|
3051
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Use after free in Views in Google Chrome on Mac prior to 147.0.7727.138 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
|
CWE-416
Use After Free
|
CVE-2026-7334
|
2026-05-1 03:29 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3052
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Use after free in media in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
|
CWE-416
Use After Free
|
CVE-2026-7335
|
2026-05-1 03:29 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3053
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Use after free in WebRTC in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
|
CWE-416
Use After Free
|
CVE-2026-7336
|
2026-05-1 03:28 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3054
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Type Confusion in V8 in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
|
CWE-843
Type Confusion
|
CVE-2026-7337
|
2026-05-1 03:28 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3055
|
7.5 |
HIGH
Adjacent
|
google
|
chrome
|
Use after free in Cast in Google Chrome prior to 147.0.7727.138 allowed an attacker on the local network segment to potentially exploit heap corruption via malicious network traffic. (Chromium securi…
|
CWE-416
Use After Free
|
CVE-2026-7338
|
2026-05-1 03:28 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3056
|
8.1 |
HIGH
Network
|
google
|
chrome
|
Inappropriate implementation in Tint in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Hi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2026-7346
|
2026-05-1 03:28 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3057
|
8.1 |
HIGH
Network
|
google
|
chrome
|
Use after free in Chromoting in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to execute arbitrary code via malicious network traffic. (Chromium security severity: High)
|
CWE-416
Use After Free
|
CVE-2026-7347
|
2026-05-1 03:27 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3058
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Use after free in Codecs in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
|
CWE-416
Use After Free
|
CVE-2026-7348
|
2026-05-1 03:27 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3059
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Heap buffer overflow in WebRTC in Google Chrome prior to 147.0.7727.138 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)
|
CWE-122
Heap-based Buffer Overflow
|
CVE-2026-7339
|
2026-05-1 03:26 |
2026-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
3060
|
8.8 |
HIGH
Network
|
tenda
|
hg3_firmware
|
A vulnerability was determined in Tenda HG3 2.0. This vulnerability affects the function formTracert of the file /boaform/formTracert. Executing a manipulation of the argument datasize can lead to co…
|
CWE-74
CWE-77
Injection
Command Injection
|
CVE-2026-7160
|
2026-05-1 03:23 |
2026-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
