CVE-2026-10019 - Vulnerability Details

- chromium-browser: Integer overflow in ANGLE

Description

Integer overflow in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)

Published: 2026-05-28

Score: 4.3 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

An integer overflow in the ANGLE graphics component of Google Chrome allows a remote attacker to leak cross‑origin data through a crafted HTML page. The flaw is a classic signed integer overflow (CWE-190) coupled with improper error handling (CWE-472), and it triggers when the browser parses specific ANGLE paths. Because the bug occurs within the rendering engine, the attacker can retrieve sensitive information that should be protected by same‑origin policies.

Affected Systems

Google Chrome versions before 148.0.7778.216 are affected. Users running any of the earlier releases are susceptible when viewing malicious web pages that exercise the ANGLE code path.

Risk and Exploitability

The attack can be launched remotely without any prior authentication; a simple, malicious HTML page can trigger the overflow. Inferred from the description, the vulnerability is exploitable by loading such a page into the browser, so an attacker only needs the victim to visit it. The EPSS score indicates a very low probability of exploitation, but the CVSS score of 4.3 denotes medium severity. The bug is not listed in the CISA KEV catalog, suggesting no widespread exploitation yet.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Google

Chrome

affected

Version	Status	Constraints
`148.0.7778.216`	affected	< 148.0.7778.216

Configuration 1 [-]

AND

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

OR	cpe:2.3:o:apple:macos:-:::::::*
	cpe:2.3:o:linux:linux_kernel:-:::::::*

No data.

Vendor Product Confidence Versions

Google

Chrome

100%

Version	Status	Scheme	Platform
`[148.0.7778.216,148.0.7778.216)`	affected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade Chrome to version 148.0.7778.216 or later.
Enable automatic updates so that future security fixes are applied without user intervention.
Restrict access to untrusted web content by using a web security gateway or content filtering solution.

Generated by OpenCVE AI on May 29, 2026 at 19:44 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact None

Availability Impact None

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00035.

Exploitation none

Automatable no

Technical Impact partial

References

Link	Providers
https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html
https://issues.chromium.org/issues/505056913
https://nvd.nist.gov/vuln/detail/CVE-2026-10019
https://www.cve.org/CVERecord?id=CVE-2026-10019

History

Fri, 29 May 2026 18:15:00 +0000

Type	Values Removed	Values Added
Metrics	cvssV3_1 `{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}`	ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}` cvssV3_1 `{'score': 4.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N'}`

Fri, 29 May 2026 17:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Apple Apple macos Linux Linux linux Kernel Microsoft Microsoft windows
CPEs		cpe:2.3:a:google:chrome:::::::: cpe:2.3:o:apple:macos:-:::::::* cpe:2.3:o:linux:linux_kernel:-:::::::* cpe:2.3:o:microsoft:windows:-:::::::*
Vendors & Products		Apple Apple macos Linux Linux linux Kernel Microsoft Microsoft windows
Metrics	cvssV3_1 `{'score': 7.4, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N'}`	cvssV3_1 `{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}`

Fri, 29 May 2026 12:15:00 +0000

Type	Values Removed	Values Added
Title	Chrome ANGLE Integer Overflow Causing Cross‑Origin Data Leak	chromium-browser: Integer overflow in ANGLE
Weaknesses		CWE-190
References		https://nvd.nist.gov/vuln/detail/CVE-2026-10019 https://www.cve.org/CVERecord?id=CVE-2026-10019
Metrics	threat_severity `None`	cvssV3_1 `{'score': 7.4, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N'}` threat_severity `Moderate`

Thu, 28 May 2026 23:45:00 +0000

Type	Values Removed	Values Added
Title		Chrome ANGLE Integer Overflow Causing Cross‑Origin Data Leak
First Time appeared		Google Google chrome
Vendors & Products		Google Google chrome

Thu, 28 May 2026 22:45:00 +0000

Type	Values Removed	Values Added
Description		Integer overflow in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)
Weaknesses		CWE-472
References		https://chromereleases.googleblog.com/2026/05/stable-channel-update-for-desktop_0877304591.html https://issues.chromium.org/issues/505056913

Subscriptions

Apple Macos

Google Chrome

Linux Linux Kernel

Microsoft Windows

MITRE

Status: PUBLISHED

Assigner: Chrome

Published: 2026-05-28T22:25:57.001Z

Updated: 2026-05-29T17:15:56.951Z

Reserved: 2026-05-28T17:25:15.658Z

Link: CVE-2026-10019

Vulnrichment

Updated: 2026-05-29T17:15:53.370Z

NVD

Status : Modified

Published: 2026-05-28T23:16:43.783

Modified: 2026-05-29T18:16:30.317

Link: CVE-2026-10019

Redhat

Severity : Moderate

Publid Date: 2026-05-27T00:00:00Z

Links: CVE-2026-10019 - Bugzilla

OpenCVE Enrichment

Updated: 2026-05-29T19:45:06Z

Weaknesses

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact None

Availability Impact None

User Interaction Required

Exploitation none

Automatable no

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object