SUSE CVE-2026-9963

Uninitialized Use in iOS in Google Chrome on iOS prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

EUVD-2026-33117

Out of bounds read and write in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

DEBIAN-CVE-2026-9995

Use after free in WebXR in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

DEBIAN-CVE-2026-9928

Out of bounds read in ANGLE in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

CVE-2026-9886

Use after free in Base in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

CVE-2026-10007

CVE-2026-10007 describes a use-after-free in the SVG handling of Google Chrome (Chromium-based) that can allow a remote attacker to execute arbitrary code inside the sandbox via a crafted HTML page. The vulnerability affects Chrome builds prior to 148.0.7778.216 and is classified with high severi...

CVE-2026-9994

Use after free in Core in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

CVE-2026-9973

Out of bounds write in V8 in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

CVE-2026-9948

The CVE-2026-9948 entry concerns a use-after-free in the Views component of Google Chrome on macOS, reported as pre-148.0.7778.216. The underlying issue is a use-after-free in the renderer process’s Views handling that could allow a remote attacker who crafts a page to escape the Chrome sandbox. ...

CVE-2026-9941

Use after free in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

CVE-2026-9938

Inappropriate implementation in V8 in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

CVE-2026-9931

This CVE-2026-9931 entry describes a use-after-free in Chrome's GPU component prior to version 148.0.7778.216. A remote attacker who already compromised the renderer process could potentially escape the Chrome sandbox via a crafted HTML page. The impact is High (CVSS 3.1: AV:N/AC:H/PR:N/UI:R/S:C/...

CVE-2026-9919

Out of bounds read in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

CVE-2026-9919

CVE-2026-9919: Out of bounds read in WebGL in Google Chrome on Android (before 148.0.7778.216) allows a remote attacker to leak cross-origin data via a crafted HTML page. Root cause: WebGL out-of-bounds read. Impact: cross-origin data leakage. Exploitation status is not provided in the linked doc...

CVE-2026-9877

CVE-2026-9877 is a use-after-free in ANGLE within Google Chrome prior to 148.0.7778.216, enabling a remote attacker who compromises the renderer to potentially escape the sandbox via a crafted HTML page. Affected product: Google Chrome (ANGLE component in Chromium). Root cause: use-after-free in ...

PT-2026-44613

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.216 Description A use after free issue in ANGLE allows a remote attacker to potentially perform a sandbox escape by using a crafted HTML page. Use after free is a memory corruption flaw that occurs wh...

SUSE CVE-2026-8557

Use after free in Accessibility in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via a crafted HTML page. Chromium security severity: High...

CVE-2026-8568

Insufficient policy enforcement in AI in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to bypass Site Isolation via a crafted HTML page. Chromium security severity: Medium...

CVE-2026-8513

CVE-2026-8513 : Use-after-free in Input handling in Google Chrome on Android (pre-148.0.7778.168). If a renderer process is compromised, this may allow a remote attacker to potentially escape the Chrome sandbox via a crafted HTML page. The provided documents do not specify a fixed version or reme...

PT-2026-41046

Name of the Vulnerable Software and Affected Versions Google Chrome on Mac versions prior to 148.0.7778.168 Description An object lifecycle issue in WebShare allows a remote attacker to execute arbitrary code via a crafted HTML page, provided they can convince a user to perform specific UI...