Google

Chrome

651 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2026-8516

  • EPSS 0.03%
  • Veröffentlicht 14.05.2026 19:52:13
  • Zuletzt bearbeitet 14.05.2026 22:16:45

Insufficient validation of untrusted input in DataTransfer in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to obtain potentially sensitive information from process memory via a...

8.8

CVE-2026-8517

  • EPSS 0.07%
  • Veröffentlicht 14.05.2026 19:52:13
  • Zuletzt bearbeitet 14.05.2026 21:19:23

Object lifecycle issue in WebShare in Google Chrome on Mac prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critic...

8.3

CVE-2026-8514

  • EPSS 0.07%
  • Veröffentlicht 14.05.2026 19:52:12
  • Zuletzt bearbeitet 14.05.2026 22:16:45

Use after free in Aura in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)

8.3

CVE-2026-8515

  • EPSS 0.07%
  • Veröffentlicht 14.05.2026 19:52:12
  • Zuletzt bearbeitet 14.05.2026 22:16:45

Use after free in HID in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)

8.3

CVE-2026-8512

  • EPSS 0.07%
  • Veröffentlicht 14.05.2026 19:52:11
  • Zuletzt bearbeitet 14.05.2026 22:16:45

Use after free in FileSystem in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Criti...

8.3

CVE-2026-8513

  • EPSS 0.07%
  • Veröffentlicht 14.05.2026 19:52:11
  • Zuletzt bearbeitet 14.05.2026 22:16:45

Use after free in Input in Google Chrome on Android prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)

7.5

CVE-2026-8510

  • EPSS 0.07%
  • Veröffentlicht 14.05.2026 19:52:10
  • Zuletzt bearbeitet 14.05.2026 22:16:45

Integer overflow in Skia in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical)

9.6

CVE-2026-8511

  • EPSS 0.07%
  • Veröffentlicht 14.05.2026 19:52:10
  • Zuletzt bearbeitet 14.05.2026 21:19:23

Use after free in UI in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)

8.8

CVE-2026-8509

  • EPSS 0.06%
  • Veröffentlicht 14.05.2026 19:52:09
  • Zuletzt bearbeitet 14.05.2026 21:19:23

Heap buffer overflow in WebML in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Critical)

4.2

CVE-2026-8021

  • EPSS 0.01%
  • Veröffentlicht 06.05.2026 18:13:16
  • Zuletzt bearbeitet 07.05.2026 15:18:04

Script injection in UI in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. (Chromium security severity: Low)