Description
Use after free in Read Anything in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
Published: 2026-06-08
Score: 8.3 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

This CVE describes a use‑after‑free flaw in the Read Anything component of Google Chrome versions earlier than 149.0.7827.103. The defect, identified as CWE‑416 and CWE‑825, enables a remote attacker who has already compromised a renderer process to deliver a crafted HTML page that may result in a sandbox escape. Chromium rates the vulnerability as High severity.

Affected Systems

Google Chrome browsers prior to version 149.0.7827.103 are affected, as the use‑after‑free resides in the renderer component that all desktop installations use.

Risk and Exploitability

The EPSS score is < 1% and the vulnerability is not listed in the CISA KEV catalog. The CVSS score is 8.3 and Chromium classifies the defect as High severity. The description indicates that an attacker must first compromise a renderer process and then supply a maliciously crafted HTML page to trigger the sandbox escape. This sequence implies a higher exploitation complexity, although the input does not quantify the likelihood of successful exploitation. The likely attack vector is a malicious HTML page delivered to a compromised renderer process.

Generated by OpenCVE AI on June 11, 2026 at 02:06 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update Google Chrome to version 149.0.7827.103 or later.
  • Ensure that the browser’s process isolation and sandboxing features for renderer processes are enabled.
  • Avoid loading untrusted or suspicious web pages until the update is installed.

Generated by OpenCVE AI on June 11, 2026 at 02:06 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DSA Debian DSA DSA-6337-1 chromium security update
History

Thu, 11 Jun 2026 00:15:00 +0000

Type Values Removed Values Added
Title Use‑after‑Free Vulnerability in Chrome's Read Anything Component Enables Sandbox Escape chromium-browser: Use after free in Read Anything
Weaknesses CWE-825
References
Metrics threat_severity

None

 threat_severity

Important

Tue, 09 Jun 2026 15:00:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple macos
Linux
Linux linux Kernel
Microsoft
Microsoft windows
CPEs cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
Vendors & Products Apple
Apple macos
Linux
Linux linux Kernel
Microsoft
Microsoft windows

Tue, 09 Jun 2026 04:00:00 +0000

Type Values Removed Values Added
Title Use‑after‑Free Vulnerability in Chrome's Read Anything Component Enables Sandbox Escape

Tue, 09 Jun 2026 02:30:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 8.3, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Tue, 09 Jun 2026 02:00:00 +0000

Type Values Removed Values Added
Title Use‑after‑free leading to sandbox escape in Chrome

Tue, 09 Jun 2026 01:45:00 +0000

Type Values Removed Values Added
First Time appeared Google
Google chrome
Vendors & Products Google
Google chrome

Tue, 09 Jun 2026 01:00:00 +0000

Type Values Removed Values Added
Title Use‑after‑free leading to sandbox escape in Chrome

Mon, 08 Jun 2026 23:45:00 +0000

Type Values Removed Values Added
Description Use after free in Read Anything in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
Weaknesses CWE-416
References

Subscriptions

Apple Macos
Google Chrome
Linux Linux Kernel
Microsoft Windows
cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2026-06-09T03:56:07.315Z

Reserved: 2026-06-08T21:33:55.387Z

Link: CVE-2026-11692

cve-icon Vulnrichment

Updated: 2026-06-09T01:31:54.834Z

cve-icon NVD

Status : Analyzed

Published: 2026-06-09T00:16:52.663

Modified: 2026-06-09T14:58:37.137

Link: CVE-2026-11692

cve-icon Redhat

Severity : Important

Publid Date: 2026-06-08T00:00:00Z

Links: CVE-2026-11692 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-06-11T02:15:27Z

Weaknesses