Description
Use after free in Passwords in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
Published: 2026-05-28
Score: 8.3 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is a use‑after‑free bug in the Passwords component of Google Chrome on Windows versions before 148.0.7778.216. An attacker who has already compromised a renderer process can craft a malicious HTML page that triggers the vulnerability, potentially breaking out of the browser sandbox and executing arbitrary code on the host system. The weakness is classified as CWE‑416 and CWE‑825, and the official Chromium severity is High.

Affected Systems

Google Chrome for Windows versions prior to 148.0.7778.216. New releases from 148.0.7778.216 onward contain the fix.

Risk and Exploitability

The CVSS score is 8.3, and the EPSS score is 0.00035; this vulnerability is not currently listed in the CISA KEV catalog. However, because it requires the renderer process to already be compromised, the effective attack vector is local or remote with a high confidence for a sandbox escape. A successful exploitation would allow an attacker to execute code with the privileges of the compromised process, potentially leading to full system compromise.

Generated by OpenCVE AI on May 29, 2026 at 16:51 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Chrome to version 148.0.7778.216 or newer, as available through the browser’s auto‑update mechanism.
  • If a manual update is required, download the latest stable release from Google’s official Chrome download page.
  • Maintain automatic updates enabled to receive future security patches without manual intervention.

Generated by OpenCVE AI on May 29, 2026 at 16:51 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 29 May 2026 15:30:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 8.2, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H'}

 ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

cvssV3_1

{'score': 8.3, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H'}

Fri, 29 May 2026 12:15:00 +0000

Type Values Removed Values Added
Title Use‑After‑Free in Chrome Passwords Allows Sandbox Escape chromium-browser: Use after free in Passwords
Weaknesses CWE-825
References
Metrics threat_severity

None

 cvssV3_1

{'score': 8.2, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H'}

threat_severity

Important

Fri, 29 May 2026 01:30:00 +0000

Type Values Removed Values Added
First Time appeared Google
Google chrome
Vendors & Products Google
Google chrome

Thu, 28 May 2026 23:45:00 +0000

Type Values Removed Values Added
Title Use‑After‑Free in Chrome Passwords Allows Sandbox Escape

Thu, 28 May 2026 22:45:00 +0000

Type Values Removed Values Added
Description Use after free in Passwords in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
Weaknesses CWE-416
References

Subscriptions

Google Chrome
cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2026-05-30T03:56:15.040Z

Reserved: 2026-05-28T17:25:11.358Z

Link: CVE-2026-10000

cve-icon Vulnrichment

Updated: 2026-05-29T14:33:39.685Z

cve-icon NVD

Status : Undergoing Analysis

Published: 2026-05-28T23:16:40.907

Modified: 2026-05-29T15:16:21.197

Link: CVE-2026-10000

cve-icon Redhat

Severity : Important

Publid Date: 2026-05-27T00:00:00Z

Links: CVE-2026-10000 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-29T17:00:04Z

Weaknesses