Description
Use after free in Payments in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)
Published: 2026-06-08
Score: 8.8 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A use‑after‑free flaw exists in the Payments component of Google Chrome for macOS that allows an attacker to run arbitrary code by loading a specially crafted HTML page. This memory mismanagement (CWE‑416) means that user data is freed prematurely and later accessed, giving an attacker a foothold to execute code at native privileges. The vulnerability has a high severity rating in the Chromium security team, indicating it can be leveraged for full compromise of the affected machine.

Affected Systems

The issue affects Google Chrome on Mac systems running any version prior to 149.0.7827.103. All users of the stable desktop channel before this build are potentially exposed, regardless of other configuration settings.

Risk and Exploitability

The vulnerability is rated as high severity by the Chromium security team and can be exploited remotely via a crafted web page. The CVSS score is 8.8. The EPSS score is not available and it is not listed in the CISA KEV catalog, indicating that there have been no documented widespread exploitations so far. An attacker can trigger the flaw by instructing a victim to open a malicious web page containing the crafted HTML payload, allowing remote execution without requiring local access or elevated privileges.

Generated by OpenCVE AI on June 9, 2026 at 02:54 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Google Chrome to version 149.0.7827.103 or later to contain the fixed Payments use‑after‑free bug.
  • Configure Chrome policy or use site settings to disable the Payments feature, preventing the use‑after‑free path.
  • Employ network filtering or web content controls to block or sandbox malicious HTML pages that could trigger the vulnerability.

Generated by OpenCVE AI on June 9, 2026 at 02:54 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 09 Jun 2026 15:00:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple macos
CPEs cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
Vendors & Products Apple
Apple macos

Tue, 09 Jun 2026 03:15:00 +0000

Type Values Removed Values Added
Title Use‑After‑Free in Chrome Payments Allows Remote Code Execution

Tue, 09 Jun 2026 02:15:00 +0000

Type Values Removed Values Added
First Time appeared Google
Google chrome
Vendors & Products Google
Google chrome

Tue, 09 Jun 2026 01:30:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Mon, 08 Jun 2026 23:45:00 +0000

Type Values Removed Values Added
Description Use after free in Payments in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)
Weaknesses CWE-416
References

Subscriptions

Apple Macos
Google Chrome
cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2026-06-09T03:55:48.342Z

Reserved: 2026-06-08T21:33:42.390Z

Link: CVE-2026-11657

cve-icon Vulnrichment

Updated: 2026-06-09T01:04:51.538Z

cve-icon NVD

Status : Analyzed

Published: 2026-06-09T00:16:48.700

Modified: 2026-06-09T14:58:16.083

Link: CVE-2026-11657

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-09T03:00:14Z

Weaknesses