9.6
CVE-2026-5874 - Google Chrome: Chromium: Google Chrome: Sandbox escape via use-after-free in PrivateAI
Use after free in PrivateAI in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)
0.0
CVE-2026-5873 - V8 Out-of-Bounds Read/Write Allows Remote Code Execution via Crafted HTML
Out of bounds read and write in V8 in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
0.0
CVE-2026-5872 - Chrome Blink Use-After-Free Enables Remote Code Execution
Use after free in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
0.0
CVE-2026-5871 -
Type Confusion in V8 in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
0.0
CVE-2026-5870 - Integer Overflow in Skia Enables Remote Code Execution in Chrome
Integer overflow in Skia in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
0.0
CVE-2026-5868 - Heap Buffer Overflow in Chrome ANGLE Leading to Remote Code Execution
Heap buffer overflow in ANGLE in Google Chrome on Mac prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
8.8
CVE-2026-5866 - UseβAfterβFree in Chrome Media Enables Arbitrary Code Execution via Crafted HTML
Use after free in Media in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
0.0
CVE-2026-5865 - V8 Type Confusion Enables Remote Code Execution in Chrome Sandbox
Type Confusion in V8 in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
0.0
CVE-2026-5863 -
Inappropriate implementation in V8 in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
0.0
CVE-2026-5862 -
Inappropriate implementation in V8 in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)