing in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)
CVE-2026-11639
- EPSS 0.28%
- Veröffentlicht 08.06.2026 23:27:27
- Zuletzt bearbeitet 09.06.2026 20:31:12
Use after free in Compositing in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical)
CVE-2026-11636
- EPSS 0.22%
- Veröffentlicht 08.06.2026 23:27:26
- Zuletzt bearbeitet 09.06.2026 16:50:30
Use after free in Autofill in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severit...
CVE-2026-11637
- EPSS 0.26%
- Veröffentlicht 08.06.2026 23:27:26
- Zuletzt bearbeitet 09.06.2026 16:49:56
Use after free in Views in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical)