Description
Use after free in WebAppInstalls in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)
Published: 2026-05-28
Score: 7.5 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

Use‑after‑free in Chrome WebAppInstalls on macOS allows a remote attacker, by convincing a user to perform specific UI gestures, to execute arbitrary code with the privileges of the browser process. The flaw is a classic use‑after‑free violation (CWE‑416) and gives the attacker full control over the victim's system. The issue also maps to CWE‑825, reflecting an insufficiently controlled use of resources during web application installation.

Affected Systems

Google Chrome for macOS versions earlier than 148.0.7778.216 are affected. The vulnerability applies to the WebAppInstalls component used to install web applications directly from the browser.

Risk and Exploitability

The CVSS score of 7.5 indicates high severity. The EPSS score is not available and it is not listed in the CISA KEV catalog. Exploitation requires the victim to load a crafted HTML page and interact with it, meaning the attack vector is web-based. If triggered, the attacker gains arbitrary code execution on the user's machine, presenting a significant threat to confidentiality, integrity, and availability.

Generated by OpenCVE AI on May 29, 2026 at 13:52 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Chrome to version 148.0.7778.216 or later.
  • If an immediate upgrade is not possible, disable the WebAppInstalls feature to reduce exposure.
  • Educate users about risky UI gestures and monitor for attempts to exploit this vulnerability.

Generated by OpenCVE AI on May 29, 2026 at 13:52 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 29 May 2026 12:15:00 +0000

Type Values Removed Values Added
Title Use‑After‑Free in Chrome WebAppInstalls Allows Remote Code Execution on macOS chromium-browser: Use after free in WebAppInstalls
Weaknesses CWE-825
References
Metrics threat_severity

None

 threat_severity

Important

Fri, 29 May 2026 11:30:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Fri, 29 May 2026 01:30:00 +0000

Type Values Removed Values Added
First Time appeared Google
Google chrome
Vendors & Products Google
Google chrome

Fri, 29 May 2026 00:15:00 +0000

Type Values Removed Values Added
Title Use‑After‑Free in Chrome WebAppInstalls Allows Remote Code Execution on macOS

Thu, 28 May 2026 22:45:00 +0000

Type Values Removed Values Added
Description Use after free in WebAppInstalls in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)
Weaknesses CWE-416
References

Subscriptions

Google Chrome
cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2026-05-30T03:55:24.750Z

Reserved: 2026-05-28T17:25:12.392Z

Link: CVE-2026-10005

cve-icon Vulnrichment

Updated: 2026-05-29T10:17:57.200Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-28T23:16:42.293

Modified: 2026-05-29T12:16:25.007

Link: CVE-2026-10005

cve-icon Redhat

Severity : Important

Publid Date: 2026-05-27T00:00:00Z

Links: CVE-2026-10005 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-29T14:00:20Z

Weaknesses