8.3

CVSS3.1

CVE-2026-7919 -

Use after free in Aura in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

📅 Published: May 6, 2026, 6:12 p.m. 🔄 Last Modified: May 6, 2026, 11:38 p.m.

8.3

CVSS3.1

CVE-2026-7918 -

Use after free in GPU in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

📅 Published: May 6, 2026, 6:12 p.m. 🔄 Last Modified: May 7, 2026, 12:30 a.m.

8.3

CVSS3.1

CVE-2026-7917 -

Use after free in Fullscreen in Google Chrome on Windows prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

📅 Published: May 6, 2026, 6:12 p.m. 🔄 Last Modified: May 6, 2026, 11:45 p.m.

8.3

CVSS3.1

CVE-2026-7916 -

Insufficient data validation in InterestGroups in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

📅 Published: May 6, 2026, 6:12 p.m. 🔄 Last Modified: May 7, 2026, 4 a.m.

4.3

CVSS3.1

CVE-2026-7915 - Insufficient Validation in Chrome DevTools on Android Enables Navigation Restriction Bypass

Insufficient data validation in DevTools in Google Chrome on Android prior to 148.0.7778.96 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: High)

📅 Published: May 6, 2026, 6:12 p.m. 🔄 Last Modified: May 7, 2026, 4 a.m.

8.3

CVSS3.1

CVE-2026-7914 -

Type Confusion in Accessibility in Google Chrome on Windows prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

📅 Published: May 6, 2026, 6:12 p.m. 🔄 Last Modified: May 7, 2026, 12:30 a.m.

7.8

CVSS3.1

CVE-2026-7913 - Local Privilege Escalation via Malicious File in Chrome DevTools on Android

Insufficient policy enforcement in DevTools in Google Chrome on Android prior to 148.0.7778.96 allowed a local attacker to perform privilege escalation via a malicious file. (Chromium security severity: High)

📅 Published: May 6, 2026, 6:12 p.m. 🔄 Last Modified: May 7, 2026, 2 a.m.

4.2

CVSS3.1

CVE-2026-7912 -

Integer overflow in GPU in Google Chrome on Android prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High)

📅 Published: May 6, 2026, 6:12 p.m. 🔄 Last Modified: May 7, 2026, 12:30 a.m.

8.3

CVSS3.1

CVE-2026-7911 -

Use after free in Aura in Google Chrome on Windows prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

📅 Published: May 6, 2026, 6:12 p.m. 🔄 Last Modified: May 7, 2026, 1:15 a.m.

9.6

CVSS3.1

CVE-2026-7910 -

Use after free in Views in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. (Chromium security severity: High)

📅 Published: May 6, 2026, 6:12 p.m. 🔄 Last Modified: May 7, 2026, 3:45 p.m.

Vulnerability Database Index

8.3

CVE-2026-7919 -

8.3

CVE-2026-7918 -

8.3

CVE-2026-7917 -

8.3

CVE-2026-7916 -

4.3

CVE-2026-7915 - Insufficient Validation in Chrome DevTools on Android Enables Navigation Restriction Bypass

8.3

CVE-2026-7914 -

7.8

CVE-2026-7913 - Local Privilege Escalation via Malicious File in Chrome DevTools on Android

4.2

CVE-2026-7912 -

8.3

CVE-2026-7911 -

9.6

CVE-2026-7910 -