Description
Use after free in Media in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
Published: 2026-06-08
Score: 8.8 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

In Chrome on Windows versions prior to 149.0.7827.103 a use‑after‑free bug within the Media component causes a remote attacker to execute arbitrary code inside a sandboxed process when a crafted HTML page is rendered. The flaw is a memory management error identified as CWE‑416 and also reflects improper restriction of operations within program limits, CWE‑825.

Affected Systems

All Windows installations of Google Chrome running a version earlier than 149.0.7827.103 are affected. No specific sub‑version details are provided, so the entire range of prior releases requires remediation.

Risk and Exploitability

The score of 8.8 on the CVSS scale indicates high severity. An EPSS value below 1% reflects a very low but nonzero probability of exploitation. The vulnerability is not listed in the CISA KEV catalogue. Exploitation would likely occur when a user opens or views a maliciously crafted HTML page, making it user‑dependent.

Generated by OpenCVE AI on June 11, 2026 at 02:37 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Google Chrome to version 149.0.7827.103 or later on Windows.
  • Enable Chrome’s automatic update feature to receive future patches promptly.
  • Avoid opening unknown or suspicious HTML content until the update is installed.

Generated by OpenCVE AI on June 11, 2026 at 02:37 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DSA Debian DSA DSA-6337-1 chromium security update
History

Thu, 11 Jun 2026 00:15:00 +0000

Type Values Removed Values Added
Title chromium-browser: Use after free in Media
Weaknesses CWE-825
References
Metrics threat_severity

None

 threat_severity

Important

Tue, 09 Jun 2026 15:00:00 +0000

Type Values Removed Values Added
First Time appeared Microsoft
Microsoft windows
CPEs cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
Vendors & Products Microsoft
Microsoft windows

Tue, 09 Jun 2026 03:15:00 +0000

Type Values Removed Values Added
Title Use After Free in Chrome Media on Windows Allows Remote Code Execution Through Crafted HTML

Tue, 09 Jun 2026 01:30:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Tue, 09 Jun 2026 01:15:00 +0000

Type Values Removed Values Added
First Time appeared Google
Google chrome
Vendors & Products Google
Google chrome

Tue, 09 Jun 2026 01:00:00 +0000

Type Values Removed Values Added
Title Use After Free in Chrome Media on Windows Allows Remote Code Execution Through Crafted HTML

Mon, 08 Jun 2026 23:45:00 +0000

Type Values Removed Values Added
Description Use after free in Media in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
Weaknesses CWE-416
References

Subscriptions

Google Chrome
Microsoft Windows
cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2026-06-09T03:55:43.846Z

Reserved: 2026-06-08T21:33:50.891Z

Link: CVE-2026-11680

cve-icon Vulnrichment

Updated: 2026-06-09T01:00:59.335Z

cve-icon NVD

Status : Analyzed

Published: 2026-06-09T00:16:51.340

Modified: 2026-06-09T14:53:09.470

Link: CVE-2026-11680

cve-icon Redhat

Severity : Important

Publid Date: 2026-06-08T00:00:00Z

Links: CVE-2026-11680 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-06-11T02:45:03Z

Weaknesses