Google Chrome Multiple Vulnerabilities
CSIRTS triage
- What
- Multiple vulnerabilities have been discovered in Google Chrome.
- Who is affected
- Users of Google Chrome.
- Urgency
- Remediation is necessary, but the severity is currently unknown.
- Action
- Users should update to the latest version of Chrome.
AI-assisted analysis generated from the source advisory — verify against the original.
⚡ Watch Chrome
Get an email when a new Chrome advisory drops — max one per day, one-click unsubscribe.
Details
Original advisory: https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities_20260625
Exploitation outlook
EPSS (FIRST.org) estimates each CVE’s probability of exploitation in the next 30 days — here is the CSIRTS.com read on those numbers.
- Low exploitation riskCVE-2026-130210.14% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 4% of all scored CVEs.
- Low exploitation riskCVE-2026-130220.14% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 4% of all scored CVEs.
- Low exploitation riskCVE-2026-130230.19% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 8% of all scored CVEs.
- Low exploitation riskCVE-2026-130240.15% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 4% of all scored CVEs.
- Low exploitation riskCVE-2026-130250.18% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 8% of all scored CVEs.
- Low exploitation riskCVE-2026-130260.19% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 9% of all scored CVEs.
- Low exploitation riskCVE-2026-130270.19% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 9% of all scored CVEs.
- Low exploitation riskCVE-2026-130280.22% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 12% of all scored CVEs.
- Low exploitation riskCVE-2026-130290.15% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 5% of all scored CVEs.
- Low exploitation riskCVE-2026-130300.19% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 8% of all scored CVEs.
Referenced CVEs
Same CVEs, other sources
How other CERTs, PSIRTs and databases cover the vulnerabilities in this advisory.
- unknownMultiple vulnerabilities in Microsoft Edge (June 29, 2026)cert-fr-avis
- unknownMultiple vulnerabilities in Google Chrome (June 25, 2026)cert-fr-avis
- unknownDSA-6364-1 chromium - security updatedebian
- unknownCVE-2026-13035: Chromium: CVE-2026-13035 Use after free in Bluetoothmsrc
- unknownCVE-2026-13034: Chromium: CVE-2026-13034 Inappropriate implementation in Passwordsmsrc
- unknownCVE-2026-13033: Chromium: CVE-2026-13033 Out of bounds read in Blink>InterestGroupsmsrc
- unknownCVE-2026-13031: Chromium: CVE-2026-13031 Use after free in Blinkmsrc
- unknownCVE-2026-13029: Chromium: CVE-2026-13029 Use after free in Web Authenticationmsrc
- unknownCVE-2026-13027: Chromium: CVE-2026-13027 Use after free in FileSystemmsrc
- unknownCVE-2026-13026: Chromium: CVE-2026-13026 Use after free in Digital Credentialsmsrc
- unknownCVE-2026-13025: Chromium: CVE-2026-13025 Insufficient validation of untrusted input in DevToolsmsrc
- unknownCVE-2026-13024: Chromium: CVE-2026-13024 Insufficient validation of untrusted input in Navigationmsrc
More from HKCERT Security Bulletins
- unknownGoogle Chrome Multiple Vulnerabilities2026-07-09
- unknownPalo Alto Products Multiple Vulnerabilities2026-07-09
- unknownJuniper Junos OS Multiple Vulnerabilities2026-07-09
- unknownBeyondTrust Products Multiple Vulnerabilities2026-07-08
- unknownApple Products Multiple Vulnerabilities2026-07-06