CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

[UPDATE] [high] Google Chrome: Multiple vulnerabilities allow unspecified attack

highCVE-2026-13774CVE-2026-13775CVE-2026-13776CVE-2026-13777CVE-2026-13778CVE-2026-13779
An attacker can exploit multiple vulnerabilities in Google Chrome to conduct an unspecified attack, potentially including executing arbitrary code, causing a denial-of-service attack, bypassing security measures, and altering and disclosing data.

CSIRTS triage

What
Multiple vulnerabilities in Google Chrome allow an attacker to conduct unspecified attacks, potentially including executing arbitrary code, causing denial-of-service attacks, bypassing security measures, and altering and disclosing data.
Who is affected
Users of Google Chrome are affected by these vulnerabilities.
Urgency
Remediation is high priority due to the high severity and potential for exploitation by remote attackers.
Action
Update Google Chrome to the latest version to mitigate these vulnerabilities.

AI-assisted analysis generated from the source advisory — verify against the original.

⚡ Watch Chrome

Get an email when a new Chrome advisory drops — max one per day, one-click unsubscribe.

Details

Source
CERT-Bund (BSI) Security Advisories (DE · national-cert · site)
Severity
high
Published
2026-07-09
Exploitation
Not in CISA KEV at last sync
Language
Machine-translated to English — verify against the original

Original advisory: https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-2143

Exploitation outlook

EPSS (FIRST.org) estimates each CVE’s probability of exploitation in the next 30 days — here is the CSIRTS.com read on those numbers.

Referenced CVEs

CVECSIRTS overviewExternal
CVE-2026-13774coverage & exploitation statusNVD · CVE.org
CVE-2026-13775coverage & exploitation statusNVD · CVE.org
CVE-2026-13776coverage & exploitation statusNVD · CVE.org
CVE-2026-13777coverage & exploitation statusNVD · CVE.org
CVE-2026-13778coverage & exploitation statusNVD · CVE.org
CVE-2026-13779coverage & exploitation statusNVD · CVE.org
CVE-2026-13780coverage & exploitation statusNVD · CVE.org
CVE-2026-13781coverage & exploitation statusNVD · CVE.org
CVE-2026-13782coverage & exploitation statusNVD · CVE.org
CVE-2026-13783coverage & exploitation statusNVD · CVE.org
CVE-2026-13784coverage & exploitation statusNVD · CVE.org
CVE-2026-13785coverage & exploitation statusNVD · CVE.org
CVE-2026-13786coverage & exploitation statusNVD · CVE.org
CVE-2026-13787coverage & exploitation statusNVD · CVE.org
CVE-2026-13788coverage & exploitation statusNVD · CVE.org
CVE-2026-13789coverage & exploitation statusNVD · CVE.org
CVE-2026-13790coverage & exploitation statusNVD · CVE.org
CVE-2026-13791coverage & exploitation statusNVD · CVE.org
CVE-2026-13792coverage & exploitation statusNVD · CVE.org
CVE-2026-13793coverage & exploitation statusNVD · CVE.org
CVE-2026-13794coverage & exploitation statusNVD · CVE.org
CVE-2026-13795coverage & exploitation statusNVD · CVE.org
CVE-2026-13796coverage & exploitation statusNVD · CVE.org
CVE-2026-13797coverage & exploitation statusNVD · CVE.org
CVE-2026-13798coverage & exploitation statusNVD · CVE.org
CVE-2026-13799coverage & exploitation statusNVD · CVE.org
CVE-2026-13800coverage & exploitation statusNVD · CVE.org
CVE-2026-13801coverage & exploitation statusNVD · CVE.org
CVE-2026-13802coverage & exploitation statusNVD · CVE.org
CVE-2026-13803coverage & exploitation statusNVD · CVE.org
CVE-2026-13804coverage & exploitation statusNVD · CVE.org
CVE-2026-13805coverage & exploitation statusNVD · CVE.org
CVE-2026-13806coverage & exploitation statusNVD · CVE.org
CVE-2026-13807coverage & exploitation statusNVD · CVE.org
CVE-2026-13808coverage & exploitation statusNVD · CVE.org
CVE-2026-13809coverage & exploitation statusNVD · CVE.org
CVE-2026-13810coverage & exploitation statusNVD · CVE.org
CVE-2026-13811coverage & exploitation statusNVD · CVE.org
CVE-2026-13812coverage & exploitation statusNVD · CVE.org
CVE-2026-13813coverage & exploitation statusNVD · CVE.org
CVE-2026-13814coverage & exploitation statusNVD · CVE.org
CVE-2026-13815coverage & exploitation statusNVD · CVE.org
CVE-2026-13816coverage & exploitation statusNVD · CVE.org
CVE-2026-13817coverage & exploitation statusNVD · CVE.org
CVE-2026-13818coverage & exploitation statusNVD · CVE.org
CVE-2026-13819coverage & exploitation statusNVD · CVE.org
CVE-2026-13820coverage & exploitation statusNVD · CVE.org
CVE-2026-13821coverage & exploitation statusNVD · CVE.org

+12 more CVEs referenced in this advisory.

Same CVEs, other sources

How other CERTs, PSIRTs and databases cover the vulnerabilities in this advisory.

Recent advisories for Google Chrome

A cluster of recent advisories against the same product widens the attack surface — attackers routinely chain freshly published CVEs on one product, so review these together.

More from CERT-Bund (BSI) Security Advisories