SUSE CVE-2026-10001

Use after free in PerformanceManager in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

EUVD-2026-33103

Use after free in SurfaceCapture in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

EUVD-2026-33220

Use after free in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

CVE-2026-9980

Insufficient validation of untrusted input in Printing in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Chromium security severity: High...

DEBIAN-CVE-2026-9979

Insufficient validation of untrusted input in Input in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Chromium security severity: High...

CVE-2026-9934

Use after free in Aura in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

CVE-2026-9892

Inappropriate implementation in Skia in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

CVE-2026-10021

Insufficient validation of untrusted input in USB in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Medium...

CVE-2026-10014

CVE-2026-10014 describes a use-after-free in WebMIDI within the Chromium-based Google Chrome browser on Android, prior to version 148.0.7778.216. The issue arises when a renderer process is compromised, potentially enabling a sandbox escape via a crafted HTML page. Affected component: WebMIDI (Ch...

CVE-2026-10007

Use after free in SVG in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

CVE-2026-9994

CVE-2026-9994 affects Google Chrome on Windows due to a use-after-free in Chrome’s Core, allowing a renderer-compromised attacker to potentially escape the sandbox via a crafted HTML page. The vulnerability is triggered by an issue in Core that existed prior to version 148.0.7778.216. Impact is h...

CVE-2026-9992

Use after free in Network in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

CVE-2026-9979

CVE-2026-9979 affects Google Chrome: Insufficient validation of untrusted input in the Input component of Chromium before 148.0.7778.216. A remote attacker who has compromised the renderer process could bypass site isolation by presenting a crafted HTML page. The issue originates from an input va...

CVE-2026-9979

Insufficient validation of untrusted input in Input in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Chromium security severity: High...

CVE-2026-9974

CVE-2026-9974 concerns Google Chrome's GPU component in Chromium. The vulnerability is an out-of-bounds write in the GPU code that, if a renderer process is already compromised, could enable a sandbox escape via a crafted HTML page. Affected version range is Chrome prior to 148.0.7778.216. The do...

CVE-2026-9975

Out of bounds read and write in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

CVE-2026-9967

CVE-2026-9967 affects Google Chrome's GPU/Chromium component. Out-of-bounds write in the GPU code prior to version 148.0.7778.216 enables a remote attacker to potentially escape the sandbox via a crafted HTML page. Public references indicate a Chromium/Chrome update addressing this in the 148.0.7...

CVE-2026-9952

Summary: CVE-2026-9952 is a use-after-free in WebAudio within Google Chrome. The issue affects Chromium-based WebAudio code and enables a remote attacker to execute arbitrary code inside a sandbox when a crafted HTML page is processed. The public description specifies “prior to 148.0.7778.216,” i...

CVE-2026-9946

Use after free in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

CVE-2026-9922

CVE-2026-9922 affects Google Chrome on macOS, due to a use-after-free in the GPU component of Chromium. The flaw allows a remote attacker who has compromised the renderer process to run arbitrary code by processing a specially crafted HTML page. Impact is labeled High; affected version range is b...