Description
Out of bounds memory access in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
Published: 2026-06-04
Score: 8.8 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A flaw in the Skia graphics library used by Google Chrome allows a maliciously crafted HTML page to trigger an out‑of‑bounds memory access. When the browser processes such a page, the violation permits execution of arbitrary code inside the Chrome renderer sandbox. The vulnerability is classified as a high‑severity flaw, and the associated weaknesses are out‑of‑bounds memory read (CWE‑125) and buffer overflow (CWE‑787), indicating that an attacker could read or write beyond allocated memory, compromising data integrity and confidentiality.

Affected Systems

Any installation of Google Chrome older than version 149.0.7827.53 is vulnerable. This includes the stable desktop releases for Windows, macOS, and Linux that ship with the standard Chrome distribution. A web page hosted on an otherwise clean site can serve the malformed content to trigger the exploit, so a single browser visit is sufficient to initiate the attack.

Risk and Exploitability

The CVSS score of 8.8 indicates a high severity flaw, while the EPSS score is not available and the issue is not listed in CISA’s KEV catalog. The likely attack vector is a web‑based one: a remote attacker delivers a crafted HTML page to a victim’s Chrome browser. The condition required for exploitation is that the victim visits the malicious page with the vulnerable Skia component active. The outcome is arbitrary code execution within the renderer process, which is sandboxed but could be leveraged to escape the sandbox if additional weaknesses are present.

Generated by OpenCVE AI on June 5, 2026 at 05:45 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Chrome to version 149.0.7827.53 or later as published by Google
  • If an upgrade cannot be performed immediately, disable GPU acceleration in Chrome settings to reduce Skia usage
  • Apply stricter browser profile settings or extensions that limit HTML rendering and sandbox options
  • Block or filter known malicious domains that serve crafted HTML content

Generated by OpenCVE AI on June 5, 2026 at 05:45 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 05 Jun 2026 06:00:00 +0000

Type Values Removed Values Added
Title Out-of-bounds memory access in Chrome Skia allows remote code execution

Fri, 05 Jun 2026 03:00:00 +0000

Type Values Removed Values Added
First Time appeared Google
Google chrome
Vendors & Products Google
Google chrome

Fri, 05 Jun 2026 01:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-125
CWE-787
Metrics cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Thu, 04 Jun 2026 23:15:00 +0000

Type Values Removed Values Added
Description Out of bounds memory access in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
References

Subscriptions

Google Chrome
cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2026-06-05T00:38:49.934Z

Reserved: 2026-06-04T17:06:11.514Z

Link: CVE-2026-10941

cve-icon Vulnrichment

Updated: 2026-06-05T00:38:43.690Z

cve-icon NVD

Status : Undergoing Analysis

Published: 2026-06-04T23:16:56.670

Modified: 2026-06-05T15:02:34.977

Link: CVE-2026-10941

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-05T05:45:33Z

Weaknesses