CVE-2026-11255
- EPSS 0.26%
- Veröffentlicht 04.06.2026 23:06:06
- Zuletzt bearbeitet 05.06.2026 15:33:10
Insufficient validation of untrusted input in Storage Access API in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity...
CVE-2026-11256
- EPSS 0.21%
- Veröffentlicht 04.06.2026 23:06:06
- Zuletzt bearbeitet 05.06.2026 15:33:22
Integer overflow in GPU in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-11257
- EPSS 0.19%
- Veröffentlicht 04.06.2026 23:06:06
- Zuletzt bearbeitet 08.06.2026 14:25:51
Inappropriate implementation in Browser in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-11252
- EPSS 0.18%
- Veröffentlicht 04.06.2026 23:06:05
- Zuletzt bearbeitet 05.06.2026 15:27:29
Insufficient policy enforcement in Content Settings in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass discretionary access control via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-11253
- EPSS 0.15%
- Veröffentlicht 04.06.2026 23:06:05
- Zuletzt bearbeitet 05.06.2026 15:31:39
Inappropriate implementation in Permissions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-11254
- EPSS 0.18%
- Veröffentlicht 04.06.2026 23:06:05
- Zuletzt bearbeitet 05.06.2026 15:31:48
Inappropriate implementation in Permissions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)
CVE-2026-11251
- EPSS 0.19%
- Veröffentlicht 04.06.2026 23:06:04
- Zuletzt bearbeitet 05.06.2026 15:33:29
Insufficient policy enforcement in Password Manager in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to bypass discretionary access control via a crafted HTML page. (Chromium security severity...
CVE-2026-11250
- EPSS 0.24%
- Veröffentlicht 04.06.2026 23:06:03
- Zuletzt bearbeitet 05.06.2026 15:26:26
Inappropriate implementation in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium sec...
CVE-2026-11249
- EPSS 0.19%
- Veröffentlicht 04.06.2026 23:06:02
- Zuletzt bearbeitet 05.06.2026 20:40:02
Use after free in Network in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity:...
CVE-2026-11247
- EPSS 0.18%
- Veröffentlicht 04.06.2026 23:06:00
- Zuletzt bearbeitet 05.06.2026 20:40:23
Insufficient policy enforcement in CustomTabs in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)