CVE-2026-10933 - Vulnerability Details

Description

Use after free in Audio in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

Published: 2026-06-04

Score: 8.3 High

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

Use‑after‑free in the audio subsystem of Google Chrome allows a memory corruption that can lead to a sandbox escape. The flaw exists in Windows builds of Chrome prior to 149.0.7827.53. When an attacker controls the renderer process, a specially crafted HTML page can trigger the freed memory access and break out of the renderer sandbox, enabling the attacker to run code with elevated privileges. This type of weakness falls under CWE‑416 and is considered a high‑severity exploitation vector.

Affected Systems

Google Chrome for Windows, versions older than 149.0.7827.53, are vulnerable. All users running these builds are at risk if they visit malicious web pages that can upload a crafted HTML snippet to the browser. The vulnerability does not impact non‑Windows platforms or newer Chrome releases.

Risk and Exploitability

The CVE has a CVSS score of 8.3, classifying it as high severity. The likelihood of exploitation is unknown due to an unavailable EPSS score. However, the required attacker condition – compromising the renderer process – can be satisfied via phishing or malicious sites. The absence of a KEV listing suggests the vulnerability is not yet widely exploited, but its high severity warrants immediate attention. The attack vector is remote, dependent on a user visiting or rendering a malicious web page, and can lead to privilege escalation if successful.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Google

Chrome

affected

Version	Status	Constraints
`149.0.7827.53`	affected	< 149.0.7827.53

Configuration 1 [-]

AND

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

No data.

Vendor Product Confidence Versions

Google

Chrome

100%

Version	Status	Scheme	Platform
`149.0.7827.53`	affected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Update all Windows installations of Google Chrome to version 149.0.7827.53 or newer.
If an immediate upgrade is impossible, disable or restrict the HTML audio tag feature in Chrome using enterprise policies to reduce the attack surface.
Verify that Chrome’s sandbox is enabled and that no group policy configures the browser to run unchecked renderer processes.

Generated by OpenCVE AI on June 5, 2026 at 05:46 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00068.

Exploitation none

Automatable no

Technical Impact total

References

Link	Providers
https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html
https://issues.chromium.org/issues/501557633

History

Fri, 05 Jun 2026 20:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Microsoft Microsoft windows
CPEs		cpe:2.3:a:google:chrome:::::::: cpe:2.3:o:microsoft:windows:-:::::::*
Vendors & Products		Microsoft Microsoft windows

Fri, 05 Jun 2026 06:15:00 +0000

Type	Values Removed	Values Added
Title	Use‑After‑Free in Chrome Audio Enables Potential Sandbox Escape

Fri, 05 Jun 2026 04:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Google Google chrome
Vendors & Products		Google Google chrome

Fri, 05 Jun 2026 02:30:00 +0000

Type	Values Removed	Values Added
Metrics		cvssV3_1 `{'score': 8.3, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H'}` ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Fri, 05 Jun 2026 02:15:00 +0000

Type	Values Removed	Values Added
Title		Use‑After‑Free in Chrome Audio Enables Potential Sandbox Escape

Thu, 04 Jun 2026 23:15:00 +0000

Type	Values Removed	Values Added
Description		Use after free in Audio in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
Weaknesses		CWE-416
References		https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop.html https://issues.chromium.org/issues/501557633

Subscriptions

Google Chrome

Microsoft Windows

MITRE

Status: PUBLISHED

Assigner: Chrome

Published: 2026-06-04T23:03:44.703Z

Updated: 2026-06-05T01:40:08.432Z

Reserved: 2026-06-04T17:06:09.623Z

Link: CVE-2026-10933

Vulnrichment

Updated: 2026-06-05T01:38:24.500Z

NVD

Status : Analyzed

Published: 2026-06-04T23:16:55.783

Modified: 2026-06-05T20:35:22.213

Link: CVE-2026-10933

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-06-05T06:00:06Z

Weaknesses

CWE-416

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

Exploitation none

Automatable no

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object