Description
Inappropriate implementation in GPU in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)
Published: 2026-06-04
Score: 9.6 Critical
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

An improper boundary check in the GPU component of Google Chrome on Android prior to 149.0.7827.53 allows a remote attacker who has already compromised the renderer process to escape the sandbox. The vulnerability can compromise a device’s security context, potentially exposing privileged resources or enabling further attacks. The weakness is an example of input validation errors (CWE‑20) and insufficient untrusted input into paths (CWE‑653).

Affected Systems

Google Chrome for Android versions earlier than 149.0.7827.53 are affected. Devices running these releases should be considered at risk until an official patch is applied.

Risk and Exploitability

The CVE has a critical high CVSS score of 9.6. The EPSS score is less than 1%, and it is not listed in the CISA KEV catalog, indicating no publicly known exploits yet. The attack requires that the attacker already execute code in the renderer process, which typically occurs after a user visits a malicious web page or views a compromised media resource. If the renderer is breached, the GPU path may be used to escape the sandbox.

Generated by OpenCVE AI on June 7, 2026 at 15:08 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Chrome on Android to version 149.0.7827.53 or newer which contains the GPU sandbox fix.
  • Disable GPU hardware acceleration in Chrome settings or via enterprise policy to prevent the vulnerable code path from executing.
  • Restrict sites that trigger the renderer process, and enable Android’s “Safe Browsing” and site isolation features to limit the impact of a compromised renderer.

Generated by OpenCVE AI on June 7, 2026 at 15:08 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DSA Debian DSA DSA-6325-1 chromium security update
History

Mon, 08 Jun 2026 14:30:00 +0000

Type Values Removed Values Added
First Time appeared Google android
CPEs cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
cpe:2.3:o:google:android:-:*:*:*:*:*:*:*
Vendors & Products Google android

Mon, 08 Jun 2026 01:00:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Sun, 07 Jun 2026 12:15:00 +0000

Type Values Removed Values Added
Title chromium-browser: Insufficient validation of untrusted input in GPU
Weaknesses CWE-653
References
Metrics threat_severity

None

 threat_severity

Moderate

Sat, 06 Jun 2026 06:45:00 +0000

Type Values Removed Values Added
Title GPU Sandbox Escape via Renderer Process in Chrome for Android

Sat, 06 Jun 2026 05:30:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 9.6, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H'}

Fri, 05 Jun 2026 05:30:00 +0000

Type Values Removed Values Added
First Time appeared Google
Google chrome
Vendors & Products Google
Google chrome

Fri, 05 Jun 2026 04:30:00 +0000

Type Values Removed Values Added
Title GPU Sandbox Escape via Renderer Process in Chrome for Android

Thu, 04 Jun 2026 23:15:00 +0000

Type Values Removed Values Added
Description Inappropriate implementation in GPU in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)
Weaknesses CWE-20
References

Subscriptions

Google Android Chrome
cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2026-06-08T18:10:27.938Z

Reserved: 2026-06-04T17:06:54.441Z

Link: CVE-2026-11119

cve-icon Vulnrichment

Updated: 2026-06-06T03:24:07.210Z

cve-icon NVD

Status : Modified

Published: 2026-06-04T23:17:17.673

Modified: 2026-06-08T19:16:38.170

Link: CVE-2026-11119

cve-icon Redhat

Severity : Moderate

Publid Date: 2026-06-02T00:00:00Z

Links: CVE-2026-11119 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-06-07T15:15:46Z

Weaknesses
  • CWE-20

    Improper Input Validation

  • CWE-653

    Improper Isolation or Compartmentalization