Description
Integer overflow in UI in Google Chrome on Linux prior to 149.0.7827.103 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
Published: 2026-06-08
Score: 9.6 Critical
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

An integer overflow flaw in the Chrome UI on Linux allows a remote attacker to craft a malicious HTML page that could cause the browser to escape its sandbox, effectively granting code execution outside the sandboxed environment. The vulnerability is classified as high severity by Chromium. The weakness is a classic case of input validation failure (CWE‑20).

Affected Systems

Google Chrome running on Linux systems prior to version 149.0.7827.103 is affected. No other vendors or product variants are listed, and no specific sub‑versions are provided beyond the stated cutoff.

Risk and Exploitability

The attack requires a remote attacker to supply a specially crafted HTML document to a user’s Chrome instance. The exploit path is client‑side; the attacker does not need any network privileges beyond the normal ability to deliver a page. The EPSS score is not reported, and the vulnerability is not currently in the CISA KEV catalog, implying that no widespread, confirmed exploits are known at this time. Nevertheless, the CVSS score of 9.6 indicates high severity, and the potential for sandbox escape makes it plausible that an unpatched system could be compromised with malicious intent.

Generated by OpenCVE AI on June 9, 2026 at 12:26 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Chrome to version 149.0.7827.103 or later as soon as possible.
  • Ensure the Chrome sandbox is enabled; set the enterprise policy to enforce sandboxing for all processes.
  • Limit exposure to untrusted local HTML by disabling local file access policies or using a browser extension that blocks local file browsing.

Generated by OpenCVE AI on June 9, 2026 at 12:26 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 09 Jun 2026 15:00:00 +0000

Type Values Removed Values Added
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel

Tue, 09 Jun 2026 11:30:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 9.6, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Tue, 09 Jun 2026 01:15:00 +0000

Type Values Removed Values Added
Title Integer Overflow in Chrome UI Allows Sandbox Escape
First Time appeared Google
Google chrome
Vendors & Products Google
Google chrome

Mon, 08 Jun 2026 23:45:00 +0000

Type Values Removed Values Added
Description Integer overflow in UI in Google Chrome on Linux prior to 149.0.7827.103 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
Weaknesses CWE-20
References

Subscriptions

Google Chrome
Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2026-06-10T03:58:22.763Z

Reserved: 2026-06-08T21:33:43.105Z

Link: CVE-2026-11659

cve-icon Vulnrichment

Updated: 2026-06-09T10:44:46.112Z

cve-icon NVD

Status : Analyzed

Published: 2026-06-09T00:16:48.923

Modified: 2026-06-09T14:58:11.683

Link: CVE-2026-11659

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-09T12:30:04Z

Weaknesses