3.1

CVSS3.1

CVE-2026-7949 -

Out of bounds read in Skia in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted Chrome Extension. (Chromium security severity: Medium)

๐Ÿ“… Published: May 6, 2026, 6:12 p.m. ๐Ÿ”„ Last Modified: May 7, 2026, 2:07 a.m.

7.5

CVSS3.1

CVE-2026-7948 -

Race in Chromoting in Google Chrome on Windows prior to 148.0.7778.96 allowed a local attacker to perform privilege escalation via a malicious file. (Chromium security severity: Medium)

๐Ÿ“… Published: May 6, 2026, 6:12 p.m. ๐Ÿ”„ Last Modified: May 7, 2026, 2:08 a.m.

4.2

CVSS3.1

CVE-2026-7947 -

Insufficient validation of untrusted input in Network in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

๐Ÿ“… Published: May 6, 2026, 6:12 p.m. ๐Ÿ”„ Last Modified: May 7, 2026, 1:15 a.m.

4.3

CVSS3.1

CVE-2026-7946 - Chrome WebUI Policy Enforcement Allows Renderer-Based Site Isolation Bypass

Insufficient policy enforcement in WebUI in Google Chrome on Linux, Mac, Windows, ChromeOS prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. (Chromium security severity: Medium)

๐Ÿ“… Published: May 6, 2026, 6:12 p.m. ๐Ÿ”„ Last Modified: May 7, 2026, 3:30 a.m.

3.1

CVSS3.1

CVE-2026-7945 -

Insufficient validation of untrusted input in COOP in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. (Chromium security severity: Medium)

๐Ÿ“… Published: May 6, 2026, 6:12 p.m. ๐Ÿ”„ Last Modified: May 7, 2026, 1:15 a.m.

3.1

CVSS3.1

CVE-2026-7944 -

Insufficient validation of untrusted input in Persistent Cache in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. (Chromium security severity: Medium)

๐Ÿ“… Published: May 6, 2026, 6:12 p.m. ๐Ÿ”„ Last Modified: May 7, 2026, 1:15 a.m.

4.2

CVSS3.1

CVE-2026-7943 -

Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: Medium)

๐Ÿ“… Published: May 6, 2026, 6:12 p.m. ๐Ÿ”„ Last Modified: May 7, 2026, 1:15 a.m.

4.3

CVSS3.1

CVE-2026-7942 -

Integer overflow in ANGLE in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)

๐Ÿ“… Published: May 6, 2026, 6:12 p.m. ๐Ÿ”„ Last Modified: May 7, 2026, 12:45 a.m.

4.4

CVSS3.1

CVE-2026-7941 -

Insufficient validation of untrusted input in Mobile in Google Chrome on Android prior to 148.0.7778.96 allowed a local attacker to inject arbitrary scripts or HTML (UXSS) via a crafted Chrome Extension. (Chromium security severity: Medium)

๐Ÿ“… Published: May 6, 2026, 6:12 p.m. ๐Ÿ”„ Last Modified: May 7, 2026, 1:15 a.m.

8.8

CVSS3.1

CVE-2026-7940 -

Use after free in V8 in Google Chrome prior to 148.0.7778.96 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code inside a sandbox via a crafted Chrome Extension. (Chromium security severity: Medium)

๐Ÿ“… Published: May 6, 2026, 6:12 p.m. ๐Ÿ”„ Last Modified: May 7, 2026, 1:15 a.m.
Total resulsts: 349182
Page 69 of 34,919
ยซ previous page ยป next page
Filters