|
3321
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Use after free in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
|
CWE-416
Use After Free
|
CVE-2026-9941
|
2026-06-2 03:49 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3322
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Heap buffer overflow in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
|
CWE-122
Heap-based Buffer Overflow
|
CVE-2026-9940
|
2026-06-2 03:49 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3323
|
6.5 |
MEDIUM
Network
|
google
|
chrome
|
Uninitialized Use in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chro…
|
CWE-457
Use of Uninitialized Variable
|
CVE-2026-9917
|
2026-06-2 03:48 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3324
|
9.6 |
CRITICAL
Network
|
google
|
chrome
|
Inappropriate implementation in Tint in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: H…
|
CWE-269
Improper Privilege Management
|
CVE-2026-9918
|
2026-06-2 03:48 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3325
|
4.3 |
MEDIUM
Network
|
google
|
chrome
|
Out of bounds read in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High)
|
CWE-125
Out-of-bounds Read
|
CVE-2026-9919
|
2026-06-2 03:48 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3326
|
3.1 |
LOW
Network
|
google
|
chrome
|
Uninitialized Use in GPU in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chr…
|
CWE-457
Use of Uninitialized Variable
|
CVE-2026-9920
|
2026-06-2 03:48 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3327
|
4.3 |
MEDIUM
Network
|
google
|
chrome
|
Uninitialized Use in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin information via a crafted HTML page. (Chromium security severity: High)
|
CWE-457
Use of Uninitialized Variable
|
CVE-2026-9921
|
2026-06-2 03:48 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3328
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Use after free in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
|
CWE-416
Use After Free
|
CVE-2026-9923
|
2026-06-2 03:48 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3329
|
8.3 |
HIGH
Network
|
google
|
chrome
|
Heap buffer overflow in ANGLE in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a craf…
|
CWE-122
Heap-based Buffer Overflow
|
CVE-2026-9924
|
2026-06-2 03:47 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3330
|
4.3 |
MEDIUM
Network
|
google
|
chrome
|
Inappropriate implementation in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Hig…
|
CWE-200
Information Exposure
|
CVE-2026-9929
|
2026-06-2 03:47 |
2026-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
