PT-2026-38151

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.96 Description An inappropriate implementation in ServiceWorker allows an attacker to inject arbitrary scripts or HTML Universal Cross-Site Scripting - UXSS, a vulnerability where an attacker can...

PT-2026-38179

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.96 Description Insufficient policy enforcement in Autofill allows a remote attacker to leak cross-origin data through the use of a crafted HTML page. Recommendations Update to version 148.0.7778.96 or...

PT-2026-38156

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.96 Description An inappropriate implementation in ServiceWorker allows a remote attacker who has already compromised the renderer process to potentially perform a sandbox escape through a crafted HTML...

PT-2026-38145

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.96 Description Insufficient policy enforcement in Extensions allows a remote attacker who has compromised the renderer process to bypass discretionary access control a type of access control where the...

PT-2026-38133

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.96 Description A use after free issue in V8 allows an attacker to execute arbitrary code inside a sandbox. This occurs when a user is convinced to install a malicious Chrome Extension crafted by the...